Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Build and enhance cyber threat intelligence to protect our security programme.
- Company: Join a forward-thinking cybersecurity firm dedicated to innovation.
- Benefits: Competitive salary, flexible working hours, and opportunities for professional growth.
- Why this job: Make a real difference in cybersecurity by turning intelligence into action.
- Qualifications: 3-5 years in cybersecurity with strong scripting and threat intelligence skills.
- Other info: Collaborative environment with a focus on continuous learning and development.
The predicted salary is between 60000 - 80000 £ per year.
To build and mature a cyber threat intelligence capability that serves as the predictive and proactive heart of our security programme. You will act as the technical authority for collecting, processing, and analysing intelligence, ensuring it enables a truly threat-informed defence. By converging intelligence tradecraft with engineering principles, you will drive the "Intelligence-to-Action" cycle and ruthlessly prioritise the efforts of our detection and response functions.
Responsibilities
- Operationalise the "Intelligence-to-Action Cycle," prioritising security engineering efforts based on business risk and validated threats.
- Define and manage intelligence requirements to guide collection and ensure resources focus on the most relevant risks.
- Design "Threat Intelligence-as-Code" workflows that automatically trigger hunting packages or detection stubs in our data platform when CTI outputs are available.
- Maintenance of CTI Systems: Implement, manage and optimise the Threat Intelligence Platform (TIP) and analytical tools to automate across the intelligence cycle.
- Drive technical initiatives to reduce technical debt and ensure tools scale to meet the organisation's evolving needs.
- Ensure seamless integration between CTI systems, SIEMs, SOAR, and endpoint detection platforms to correlate threats against internal telemetry and take suitable action.
- Translate unstructured intelligence into actionable detection suggestions, collaborating with engineers to address coverage gaps for high-priority adversary behaviours.
- Support proactive threat hunting by defining process and systems which enable hypothesis-driven hunts based on adversary TTPs and specific business risks.
- Champion "Automation-First" principles, using scripting (Python, PowerShell) to automate repetitive data collection and enrichment tasks.
- Leverage AI and machine learning as "Force Multipliers" to summarise complex threat reports and accelerate code generation and deployment.
- Develop advanced workflows that integrate intelligence feeds directly into defensive controls for real-time blocking.
- Support the production of tiered intelligence products, from strategic executive briefings to operational reports on specific adversary campaigns.
- Disseminate machine-readable indicators (IOCs) to enable immediate detection and response actions.
- Act as the technical intelligence partner to Detection Engineering, Security Operations and Incident Response, ensuring a seamless flow of actionable data.
- Establish and mature intelligence-sharing partnerships with industry peers and intelligence-sharing communities to strengthen collective defence.
Qualifications
- Experience: 3-5+ years in cybersecurity, specifically in Security Engineering, Threat Intelligence, Security Operations (SOC), Incident Response.
- Tradecraft: Advanced understanding of frameworks relating to threat modelling, threat intelligence, threat hunting and detection engineering (ATT&CK, D3FEND, Kill Chain, Attack Flow, STRIDE, DREAD, etc).
- Technical Skills: Proficiency in scripting languages (e.g., Python, PowerShell) for analysis, automation, and workflow improvement.
- Tooling: Hands-on experience with Threat Intelligence Platforms (TIPs) (MISP, ThreatConnect, etc) and SIEM technologies (Splunk, Sentinel, etc).
- Communication: Strong ability to translate complex threat data into actionable insights for both technical and executive audiences.
Security Engineer in England employer: Tesco Plc
Contact Detail:
Tesco Plc Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer in England
✨Tip Number 1
Network like a pro! Attend industry meetups, webinars, and conferences to connect with fellow security enthusiasts. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a personal project or contribute to open-source initiatives that showcase your expertise in threat intelligence and security engineering. This not only builds your portfolio but also demonstrates your passion to potential employers.
✨Tip Number 3
Prepare for interviews by brushing up on common technical questions and scenarios related to threat modelling and detection engineering. Practise explaining complex concepts in simple terms, as communication is key in this field.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got some fantastic opportunities waiting for you. Tailor your application to highlight your experience with Threat Intelligence Platforms and scripting languages, and let’s get you on board!
We think you need these skills to ace Security Engineer in England
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the role of Security Engineer. Highlight your experience in cybersecurity, especially in threat intelligence and security operations. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about building a cyber threat intelligence capability. Share specific examples of how you've operationalised the 'Intelligence-to-Action Cycle' in your previous roles.
Showcase Your Technical Skills: Don’t forget to mention your proficiency in scripting languages like Python and PowerShell. We love seeing candidates who can automate processes and improve workflows, so make sure to highlight any relevant projects or experiences.
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at Tesco Plc
✨Know Your Threat Intelligence
Make sure you brush up on your knowledge of threat intelligence frameworks like ATT&CK and D3FEND. Be ready to discuss how you've applied these in past roles, as this will show your understanding of the field and your ability to operationalise the 'Intelligence-to-Action Cycle'.
✨Showcase Your Scripting Skills
Since scripting is a big part of the role, prepare to demonstrate your proficiency in Python or PowerShell. Bring examples of how you've used these languages to automate tasks or improve workflows in previous positions. This will highlight your technical capabilities and problem-solving skills.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that test your ability to translate unstructured intelligence into actionable insights. Think about specific situations where you've identified threats and how you prioritised responses based on business risk. This will help you illustrate your analytical thinking and decision-making process.
✨Communicate Clearly and Confidently
Practice explaining complex technical concepts in simple terms, as you'll need to communicate effectively with both technical teams and executives. Use examples from your experience to demonstrate your ability to bridge the gap between technical data and actionable insights.