Location: Hybrid (UK-based)
Job Type: Full-time
Salary: Competitive + up to 20% annual bonus
Are you a seasoned DFIR professional with a passion for digital forensics and incident response? We’re looking for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams.
Lead Investigations : Conduct host, network, and cloud-based forensic analysis to uncover the full scope of security incidents.
&##Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies.
⚙️ Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering efforts.
Strong background in forensic analysis across Windows, MacOS, and Unix systems
~ Experience in large-scale corporate environments, ideally with Microsoft Azure
~ Proficiency in tools like EDR, SOAR, SIEM, and scripting languages (Python, PowerShell)
~ Calm, analytical mindset with the ability to lead technical investigations under pressure
Bonus: Experience with static and dynamic file/malware triage
At Tesco, we’re more than just a retailer — we’re a team of problem-solvers, innovators, and collaborators.
Serving our customers, communities, and planet a little better every day. Up to 20% annual bonus
&##25 days holiday + personal day + bank holidays
&##Private medical insurance
&##Generous parental leave policies
&##24/7 virtual GP & mental wellbeing support
&##Blended working model (office + remote)
Apply now and help us protect Tesco from the threats of tomorrow.