Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Transform security maturity and engage teams on innovative security initiatives.
- Company: Join Tesco's dynamic Security Partnering team, driving change in a collaborative environment.
- Benefits: Inclusive culture, competitive salary, and opportunities for professional growth.
- Why this job: Make a real impact on security while working with cutting-edge technologies.
- Qualifications: Strong communication skills and experience in web technologies and cloud services.
- Other info: Be part of a diverse team that values innovation and personal growth.
The predicted salary is between 48000 - 84000 ÂŁ per year.
About the Security Partners team
We are the trusted security advisors for Tesco Technology. Our purpose is to collaborate seamlessly with the product and engineering stakeholders, leveraging our deep expertise in cyber security to design and implement robust, resilient solutions that protect our business and customers from cyber threats. We are a dynamic and expanding global team of 15+ experts, serving as the strategic link between the wider security group and software engineering teams that develop cutting‑edge services at scale to support the retail business. Tesco Technology comprises several technology domains with over 100+ teams, each entrusted with their own security. These teams enjoy significant autonomy, balanced by the responsibility to make customer‑centric decisions and security. Rather than imposing controls through rigid processes and security gates, we empower these engineering teams to innovate by providing security guidance that helps them make informed decisions for Tesco. Encouragingly, these teams are enthusiastic partners in enhancing security, working more efficiently, and integrating security into every aspect of their ways of working. This collaborative approach sets us apart from traditional security teams. We proudly identify ourselves as Security Partners, not security police, emphasizing our role as the “trusted advisors” rather than enforcers. Partners engage key people in engineering to make security contextual and frictionless. After all, security is a journey and there is no one‑size‑fits‑all. Join the team and be part of this exciting journey!
The Role
As a Security Partner, you will deeply engage within product areas and influence the way security is delivered by them. You will be supported by experts in the team, nonetheless. To achieve this, you are good at secure design principles, cloud security, secure development practices and patterns, application security, secure pipelines, open‑source security and related. And not to mention, you are versatile to learn anything that comes along your way.
Being the trusted advisor
As enterprise applications become more distributed, adaptive to technological advancements, and run from hybrid infrastructure, teams need to navigate through different complexities and make key security decisions along the way. A trusted security advisor empowers teams to achieve scalable and sustainable security maturity throughout the SDLC process.
Ideal Experience & Qualifications
- Hands‑on product security experience from developing requirements, reviewing architecture, applying design principles, to application security, pipeline security, infrastructure, and secure monitoring.
- Experience in leading security initiatives, dev(sec)ops practices with product and engineering teams.
- Experience in threat modelling and designing security/privacy controls to mitigate risks.
- Experience in application security, supply chain security, and using tools such as SAST, DAST, SCA, and IAC.
- Experience in reviewing code to spot weaknesses and suggesting mitigations.
- Experience applying industry standards like OWASP ASVS (Application Security Verification Standard), OWASP Top 10, CIS controls and benchmarks.
- Good understanding of web application, REST APIs, micro services, eventing, modern application frameworks, and mobile apps.
- Experience with cloud native and hybrid architectures with an emphasis on containerised workloads and Kubernetes.
- Some development experience is always a plus – Java, cloud, Golang, Python. You do not need to “be a developer” but we need you to understand the implications of security on engineering velocity.
- Degree in computer science / information systems or engineering field, or equivalent experience. Experience with regulations like GDPR, PCI‑DSS is desirable.
- Azure or AWS cloud security certifications is desirable.
- Good communicator, listener, influencer.
Our Vision at Tesco
Our vision at Tesco is to become every customer\’s favourite way to shop, whether they are at home or out on the move.
Diversity, Inclusion & Accessibility
We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. We celebrate diversity, recognise the value and opportunity it brings, and are committed to creating a workplace where differences are valued. We’re proud to have been accredited Disability Confident Leader and are committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please click here.
Working Patterns
We’re a big business and we can offer a range of diverse full‑time & part‑time working patterns across our many business areas, which means that we can find something that works for you. We work in a more blended pattern – combining office and remote working. Our offices will continue to be where we connect, collaborate and innovate. If you are applying internally, please speak to the Hiring Manager about how this can work for you – everyone is welcome at Tesco.
#J-18808-Ljbffr
Cyber Security Partner (II) employer: Tesco UK
Contact Detail:
Tesco UK Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Partner (II)
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the cyber security field. Attend meetups, webinars, or even online forums. The more people you know, the better your chances of landing that Cyber Security Partner role.
✨Tip Number 2
Show off your skills! Create a portfolio or a personal project that highlights your understanding of security principles and threat landscapes. This will not only impress potential employers but also give you something tangible to discuss during interviews.
✨Tip Number 3
Prepare for those interviews! Research Tesco’s security initiatives and be ready to discuss how you can contribute to their goals. Tailor your answers to reflect their values and the unique approach they take towards security partnerships.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in being part of the Tesco team.
We think you need these skills to ace Cyber Security Partner (II)
Some tips for your application 🫡
Know Your Stuff: Before you start writing, make sure you understand the role inside out. Dive into the job description and highlight key responsibilities and qualifications. This will help you tailor your application to show how you fit perfectly with what we're looking for.
Be Authentic: When you're writing your application, let your personality shine through! We want to see the real you, so don’t be afraid to share your passion for cyber security and how it aligns with our mission at Tesco. Authenticity goes a long way!
Showcase Your Experience: Use specific examples from your past work to demonstrate your skills and achievements. Whether it's a project you led or a challenge you overcame, make sure to connect your experiences to the responsibilities of the Cyber Security Partner role.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets to the right people. Plus, you’ll find all the info you need about the role and our team there!
How to prepare for a job interview at Tesco UK
✨Know Your Tech Stack
Familiarise yourself with the technology stack mentioned in the job description, especially around cloud services like Azure and AWS. Be ready to discuss how these technologies impact security and how you can leverage them to enhance security maturity.
✨Understand the Threat Landscape
Research current trends in cyber threats relevant to the industry. Be prepared to talk about specific risks and how you would approach mitigating them. This shows that you’re proactive and understand the importance of a risk-based approach.
✨Showcase Your Communication Skills
As a Cyber Security Partner, you'll need to engage with various teams. Practice articulating complex security concepts in simple terms. Use examples from your past experiences where you successfully communicated security needs to non-technical stakeholders.
✨Emphasise Collaboration
Highlight your experience working in cross-functional teams, especially in agile environments. Discuss how you’ve partnered with engineering teams to drive security initiatives without being overly controlling, aligning with Tesco's philosophy of being security partners.