Start Hiring Start Appying
Start Appying

StudySmarter Job Board

Security Engineer
Job Board
Companies
Tesco Technology
Security Engineer

Security Engineer

Full-Time 36000 - 60000 £ / year (est.) No home office possible
T

At a Glance

  • Tasks: Lead the development and improvement of Tesco's cyber security detection capabilities.
  • Company: Join Tesco, a leading retailer committed to enhancing cyber security.
  • Benefits: Enjoy a fast-paced, agile work environment with opportunities for growth and collaboration.
  • Why this job: Make a real impact in cyber security while working with diverse teams and cutting-edge technologies.
  • Qualifications: Strong understanding of cyber security threats, detection technologies, and programming languages like Python.
  • Other info: Ideal for those passionate about cyber security and eager to tackle real-world challenges.

The predicted salary is between 36000 - 60000 £ per year.

Security Engineer II (Detection Engineering)

Summary

As a Cyber Security Detection Engineer, you will lead the development, implementation, and continuous improvement of Tesco’s cyber security detection capability.

You will be required to understand the changing threat landscape, see opportunities for improvement in existing detections, establish new detections, and ensure appropriate detection coverage for the organisation. You will work closely with multiple teams, including security operations, engineering, and risk & compliance, in a fast paced and agile environment.

In this role, I am accountable for:

Responsible for developing and driving the cyber security detection capability both day-to-day and strategically for the Tesco Group. You are expected to seek out effective and comprehensive detection logic and capability, ensuring detections are robust and not brittle, thoroughly tested, and that alerts and supporting information is available to and understood by operational cyber security teams.

You are expected to put the needs of operational teams and incident responders at the center of your development work, ensuring detections and alerts are relevant, of value, and have practical response steps. You will need to ensure detection capability is fit for both on-premises, private and public cloud environments, working at significant scale, and across a diverse range of asset types.

In addition, you may provide support during cyber security incidents, participate in threat hunts, and work with other security teams to deliver automation and standardization to improve efficiency and response.

Relevant Operational skills:

Security Engineering Skills

Threat Led

  • Ability to assess and validate information from various sources on cyber and informational security threats to business
  • Ability to analyse and identify significance of processed intelligence to identify trends, threat actor TTPs and potential capabilities.
  • Ability to break down and translate information into tangible actionable data.

Secure & Test-Driven Engineering

  • Understanding of cyber security threat frameworks such as MITRE ATT&CK, Lockheed Martin Killchain etc.
  • Ability to specify/implement processes to maintain required level of security for a component/product/system during its lifecycle.
  • Proficient at detection development lifecycle covering all reasonable positive and negative test cases.
  • Ability to conducts code reviews of existing content and processes to identify and enhance or mitigate security issues.
  • Contribute to security evaluation of or testing of threat/vulnerabilities faced by systems.
  • Applies recognized evaluation/testing methodologies, tools and techniques to signature development / reviews, suggesting new ones where appropriate.

Research

  • Ability to quantify and define research goals to generate worthwhile relevant detection ideas for further testing and exploration.
  • Ability to summarize findings or technical information to be disseminated with wider teams, factoring in business knowledge and summaries.

Experience relevant for this role:

  • An ability to develop queries and enable robust detection of threats.
  • Working knowledge of Windows, macOS or Linux operating systems
  • Ability to work independently as well as part of a team.
  • Understanding of modern attacker TTPs
  • Translate threat intelligence into actionable detection logic.
  • Solid grasp of detection technologies
  • A broad understanding of security concepts; an interest and passion for cyber security
  • An analytical approach; ability in problem solving and comfortable working on production systems at scale.
  • Query languages such as KQL or SPL
  • Experience developing and maintaining basic automation scripts (e.g., Bash, Python, Batch, PowerShell etc.)

Desirable Skills and Experience:

  • Knowledge of cloud infrastructure, cloud security and cloud APIs a plus
  • Knowledge of attacker tools and evasion techniques within offensive engineering
  • Working knowledge of at least one major programming language, including scripting languages like Python and PowerShell
  • Experience of developing detections as code

Desirable Certifications:

  • One or more from: CompTIA Security+, GIAC, CEH, SSCP. Where appropriate other industry relevant certifications will be considered.

Security Engineer employer: Tesco Technology

At Tesco, we pride ourselves on being an exceptional employer, offering a dynamic work environment where innovation and collaboration thrive. As a Security Engineer II, you will not only contribute to enhancing our cyber security detection capabilities but also benefit from a culture that prioritizes employee growth through continuous learning and development opportunities. Located in a fast-paced setting, you'll enjoy the unique advantage of working alongside diverse teams, ensuring your contributions have a meaningful impact on our organization's security posture.
T

Contact Detail:

Tesco Technology Recruiting Team

View Tesco Technology Profile

StudySmarter Expert Advice 🤫

We think this is how you could land Security Engineer

✨Tip Number 1

Familiarize yourself with the MITRE ATT&CK framework and other relevant threat frameworks. Understanding these will help you demonstrate your ability to assess and validate information on cyber threats, which is crucial for the role.

✨Tip Number 2

Showcase your experience with detection technologies and query languages like KQL or SPL. Being able to develop robust detection queries is a key requirement, so be prepared to discuss your past projects and successes in this area.

✨Tip Number 3

Highlight any experience you have with automation scripts, especially in Bash or Python. The ability to automate detection processes can set you apart from other candidates, so make sure to mention specific examples.

✨Tip Number 4

Demonstrate your analytical skills by discussing how you've previously translated threat intelligence into actionable detection logic. This shows your capability to not only understand threats but also to implement effective responses.

We think you need these skills to ace Security Engineer

Cyber Security Detection Engineering
Threat Intelligence Analysis
Detection Logic Development
MITRE ATT&CK Framework
Lockheed Martin Killchain
Security Engineering Skills
Test-Driven Development
Code Review and Security Assessment
Research and Development of Detection Ideas
Query Languages (KQL, SPL)
Operating Systems Knowledge (Windows, macOS, Linux)
Automation Scripting (Bash, Python, PowerShell)
Analytical Problem Solving
Understanding of Cloud Security
Knowledge of Attacker TTPs
Collaboration and Teamwork

Some tips for your application 🫡

Understand the Role: Before applying, make sure you fully understand the responsibilities and requirements of the Security Engineer II position. Familiarize yourself with Tesco's cyber security detection capabilities and how your skills align with their needs.

Tailor Your CV: Customize your CV to highlight relevant experience in cyber security, detection engineering, and any specific technologies mentioned in the job description. Emphasize your ability to develop detection logic and your familiarity with threat frameworks like MITRE ATT&CK.

Craft a Strong Cover Letter: Write a compelling cover letter that showcases your passion for cyber security and your analytical skills. Mention specific examples of how you've contributed to detection capabilities in previous roles and how you can add value to Tesco's team.

Highlight Relevant Skills: In your application, be sure to emphasize your experience with query languages (like KQL or SPL), automation scripts, and any relevant certifications. This will demonstrate your technical proficiency and readiness for the role.

How to prepare for a job interview at Tesco Technology

✨Understand the Threat Landscape

Make sure you are well-versed in the current cyber security threats and trends. Familiarize yourself with frameworks like MITRE ATT&CK and be ready to discuss how they apply to detection engineering.

✨Demonstrate Your Technical Skills

Be prepared to showcase your knowledge of query languages such as KQL or SPL, and discuss your experience with operating systems like Windows, macOS, or Linux. Highlight any automation scripts you've developed using Bash, Python, or PowerShell.

✨Focus on Collaboration

Since this role involves working closely with various teams, emphasize your ability to collaborate effectively. Share examples of how you've worked with security operations, engineering, or compliance teams in the past.

✨Prepare for Scenario-Based Questions

Expect questions that assess your problem-solving skills in real-world scenarios. Think about how you would approach developing detection logic or responding to a cyber security incident, and be ready to articulate your thought process.

Security Engineer
Tesco Technology
T
Similar positions in other companies
UK’s top job board for Gen Z
discover-jobs-cta
Discover now
>