About the Cyber Security Team Our cyber security team are the eyes and ears of our organisation. We use pioneering technology to increase visibility and protection of systems, services, and data. To do this, we need to stay ahead of the latest threats and continuously improve our tooling, techniques, and processes. We’re continually working to enhance security capabilities to further improve the protection and controls we offer for our customers and colleagues across the UK, Europe, and Asia. We’re looking to add talented individuals to our growing team. We believe skilled and passionate people are our greatest asset in reducing risk to our business and customers. We encourage ongoing development and learning, and recognize the importance of staying current with technological changes and evolving threats. Role Overview: Security Engineer As a Security Engineer, you will leverage your expertise to define, implement, and enhance capabilities to detect, prevent, and respond to security threats and incidents. You will enable faster and more effective responses by designing and implementing automated security processes. Your responsibilities will include: Defining, designing, and implementing security automations to improve detection, prevention, and response capabilities. Driving the security automation roadmap based on team feedback and your research and development efforts. Collaborating with analysts and engineers to improve workflows and efficiency. Designing and developing security automations across SOAR platforms and other tools. Utilizing REST APIs and Python for tooling development. Working with existing security automation teams to improve playbooks and automations. Managing day-to-day security processes for the Tesco Group. Candidate Profile You should be self-motivated, ambitious, and able to work in an agile, fast-paced environment. Flexibility, responsiveness, creativity, and passion are essential qualities. You should also possess strong relationship-building skills with peers and senior leaders, and demonstrate excellent communication skills across all levels of the organization. Technical Skills: Hands-on experience with Security Orchestration, Automation, and Response (SOAR) platforms. At least 2 years of experience using Python for development. Understanding of REST APIs and ability to interact with third-party APIs. Knowledge of the MITRE ATT&CK framework or similar, including threat actor tactics and techniques. Soft Skills: Curiosity, passion, and proactive attitude towards security and personal growth. Strong interpersonal, written, and verbal communication skills. Ability to work independently and as part of a team, building relationships across the organization. Desirable Certifications:Relevant certifications such as SANS SEC573, SEC598, SEC673 are preferred.#J-18808-Ljbffr
Job Title
Senior Security Engineer - Security Automation