Security Engagement Partner

The Security Education & Training team helps all Tesco colleagues with a strong focus on Technology to develop the skills, behaviours and confidence to work securely. We design and deliver engaging learning, drive culture change, support technical enablement, and empower colleagues to champion security in their daily work.

Security Engagement Partners play a key role in shaping and delivering this mission through multi-disciplinary work across campaigns, technical uplift, security communities and colleague engagement. Our Security Engagement Partners support Technology colleagues in mastering the art of becoming a best-in-class Technology professional who takes pride in working securely to protect their solutions, our business and our customers.

Through the development of customised, relevant and engaging training materials and initiatives our team empowers Technology colleagues to own and care about their own security; understanding the simplest and most effective ways to work securely in their role. We’re combining expert pools of thought to conquer the challenge of weaving security values into our existing Technology culture by utilising our expertise in content design, instructional learning and behavioural sciences and combining it with the knowledge of our security teams who not only see the value in empowering our colleagues to know about, care about and act securely about building secure solutions, but also want to have a hand in shaping how we build this knowledge and capability.

This role is about developing a community of Technology colleagues who are developing their security knowledge and experience, so they can empower their teams to become first-rate Technology professionals. As our technology teams design solutions, different security obstacles arise, and this role is to help colleagues comprehend those problems; identify gaps in knowledge or resources and work closely with stakeholders and suppliers to deliver e-learning, videos, webinars, workshops, blogs and a variety of other resources to help Technology teams navigate these changes securely.

This role would be suitable for an expert Security Awareness and Training professional with hands-on experience in training teams on security topics and being responsible for a champion programme.

Following our Business Code of Conduct and always acting with integrity and due diligence and have these specific risk responsibilities:

• Design and deliver clear, engaging security learning across all business areas (e-learning, webinars, workshops, events, micro-learning).
• Work with learning designers to build simple, relevant, role-specific content.
• Develop role-based security skills frameworks outlining required security knowledge, behaviours and capability across job families.
• Creating micro champion communities to discuss successes and problems.
• Working 121 with champions to aid technical improvements or changes to ways of working within their teams and coordinating culture sprints to adopt changes in behaviour.
• Assist our training team in the designing, facilitation and engagement of our Cyber Security technical training events (such as capture the flag, hack-the-box activities) across our Technology colleagues; globally.
• Relaying new changes to champions to distribute to their teams and working with the relevant teams to know and communicate these changes.
• Where champion behaviours can be tracked and measured showcasing development and contributions.
• Reporting on the impact champion initiatives have on risk reduction.
• Comparing trends and evaluating data across job families and teams with more receptive and engaging champions.
• Recognising champion contributions to risk reduction and remediation activities.
• Review of older training modules to update regularly once advice becomes out of date.
• Keeping up to date with changing threat landscape to update training accordingly of the latest criminal tactics and techniques and keep champions updated of these changes.
• Attending industry events and forums to share knowledge and standard processes on the most up to date techniques for implementing security changes.
• Acquiring feedback from champions during product trials and proof of concepts.

This role will suit somebody who enjoys working as part of a team; confident in local and remote stakeholder management; is well organised; pragmatic and a lateral problem solver with an inquisitive mind. Motivation to make change for the better and most importantly; putting our colleagues and customers first; is key!

You’ll need to have proven experience of:

• Outstanding organisational and programme planning.
• Excellent verbal and written communication.
• You must be able to articulate intricate concepts to a very diverse audience.
• Attitude and ability to learn new product areas/domains.
• Prioritising and decision-making skills.
• Comfortable hosting events and delivering training to a large technical audience.

Experience relevant for this job:

• Designing and maintaining an effective champion programme.
• Working in a technology environment or ability to learn technical fundamentals.
• Development & delivery of instructor led training such as learning labs; tabletop sessions and interactive workshops.
• Proven success in working on unstructured problems; defining hypothesis; creating MVPs; running experiments and analysing results to drive data-driven decisions.

We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. At Tesco, we not only celebrate diversity, but recognise the value and opportunity it brings. We’re committed to creating a workplace where differences are valued, and make sure that all colleagues are given the same opportunities. We’re proud to have been accredited Disability Confident Leader and we’re committed to providing a fully inclusive and accessible recruitment process.