Principal Security Architect – Tesco
We are seeking a highly skilled and experienced Principal Security Architect to ensure that all enterprise platforms and solutions align with our existing security framework and industry standards. This role requires a deep understanding of security principles, technologies, and best practices to protect our information assets and ensure compliance with regulatory requirements.
Responsibilities
* Design and implement robust security architectures for enterprise-wide capabilities.
* Conduct thorough risk assessments for new systems and existing environments, reviewing designs and architectures to ensure they meet modern security requirements.
* Influence and guide other teams to implement security solutions by collaborating across functions.
* Ensure all enterprise platforms align with our existing security framework and industry standards.
* Evaluate and enhance security processes to improve efficiency and comprehensiveness.
* Continuously monitor and respond to emerging security trends and threats.
* Develop and maintain security architecture documentation, including policies, diagrams, and procedural guides.
* Act as an SME and advise on the security of the cloud, workplace, and infrastructure control plane capabilities.
* Lead and participate in internal technology initiatives to implement secure enterprise systems.
Soft Skills
* Proven leadership experience as a technical individual contributor in complex organisations.
* Analytical mindset with a proactive approach to identifying and solving security challenges.
* Strong communication and interpersonal skills to articulate complex security concepts to diverse audiences.
* Ability to work collaboratively with cross‑functional teams while managing multiple initiatives.
* Demonstrated curiosity and flexibility in applying knowledge and advice.
Technical Skills
* Demonstrable experience and expertise in designing, implementing, and applying balanced controls from security frameworks such as NIST, CIS, ISO 27001, and MITRE.
* Expertise in security controls and best practices for cloud‑based workplace environments.
* Proficiency in Microsoft cloud security, compliance capabilities, identity and access management, and threat protection, including Microsoft Defender, Microsoft Entra, and Microsoft Purview.
* Expertise with on‑prem virtualisation and container platforms.
* Familiarity with virtualization security best practices and endpoint security.
* Proficiency in securing databases (SQL, NoSQL).
* Proficiency in risk analysis, security controls management planning, and disaster recovery planning.
* Experience with security technologies such as firewalls, intrusion detection/prevention systems, and encryption.
Qualifications & Experience
* Strong knowledge of security frameworks and standards (e.g., NIST, ISO 27001).
* Bachelor's degree in Computer Science, Information Technology, or equivalent experience.
* Minimum of 5 years in a security architecture role.
* Professional certifications such as SABSA, CISSP, CISM, or TOGAF are highly desirable.
Whats in it for you?
* Annual bonus scheme of up to 45% of base salary.
* Car allowance of £7,320 per annum.
* Holiday starting at 25 days plus a personal day (plus bank holidays).
* Private medical insurance.
* Retirement savings plan – save between 6%–10% and Tesco will contribute 1.5 times this amount.
* 26 weeks maternity and adoption leave (after 1 year of service) at full pay, followed by statutory maternity or adoption pay; 4 weeks fully paid paternity leave.
About Us
Our vision at Tesco is to become every customer’s favourite way to shop, whether they are at home or out on the move. We celebrate diversity and commitment to an inclusive culture where all colleagues have equal opportunities. We are proud to be an accredited Disability Confident Leader and offer a fully inclusive recruitment process.
Seniority level
* Mid‑Senior level
Employment type
* Full‑time
Job function
* Information Technology
Industries
* Retail
#J-18808-Ljbffr