Overview
Senior Cyber Partner (III) role at Tesco Technology. We are the trusted security advisors for Tesco Technology, collaborating with product and engineering teams to design and implement robust, resilient cyber security solutions that protect the business and customers from threats. The team is a dynamic, global group of 15+ experts, serving as the strategic link between the security group and software engineering teams to support the retail business at scale.
This opportunity involves working as the Security Partner for chosen verticals within the engineering domain, supporting Tesco technology and software development teams across cloud and other innovative technologies at scale.
Responsibilities
* Build a good understanding of the aligned verticals, technology architecture, criteria and constraints, security posture and technical debts.
* Understand the threat landscape and take a risk-based approach to security.
* Drive security initiatives such as developing security requirements, threat modelling, strengthening application security, and vulnerability reduction across product areas.
* Review architecture and design for security problems; enable software development teams to use Tesco-provided security capabilities and tooling.
* Review critical code, build pipelines, deployment methods, and assist teams in improving overall security.
* Apply security and privacy principles in daily work.
* Facilitate risk remediation and challenge decisions and status-quo.
* Participate in assurance activities like penetration testing, purple testing, and application assurance.
* Develop quarterly/monthly roadmaps for security activities and plan them with collaborators.
* Be an evangelist for security and contribute to strengthening Tesco's internal policies and standards.
Requirements / Qualifications
* Strong written and verbal communication skills.
* Strong problem-solving, analysis, and computational skills.
* Ability to drive tactical vs. strategic decision-making; advocacy for change.
* Experience with customer-facing solutions, web technologies, payment systems, content delivery networks, REST APIs, microservices, and modern application development.
* Understanding of the evolving threat landscape and ability to identify business risks.
* Good understanding of public cloud services and various architecture patterns.
* Strong grasp of software, network, and infrastructure security; deep understanding of application security and DevSecOps (shift-left).
* Knowledge of general security principles, privacy principles, and industry standards such as NIST, ISO27001, CIS, and MITRE framework.
* Preferred Azure or AWS cloud security certifications.
What’s in it for you?
Tesco colleague benefits package includes annual bonus scheme up to 20% of base salary, holiday starting at 25 days plus personal day, private medical insurance, extended maternity/adoption leave and paid paternity leave, 24/7 virtual GP, EAP, and mental wellbeing support.
We are committed to an inclusive culture and accessible recruitment process. Tesco is a Disability Confident Leader; details on accessibility support are available on request.
About Tesco
Our vision is to become every customer’s favourite way to shop, with a core purpose of serving customers, communities and the planet a little better every day. We value diversity and provide equal opportunities in a fully inclusive environment.
Note: This posting focuses on the Senior Cyber Partner role and does not include other roles or listings listed in the source content.
#J-18808-Ljbffr