Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our Cyber Threat Intelligence team to analyse and combat cyber threats daily.
- Company: Tesco is a leading retailer committed to serving customers and communities sustainably.
- Benefits: Enjoy a bonus scheme, generous holiday, private medical insurance, and mental health support.
- Why this job: Be part of a forward-thinking team dedicated to protecting a major organisation while enhancing your skills.
- Qualifications: 2-4 years in cybersecurity analysis; relevant certifications or degrees are a plus.
- Other info: Flexible working patterns available, combining office and remote work for a balanced lifestyle.
The predicted salary is between 36000 - 60000 £ per year.
Our Cyber Threat Intelligence (CTI) team drives proactive cybersecurity defence by collecting, analysing, and disseminating actionable intelligence to protect the organisation from evolving threats. We focus on anticipating and mitigating risks by identifying emerging threats and reducing uncertainty. Our CTI team collaborates closely with internal teams, including Security Operations, Incident Response, Vulnerability Management, and Security Engineering, as well as external intelligence-sharing communities, to enhance detection, response, and our understanding of the global threat landscape. We are committed to continuous improvement, evolving our tools, processes, and methodologies to ensure Tesco remains secure.
As a Security Analyst in the CTI team, you will be responsible for delivering day-to-day operations, including the collection, processing, and analysis of threat intelligence to produce actionable insights. You will support strategic and operational intelligence initiatives by researching, monitoring, and assessing cyber threats, tactics, techniques, and procedures (TTPs), and ensuring it is shared with our teams. Additionally, you will engage in tactical intelligence activities to help detect and respond to immediate threats. You will also play an active role in improving the overall service capability and helping reduce cyber threats.
What is in it for you
- Annual bonus scheme of up to 20% of base salary
- Holiday starting at 25 days plus a personal day (plus Bank holidays)
- Private medical insurance
- 26 weeks maternity and adoption leave (after 1 years' service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay, we also offer 4 weeks fully paid paternity leave
- Free 24/7 virtual GP service, Employee Assistance Programme (EAP) for you and your family, free access to a range of experts to support your mental wellbeing
You will be responsible for
- Business Understanding and Strategy
- Following our Business Code of Conduct and always acting with integrity and due diligence.
- Continued understanding of Tesco's business operations, goals, and priorities to gather relevant threat intelligence.
- Staying informed on Tesco's cybersecurity strategy and security controls.
- Operational Excellence
- Delivering day-to-day CTI operations consistent with Standard Operating Procedures for high-quality service delivery.
- Improving CTI workflows, tools, and methodologies with automation to improve effectiveness and efficiency.
- CTI service continuous improvement, focusing on quality to maintain high standards, and supporting audits.
- Threat Intelligence Collection, Analysis and Product
- Staying close to the threat landscape and threat actors, tools, and techniques.
- Collecting information from various open, closed, and proprietary sources.
- Conduct comprehensive analysis of, and understand, adversary TTPs.
- Conducting intrusion analysis to identify and understand unauthorised access attempts and activities.
- Analysis of complex structured and unstructured datasets to identify trends, patterns, correlations, and risks.
- Assisting with malware triage, including static and dynamic analysis, to identify and mitigate threats.
- Ensuring Threat Intelligence Platforms, SIEMs, and endpoint detection platforms are used to correlate threats.
- Delivering high-quality strategic, operational, and tactical intelligence products for internal/and trusted external stakeholders.
- Collaboration and Support
- Supporting Security Operations, Threat Hunting, and engineering teams through prioritised intelligence requirements.
- Aligning to cyber frameworks such as MITRE ATT&CK, Cyber Kill Chain, Pyramid of Pain, and Diamond Model to contextualise threats.
- Continuous Learning and Adaptation
- Staying current on threat trends, tools, and techniques to ensure effective defensive strategies.
You will need
- Data Analysis and Intelligence
- Proven analytical skills of large complex structured and unstructured datasets using query languages.
- Experience of intelligence collection and processing techniques, including OSINT.
- Exposure to Structured Analytic Techniques (like ACH) and quantitative methods.
- Application of cyber frameworks like MITRE ATT&CK, Cyber Kill Chain, and Diamond Model in pursuit of producing high-quality intelligence.
- Assisting with malware triage, including static and dynamic analysis, to identify and mitigate threats.
- Awareness of emerging threat trends, tools, and techniques.
- Technical Proficiency
- Hands-on problem-solving and critical thinking skills.
- Proficiency in scripting and processing tools (e.g., Python, PowerShell, Excel) for analysis, task automation, and workflow improvements.
- Broad knowledge of cybersecurity domain and security controls and their role in mitigating threats.
- Communication and Collaboration
- Strong written and verbal skills to produce tailored intelligence products for all levels.
- Collaborating with the shared pursuit of securing the business, whilst fostering trust and belief in each other.
- Supporting new relationships through active participation in intelligence-sharing communities.
- Continuous Improvement and Adaptation
- Proactive, attention to detail and curious.
- Commitment to continuous improvement through workflow optimisation and automation.
Experience relevant for this job:
- 2-4 years of cybersecurity analysis experience in roles like: Threat Intelligence, Security Operations, or Incident Response.
- Candidates with a strong Intelligence background and proven technical skills also considered.
- Experience of delivery into large complex enterprises.
- CTI relevant certifications or industry equivalent (desirable).
- Cybersecurity, Information Technology, or a STEM field degree (desirable).
About us
Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or out on the move. Our core purpose is 'Serving our customers, communities and planet a little better every day'. Serving means more than a transactional relationship with our customers. It means acting as a responsible and sustainable business for all stakeholders, for the communities we are part of and for the planet.
We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. At Tesco, we not only celebrate diversity, but recognise the value and opportunity it brings. We're committed to creating a workplace where differences are valued, and make sure that all colleagues are given the same opportunities. We're proud to have been accredited Disability Confident Leader and we're committed to providing a fully inclusive and accessible recruitment process.
We're a big business and we can offer a range of diverse full-time & part-time working patterns across our many business areas, which means that we can find something that works for you. We work in a more blended pattern - combining office and remote working. Our offices will continue to be where we connect, collaborate and innovate. If you are applying internally, please speak to the Hiring Manager about how this can work for you - Everyone is welcome at Tesco.
Security Analyst CTI employer: Tesco UK
Contact Detail:
Tesco UK Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Analyst CTI
✨Tip Number 1
Familiarise yourself with the latest trends in cyber threats and intelligence. Follow industry leaders on social media, subscribe to relevant newsletters, and participate in online forums to stay updated. This knowledge will not only help you during interviews but also demonstrate your passion for the field.
✨Tip Number 2
Engage with the cybersecurity community by attending webinars, conferences, or local meetups. Networking with professionals in the field can provide valuable insights and potentially lead to referrals. Make sure to mention any connections or events in your conversations with us.
✨Tip Number 3
Brush up on your technical skills, especially in scripting and data analysis tools like Python and PowerShell. Consider working on personal projects or contributing to open-source initiatives that showcase your abilities. This practical experience can set you apart from other candidates.
✨Tip Number 4
Prepare for potential interview questions by practising how to articulate your experience with threat intelligence frameworks like MITRE ATT&CK and Cyber Kill Chain. Being able to discuss these concepts confidently will show us that you understand the role and its requirements.
We think you need these skills to ace Security Analyst CTI
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cybersecurity analysis, particularly in threat intelligence and incident response. Use specific examples that demonstrate your analytical skills and familiarity with cyber frameworks like MITRE ATT&CK.
Craft a Compelling Cover Letter: In your cover letter, express your passion for cybersecurity and how your background aligns with the role. Mention your understanding of Tesco's business operations and how you can contribute to their mission of proactive cybersecurity defence.
Showcase Technical Proficiency: Include any technical skills that are relevant to the position, such as proficiency in scripting languages (e.g., Python, PowerShell) and experience with threat intelligence platforms. Highlight any certifications or training that support your application.
Demonstrate Communication Skills: Since the role requires strong written and verbal communication, provide examples of how you've produced tailored intelligence products or collaborated with teams in previous roles. This will show your ability to convey complex information clearly.
How to prepare for a job interview at Tesco UK
✨Understand the Cyber Threat Landscape
Before your interview, make sure you have a solid grasp of current cyber threats and trends. Familiarise yourself with recent incidents and how they relate to Tesco's operations. This will show your proactive approach and genuine interest in the role.
✨Demonstrate Analytical Skills
Be prepared to discuss your experience with data analysis, especially with large datasets. Highlight specific tools or techniques you've used, such as query languages or structured analytic techniques, to showcase your analytical prowess.
✨Showcase Collaboration Experience
Since the role involves working closely with various teams, share examples of how you've successfully collaborated in past roles. Emphasise your communication skills and ability to foster trust within a team environment.
✨Prepare for Technical Questions
Expect technical questions related to threat intelligence, malware analysis, and cybersecurity frameworks like MITRE ATT&CK. Brush up on these topics and be ready to explain how you've applied them in your previous work.
