onsite
Security Engineer II - Tesco
Security Engineer
Cyber Security Engineer II focused on enhancing Tesco’s prevention capabilities across on‑prem and cloud environments, leveraging Python, AWS, and advanced threat intelligence to protect a diverse asset estate.
About the role
Key Responsibilities
- Design, implement, and continuously improve security controls across on‑prem and public cloud assets, ensuring robust protection for servers, workstations, and identities.
- Collaborate with security operations, detection engineering, and risk & compliance teams to identify gaps, prioritize remediation, and align security initiatives with business objectives.
- Develop and maintain automated scripts (Python) for vulnerability scanning, configuration management, and incident response workflows.
- Analyze threat intelligence feeds and emerging attack trends to proactively strengthen defenses and update security policies.
- Lead incident investigations, conduct root‑cause analysis, and produce actionable recommendations for future prevention.
Requirements
- 3+ years of experience in cyber security engineering, with a strong focus on prevention and detection.
- Hands‑on knowledge of threat intelligence, risk assessment, and compliance frameworks (ISO 27001, NIST).
- Excellent communication skills and ability to work cross‑functionally with technical and non‑technical stakeholders.