The following content displays a map of the jobs location - Welwyn Garden City

Cyber Security Engineer - macOS

Job Reference tesco/TP/11428279/920683

Number of Positions:
1
Contract Type:
Permanent
Salary:
Competitive
Location:
Welwyn Garden City
Closing Date:
22/12/2024
Job Category:
Security
Business Unit:
GB Head Office

What’s in it for you

We’re all about the little helps. That’s why we make sure our Tesco colleague benefits package takes care of you – both in and out of work. Click Here to find out more!

  • Annual bonus scheme of up to 20% of base salary
  • Holiday starting at 25 days plus a personal day (plus Bank holidays)
  • Private medical insurance
  • 26 weeks maternity and adoption leave (after 1 years’ service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay, we also offer 6 weeks fully paid paternity leave
  • Free 24/7 virtual GP service, Employee Assistance Programme (EAP) for you and your family, free access to a range of experts to support your mental wellbeing

About the role

As a Cyber Security Engineer, you will lead the development, implementation, and continuous improvement of Tesco’s cyber security prevention capability on macOS.

You will continuously evaluate the changing threat landscape, identify opportunities for improvement in existing capability, establish new prevention configuration to remain compliant to security hardening frameworks, and ensure appropriate coverage for the organisation.

You will collaborate closely with multiple teams, including security operations, workplace technology, and risk & compliance, in a fast moving and agile environment.

At Tesco, we believe in the power of spending more time together, face to face, than apart. So, during your working week, you can expect to spend 60% of your time in one of our office locations or local sites and the rest remotely. We also recognise that life looks a little different for each of us. Some people are at the start of their careers, some want the freedom to do the things they love. Others are going through life-changing moments like becoming a carer, nearing retirement, adapting to parenthood, or something else. That’s why at Tesco, we always welcome a conversation about flexible working. So, talk to us throughout your application about how we can support.

You will be responsible for

  • Threat-Led Prioritisation: Evaluates and prioritises cyber threats to Tesco, analysing machine signals and intelligence and human factors to identify trends and actionable data for threat management. Develop and implement threat-led security strategy.
  • Secure & Test-Driven Engineering: Experience in applying industry hardening frameworks (CIS, NIST etc), knowledge and familiarity with version control and configuration management tooling e.g.: Git, JAMF
  • Intrusion Prevention & Analysis: Define and drive procedures to identify prevention opportunities, assess risk reduction, and ensure mature prevention outcomes, reporting prevention quality, coverage and cost where required.
  • Incident Management, Incident Investigation & Response: Coordination with security operations teams to support incident management, investigation and response activities when required.

You will need

  • In-depth knowledge of macOS system internals and security features
  • Working knowledge of CIS hardening of macOS operating systems
  • Working knowledge of Prevention/Detection capability (AV, DLP, EDR, APP Control)
  • Common Productivity Tools (Confluence, Miro, Teams)
  • Agile Ways of Working (Scrum, Kanban)

About us

Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or out on the move. Our core purpose is ‘Serving our customers, communities and planet a little better every day’. Serving means more than a transactional relationship with our customers. It means acting as a responsible and sustainable business for all stakeholders, for the communities we are part of and for the planet.

Diversity, equity and inclusion (DE&I) at Tesco means that whoever you are and whatever your background, we always want you to feel represented and that you can be yourself at work. In short, we’re a place where Everyone’s Welcome. We’re proud to have been accredited Disability Confident Leader and we’re committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please click here.

We’re a big business and we can offer a range of diverse full-time & part-time working patterns across our many business areas, which means that we can find something that works for you.  We work in a more blended pattern -combining office and remote working.  Our offices will continue to be where we connect, collaborate and innovate.