Cyber Security Partner

Job Description

As a Security Partner, you will deeply engage within product areas and influence the way security is delivered by them. You will besupported by experts in the team, nonetheless. To achieve this, you are good at secure design principles, cloud security, securedevelopment practices and patterns, application security, secure pipelines, open-source security and related. And not tomention, you are versatile to learn anything that comes along your way. • Develop in-depth understanding of the product area, engage with key product and technical people for assessing thesecurity and privacy controls.• Engage teams in security roadmap discussions and continuously improve security posture of what they build.• Demonstrate how weaknesses in design or code can be compromised and exploited. You should translate technicalrisks into business risks and potential impact to Tesco.• Engage security champions, key developers, and offer technical advisory to support completion of security initiatives,and remediation of vulnerabilities or risks.• Take part in key product and architecture decisions to embed security.• Perform product security activities, from the early development of security requirements, architecture reviews, andthreat modelling, to strengthening application security, mitigating supply-chain risks, securing secrets, pipelines,reviewing vulnerabilities, and infrastructure security.• Develop and propose security controls or compensating measures as needed. Continuously seek both tactical andstrategic solutions to enhance security.• Lead teams on raising the bar on security by design, and security by default. • Develop in-depth understanding of the product area, engage with key product and technical people for assessing thesecurity and privacy controls.• Engage teams in security roadmap discussions and continuously improve security posture of what they build.• Demonstrate how weaknesses in design or code can be compromised and exploited. You should translate technicalrisks into business risks and potential impact to Tesco.• Engage security champions, key developers, and offer technical advisory to support completion of security initiatives,and remediation of vulnerabilities or risks.• Take part in key product and architecture decisions to embed security.• Perform product security activities, from the early development of security requirements, architecture reviews, andthreat modelling, to strengthening application security, mitigating supply-chain risks, securing secrets, pipelines,reviewing vulnerabilities, and infrastructure security.• Develop and propose security controls or compensating measures as needed. Continuously seek both tactical andstrategic solutions to enhance security.• Lead teams on raising the bar on security by design, and security by default. Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or out on the move. Our core purpose is ‘Serving our customers, communities and planet a little better every day’. Serving means more than a transactional relationship with our customers. It means acting as a responsible and sustainable business for all stakeholders, for the communities we are part of and for the planet. We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. At Tesco, we not only celebrate diversity, but recognise the value and opportunity it brings. We're committed to creating a workplace where differences are valued, and make sure that all colleagues are given the same opportunities. We’re proud to have been accredited Disability Confident Leader and we’re committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please click here. We’re a big business and we can offer a range of diverse full-time & part-time working patterns across our many business areas, which means that we can find something that works for you. We work in a more blended pattern - combining office and remote working. Our offices will continue to be where we connect, collaborate and innovate. If you are applying internally, please speak to the Hiring Manager about how this can work for you - Everyone is welcome at Tesco.