Senior Security Engineer
7 days ago
- About the Security Engineering team
We are a rapidly expanding team of over 15 members dedicated to supporting Tesco's technology and software development teams as they embrace cloud platforms and other cutting-edge technologies on a large scale. This position has been introduced for a security engineer role within our UK-based security engineering unit. Unlike traditional security teams, we operate as security partners rather than as enforcers, preferring to be known as Security Partners instead of Security Architects or Consultants.
Our software engineering teams enjoy considerable autonomy in their work and are entrusted with the responsibility of making the best decisions for our customers. Instead of imposing strict processes and security barriers, we empower our engineering teams to be innovative by offering security guidance to assist them in making informed choices for Tesco. Fortunately, our engineering teams are usually eager to enhance security measures efficiently and proactively. We are seeking your assistance in expanding our presence and influence across broader engineering domains.
- Tesco has wholly embraced DevOps and agile methodologies to create enterprise APIs, services, and cloud abilities. With numerous delivery teams operating with Docker, Kubernetes, and various microservices on Azure and AWS, our security strategies must adapt to dynamic infrastructure that is here today, gone tomorrow. Our security measures are designed to be event-driven, real-time, and highly effective as opposed to relying on outdated weekly scans.
- Security partnerships involve revolutionizing the delivery of security solutions within our technology domains and software engineering teams. As a security partner, your role is to advocate positive security transformation within your product teams actively.
You will be responsible for
- On a day-to-day basis:
- Offering direction and guidance on all security matters to engineering and product teams. You have the support of an entire security organization, so the responsibility is not as daunting as it may seem.
- Assisting product teams in securely delivering new business features while effectively managing technical and business risks.
- Leading the deployment and integration of security capabilities into engineering teams within the product domain.
- Driving security initiatives such as defining security requirements, conducting threat modeling, enhancing application security, and minimizing vulnerabilities in collaboration with the engineering teams.
- Emphasizing the importance of reducing friction within existing workflows and providing fast feedback rather than introducing additional consoles for developers to monitor.
- Collaborating with teams on mobile applications, web applications, cloud, and data security matters, offering guidance on threat modeling, risk mitigation, and security across all areas. If necessary, actively engage in addressing security issues through PR submission.
- Assisting in resolving risks while challenging decisions and the status quo.
- Participating in assurance activities like penetration testing, purple testing, and app assurance.
- Developing quarterly/monthly roadmaps for security activities and effectively planning their implementation.
- Acting as a security evangelist, contributing to fortifying Tesco's internal policies and standards.
You will need
- Ideally, you will bring the following:
- Past experience in various common security domains, as the fundamental security challenges remain consistent despite technological advancements.
- A comprehensive understanding of modern application development practices to seamlessly integrate security capabilities while minimizing developer resistance.
- Strong interpersonal, facilitation, and leadership skills, coupled with excellent communication abilities (both written and verbal).
- Capable of offering security guidance throughout the product development lifecycle to engineering teams.
- Proficient in developing threat models, attack trees, and incorporating security by design into product engineering efforts.
- Adept at web technologies, REST APIs, microservices, modern application development, and mobile applications.
- Familiarity with software architecture, dev-sec-ops, and network security protocols.
- Desirable experience in browser security or mobile app security.
- Knowledge of industry standards like OWASP ASVS, OWASP Top-10, and CIS benchmarks.
- Hands-on experience with intricate Azure and AWS architectures, with an emphasis on containerized workloads.
- Highly valuable command-line/API experience, given the strategic priority of security automation.
- Some coding exposure, such as Java, HTML, or JavaScript, to comprehend the impact of security on engineering efficiency without necessitating full development expertise.
- Familiarity with PCI-DSS would be advantageous.
- At least 5 years of experience in security engineering or related fields.
- Bachelor's degree in Computer Science, Information Systems, or similar engineering disciplines.
- Preferred Azure or AWS cloud security certifications.
- We provide exceptional benefits that contribute to making Tesco an outstanding workplace, including but not limited to:
- Annual bonus scheme
- Starting holiday entitlement of 25 days plus a personal day (in addition to bank holidays)
- Colleague discounts and special offers, enabling savings on everyday purchases, home utility bills, and more
- Retirement savings plan - Tesco matches your contribution between 4% and 7.5%
- Participation in share schemes - Buy as you earn and Save as you earn
- Opportunities for growth - Take advantage of our continuous learning programs and award-winning training for career advancement
Our vision at Tesco is to become the preferred shopping destination for every customer, whether they are at home or on the go. Our core mission is to improve the lives of our customers, communities, and the planet every day. For us, 'serving' goes beyond just transactions; it entails operating as a responsible and sustainable business for all stakeholders, the communities we serve, and the planet.
-
Senior Security Engineer
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom Tesco Technology Full timeAbout the RoleTesco Technology are looking for a Security Engineer reporting into the Vulnerability Management and Pentesting team. This is an exciting opportunity for a highly motivated security focused engineer to join our expanding organisation.The role will involve being hands on with a focus on the availability and reliability of some of our most...
-
Senior Application Security Engineer
7 days ago
Welwyn Garden City, Hertfordshire, United Kingdom Tesco Full timeJob DescriptionSenior Application Security EngineerCompetitiveWelwyn Garden CityAbout the roleAn exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security.At Tesco, the application security team's strategy is to provide security tooling that fits seamlessly into software engineering...
-
Senior Security Engineer
4 weeks ago
Welwyn Garden City, UK, Hertfordshire, United Kingdom Tesco Technology Full timeAbout the RoleTesco Technology are looking for a Security Engineer reporting into the Vulnerability Management and Pentesting team. This is an exciting opportunity for a highly motivated security focused engineer to join our expanding organisation.The role will involve being hands on with a focus on the availability and reliability of some of our most...
-
Senior Security Engineer
3 weeks ago
Welwyn Garden City, UK, Hertfordshire, United Kingdom Tesco Technology Full timeAbout the RoleTesco Technology are looking for a Security Engineer reporting into the Vulnerability Management and Pentesting team. This is an exciting opportunity for a highly motivated security focused engineer to join our expanding organisation.The role will involve being hands on with a focus on the availability and reliability of some of our most...
-
Senior Application Security Engineer
7 days ago
Welwyn Garden City, Hertfordshire, United Kingdom Tesco Technology Full timeAn exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. At Tesco, the application security team's strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find and deal with security problems early within the...
-
Senior Application Security Engineer
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom Tesco Technology Full timeAn exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security.At Tesco, the application security team's strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find and deal with security problems early within the software...
-
Senior Application Security Engineer
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom Tesco Technology Full timeAn exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security.Apply below after reading through all the details and supporting information regarding this job opportunity.At Tesco, the application security team's strategy is to provide security tooling that fits seamlessly into software...
-
Senior Application Security Engineer
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom Tesco Technology Full timeAn exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security.At Tesco, the application security team's strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find and deal with security problems early within the software...
-
Senior Application Security Engineer
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom Tesco Full timeAbout the role An exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security. The application security team at Tesco focuses on providing security tooling that seamlessly integrates into software engineering, aiding in early identification and resolution of security issues. Your role...
-
Senior Security Analyst
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom Tesco Full timeTesco Technology are looking for a Senior Security Analyst reporting into the Vulnerability Management team. This is an exciting opportunity for a highly motivated security focused individual to join our expanding organisation. The scale and complexity of Tesco creates a huge opportunity for someone to apply their existing skills while developing new ones...
-
Fire and Security Engineer
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom Construction Recruitment Services LTD Full time £35,000 - £43,000Fire and Security Engineers wanted Our client are an established & very successful Fire and Security company based in Hertfordshire, due to a number of contracts recently won they are looking for x2 Fire and Security engineers based in the Hertfordshire area. You will have a minimum of 5-8 years' experience within Fire and Security Driving License ...
-
Supervisor/Senior Engineer
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom SHD Recruitment Full timeExciting Opportunity: Supervisor/Senior Engineer Position Available Are you ready to take your career to new heights in the security industry? SHD Recruitment is delighted to announce an outstanding opportunity for a Supervisor/Senior Engineer role with our client, a prominent specialist in the security industry.If you're a seasoned professional with a...
-
Senior Application Security Engineer
4 weeks ago
Welwyn Garden City, UK, Hertfordshire, United Kingdom Tesco Technology Full timeAn exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security.At Tesco, the application security team’s strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find and deal with security problems early within the...
-
Senior Application Security Engineer
3 weeks ago
Welwyn Garden City, UK, Hertfordshire, United Kingdom Tesco Technology Full timeAn exciting opportunity to join a leading company and play an influential part in their continued dedication to Application Security.At Tesco, the application security team’s strategy is to provide security tooling that fits seamlessly into software engineering teams ways of working, helping them find and deal with security problems early within the...
-
Senior Security Analyst
4 weeks ago
Welwyn Garden City, UK, Hertfordshire, United Kingdom Tesco Full timeTesco Technology are looking for a Senior Security Analyst reporting into the Vulnerability Management team. This is an exciting opportunity for a highly motivated security focused individual to join our expanding organisation. The scale and complexity of Tesco creates a huge opportunity for someone to apply their existing skills while developing new ones...
-
Senior Security Analyst
3 weeks ago
Welwyn Garden City, UK, Hertfordshire, United Kingdom Tesco Full timeTesco Technology are looking for a Senior Security Analyst reporting into the Vulnerability Management team. This is an exciting opportunity for a highly motivated security focused individual to join our expanding organisation. The scale and complexity of Tesco creates a huge opportunity for someone to apply their existing skills while developing new ones...
-
Welwyn Garden City, Hertfordshire, United Kingdom Construction Recruitment Services Full time £35,000 - £43,000Fire and Security Engineers wanted Our client are an established & very successful Fire and Security company based in Hertfordshire, due to a number of contracts recently won they are looking for x2 Fire and Security engineers based in the Hertfordshire area. You will have a minimum of 5-8 years' experience within Fire and Security Driving License...
-
Senior System Engineer
7 days ago
Welwyn Garden City, Hertfordshire, United Kingdom Artemis Chase - Space Talent Full timePosition: Senior SATCOM Systems Engineer Company Overview For over two decades, we have been at the forefront of technological innovation in the space and satellite communications sectors. Our systems engineering expertise is exemplary, encompassing the entire spectrum of space-related projects, from initial market analysis and user requirements to the...
-
Senior System Engineer
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom Artemis Chase - Space Talent Full timeJob DescriptionPosition: Senior SATCOM Systems EngineerCompany OverviewFor over two decades, we have been at the forefront of technological innovation in the space and satellite communications sectors. Our systems engineering expertise is exemplary, encompassing the entire spectrum of space-related projects, from initial market analysis and user requirements...
-
Senior System Engineer
1 week ago
Welwyn Garden City, Hertfordshire, United Kingdom Artemis Chase - Space Talent Full timePosition:Senior SATCOM Systems EngineerCompany OverviewnFor over two decades, we have been at the forefront of technological innovation in the space and satellite communications sectors. Our systems engineering expertise is exemplary, encompassing the entire spectrum of space-related projects, from initial market analysis and user requirements to the...
