Security Engineer II

Job Description

As a Cyber Security Engineer, you will develop, implement, and continuously improve of Tesco’s cyber security prevention capability both day-to-day and strategically for the Tesco Group.

You will be required to understand the changing threat landscape, identify opportunities for improvement in existing capability, and ensure appropriate coverage for the organisation. You will work closely with multiple teams, including security operations, detection engineering, risk & compliance and our other businesses.

This includes protecting a large and diverse estate of assets and identities. These are both on-prem and in public cloud, from servers to user workstations.

Responsible for developing, implementing and maintaining technical prevention controls across endpoint and email systems, with a focus on Data Loss Prevention (DLP), system operating system hardening and secure configuration.

You will need to ensure prevention capability is fit for both on-premises and public cloud environments, working at significant scale, and across a diverse range of asset types.
In addition, you may provide support during cyber security incidents, security testing, and work with other security teams to deliver automation and standardisation to improve efficiency and data protection strategies.

• Working knowledge of Windows, macOS and Linux operating systems.

• Hands on experience with Data Loss Prevention capabilities (Email + Endpoint)

• Experience hardening technology operating systems and keeping them secure

• Knowledge and understanding of securing email authentication (DMARC, DKIM, SPF)

• Ability to work independently and collaboratively across cyber security, infrastructure, and technology teams.

• A broad understanding of security concepts; an interest and passion for cyber security

• Hands-on experience working with cyber security prevention platforms (antivirus, endpoint protection platform)

• Working knowledge of at least one programming language, inc scripting languages such as Python, PowerShell or Bash

• Familiarity with security frameworks for data protection and data classification methodologies

• Working knowledge of hardening & compliance frameworks or guidelines (CIS).

• Working knowledge of REST APIs

You might know us as a supermarket, technology company or even for our award-winning mobile network. Truth is, we’re all of those things, and much more. Our colleagues work with one goal in mind, helping to make every day a little better for our customers, colleagues and communities all over the world. No two customers are the same, neither are our colleagues. At Tesco, we champion a balance that lets you thrive both in and out of work. Spend 60% of your week collaborating with colleagues at our office locations or local sites and the rest remotely. Whether you're just kicking off your career, juggling passions, or navigating big life events, we're here to support you. We always welcome a conversation about flexible working, so talk to us throughout your application about how we can support. We're proud to be an accredited Disability Confident Leader, where everyone’s welcome. That’s why we commit to providing a fully inclusive and accessible recruitment process. If you need support with your application, click here for more information. And if you're interested in joining our team but don't tick every box, don't let that hold you back from applying.