Devsecops Security Engineer - Tesco Mobile

About the role

As one of our DevSecOps Security Engineers, you will be helping the team manage and deploy solutions on platforms in a secure and optimised manner. This will include all aspects of security, maintaining an evolving programme of work to address prioritised concerns, helping to identify threats and risks and working to implement solutions and mitigations. You will also work with the rest of the squad to incorporate more security checks into the CI/CD pipelines. The role will include validation of planned changes to ensure that they comply with best practice and will also involve working with the Cyber Security Team.

You will be responsible for

• Be a team player – live the Tesco Mobile values.
• Implement agreed security improvements to key platforms.
• Act as the subject matter expert for infrastructure security.
• Work with the application development teams to improve application security.
• Crafting business justifications for security improvements and present these to Product Owners and other stakeholders in an eloquent manner for an audience that may not be as technically experienced in Security Engineering.

You will need

We are looking for the following skills & experience:

• Significant commercial experience with cloud and SaaS security improvement projects.
• Significant experience with cloud providers AWS and Azure.
• Experience of CI/CD pipelines and adding security tooling to these.
• Experience using SAST and other techniques to improve code security.
• Experience using AWS Security Hub, Azure Security Center, etc. to improve cloud security position.
• Willingness to learn new skills.

Nice to have:

• Source code systems and branching strategies; Github and Github Actions.
• Experience in a commercial setting using and managing Splunk including defining data streams, indices and ingests and dashboards.
• Experience maintaining and updating infrastructure using IaC tooling.
• Automation experience using a variety of tools and languages including AWS CLI, python, etc.
• Experience automating tasks using PowerShell or Azure CLI.
• Containerisation technologies; Docker and Kubernetes.
• Exposure to Continuous Integration and Continuous Deployment techniques, approaches and tools, including experience with the GitHub and GitHub Actions.

What\’s in it for you

We\’re all about the little helps. That\’s why we give our wonderful colleagues bags of benefits. Including wellbeing services, an award-winning pension scheme and much, much more, our colleague reward package keeps on giving. And helps make every day a little better for you and your family. These include but are not limited to:

• Annual bonus scheme of up to 20% of base salary
• Holiday starting at 25 days plus a personal day (plus Bank holidays)
• Buy holiday salary sacrifice scheme (for salaried roles)
• Private medical insurance
• Retirement savings plan – save between 4% and 7.5% and Tesco will match your contribution
• Life Assurance – 5 x contractual pay
• 26 weeks maternity and adoption leave (after 1 years\’ service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay, we also offer 4 weeks fully paid paternity leave
• The right to request flexible working from your first day with us
• Free 24/7 virtual GP service, Employee Assistance Programme (EAP) for you and your family, free access to a range of experts to support your mental wellbeing
• A Colleague Clubcard for you & a family member (after 3 months of service), giving you access to lots of discounts in-store & online
• Great colleague deals and discounts, saving you money on everyday purchases, eating out and utility bills for the home
• Access to our colleague networks providing a space for colleagues to come together from a range of backgrounds.
• Opportunities to get on – take advantage of our ongoing learning opportunities and award-winning training, to help you achieve the job and career you want

About us

A 50-50 joint venture between Tesco and VMO2 that was established back in 2003, Tesco Mobile has gone from strength to strength as we\’ve launched into new services and markets. With more than 5 million customers, we\’re the largest mobile virtual network operator in the UK. We\’re proud to have an inclusive culture that\’s uniquely Tesco Mobile, with a strong sense of community, plus all the benefits of working for one of the shareholders.

We care for human connection and we keep our customers at the heart of everything we do, which is why we\’ve embraced the Agile way of working. Agile is more than just a methodology – it\’s a liberating journey that puts customers and purpose first. It empowers us to self-organise, collaborate, co-create and rapidly inspect and adapt everything we do – allowing us to respond at pace to our customers\’ needs. It encourages variety of thought and enables us to thrive, both individually and collectively.

We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. At Tesco, we not only celebrate diversity, but recognise the value and opportunity it brings. We\’re committed to creating a workplace where differences are valued, and make sure that all colleagues are given the same opportunities. We\’re proud to have been accredited Disability Confident Leader and we\’re committed to providing a fully inclusive and accessible recruitment process. #J-18808-Ljbffr