Senior Incident Responder (DFIR)
🚨 Location: Hybrid (UK-based)
Job Type: Full-time
Salary: Competitive + up to 20% annual bonus
Are you a seasoned DFIR professional with a passion for digital forensics and incident response? Do you thrive in high-pressure environments and want to make a real impact in protecting one of the UK’s largest retailers? If so, Tesco Technology wants you on our team.
We’re looking for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams.
What You’ll Be Doing
🕵️ Lead Investigations: Conduct host, network, and cloud-based forensic analysis to uncover the full scope of security incidents.
🛡️ Incident Handling: Support incident managers with root cause analysis and recommend detection and prevention strategies.
⚙️ Drive Innovation: Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities.
🔍 Threat Hunting: Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering efforts.
What We’re Looking For
* 4+ years of hands-on experience in DFIR or cyber incident response
* Strong background in forensic analysis across Windows, MacOS, and Unix systems
* Experience in large-scale corporate environments, ideally with Microsoft Azure
* Proficiency in tools like EDR, SOAR, SIEM, and scripting languages (Python, PowerShell)
* Calm, analytical mindset with the ability to lead technical investigations under pressure
Bonus: Experience with static and dynamic file/malware triage
Why Tesco? At Tesco, we’re more than just a retailer — we’re a team of problem-solvers, innovators, and collaborators.
Our purpose is simple: Serving our customers, communities, and planet a little better every day. We’re proud to foster an inclusive culture where everyone feels welcome and valued.
What’s In It For You?
đź’° Up to 20% annual bonus
🌴 25 days holiday + personal day + bank holidays
🏥 Private medical insurance
👶 Generous parental leave policies
🧠24/7 virtual GP & mental wellbeing support
🏡 Blended working model (office + remote)
Ready to make a difference? Apply now and help us protect Tesco from the threats of tomorrow.