Overview
Security Engineer III - Senior Incident Responder. Our Digital Forensics and Incident Response (DFIR) team leads the technical investigation and response to security incidents. You will work alongside security operations, threat intelligence, and security engineering teams to protect, detect, and respond to security threats across Tesco’s diverse and evolving estate. You will apply deep technical knowledge and critical thinking to investigate security incidents and threats and convey technical information clearly to decision makers. As a senior contributor, you will help improve and automate the team’s workflows and drive innovation across prevention, automation, detection, and response capabilities. You will serve as a role model for engineers and analysts across Security Operations.
Responsibilities
* Investigation and Response: Perform host, network, and cloud-based forensic analysis to understand security incidents and take appropriate containment, remediation, and recovery actions.
* Incident Handling: Support cyber-security incident managers and decision makers with root cause analysis and formulating recommendations for detection and prevention controls.
* Technical Project Work: Enhance existing processes and develop new methods to deliver DFIR services aligned with changing technology requirements.
* Threat Hunting & Detection Engineering: Lead intelligence-based threat hunts to uncover anomalous behaviour and contribute detections to the internal detection engineering programme.
You will need
* 4+ years of relevant experience.
* Experience responding to security incidents in large-scale corporate on-premises and public cloud environments (preferably Microsoft Azure).
* Experience with forensic analysis of cyber-security incidents on Windows, macOS, and Unix operating systems; solid understanding of those operating systems.
* Experience with a broad range of security technologies such as EDR, SOAR, and SIEM.
* Proficiency in at least one programming or scripting language (e.g., Python or PowerShell).
* Ability to think critically and lead technical investigations.
* Ability to handle high-pressure situations in a calm, productive, and professional manner.
* Experience with static and dynamic file/malware triage is desirable.
What's In It For You
* Annual bonus scheme of up to 20% of base salary
* Holiday starting at 25 days plus a personal day (plus Bank holidays)
* Private medical insurance
* 26 weeks maternity and adoption leave (after 1 year’s service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay; 4 weeks fully paid paternity leave
* Free 24/7 virtual GP service, Employee Assistance Programme (EAP) for you and your family, free access to resources to support mental wellbeing
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology
Industries
* Software Development
Referrals increase your chances of interviewing at hackajob by 2x
Get notified about new Senior Security Engineer jobs in Welwyn Garden City, England, United Kingdom.
#J-18808-Ljbffr