Security Engineer (systems Engineering - Application Security)

Job description

About the role
Tesco Technology are looking for a Security Engineer witha Systems Engineering background, reporting into the Application Security Team. This is an exciting opportunity for a highly motivated engineer who is looking to develop their skills in security.

You will be responsible for
In this pivotal role, you will leverage your existing expertise as a Systems Engineer to evolve into a guardian of Tesco digital assets. Your ability to seamlessly blend your system engineering proficiency with an acute focus on security will be instrumental in ensuring the integrity and confidentiality of Tesco critical information.
You will ideally have some knowledge of DevOps practices, with experience in scripting, coding, continuous integration (i.e. Azure DevOps, Jenkins, GitHub Actions etc), cloud and writing technical documentation.
In this role, you can expect to

Work as part of a team to support Application Security tooling consumed by software engineering teams across Tesco

Create infrastructure and environments to simulate software engineering teams setups

Support, monitor, maintain and improve our infrastructure and running of our tooling

Have an understanding of agile working practices i.e. scrum

Work with other members of the Application Security team to identify gaps in software engineering practices and recommend appropriate frictionless security solutions

Documenting easy to consume guidance on our product portfolio

Build safe-by-default guardrails for software engineers to use

You will need
Technical Skills & Experience

Experience of supporting, administering, and building cloud infrastructure (Azure preferred)

Experience with automation tooling, including Jenkins, Terraform, GitHub Actions & Azure DevOps

Experience using open-source software within an enterprise environment

Experience using IDE environments (VSC & IntelliJ) and integrating security tools

Proven experience operating & administrating Linux distributions, including RHEL, Ubuntu & CentOS

Proven experience automating and optimising manual tasks

Scripting experience in Python and Groovy

An understanding of Java and JavaScript programming languages

An understanding of security testing approaches, including SAST, vulnerability scanning, and SCA

Good understanding of secrets management, including use of Azure Key Vault & Hashicorp Vault

Good understanding of containerization and container orchestration (Docker & Kubernetes)

Good understanding of the SDLC and some of the common tools, including JIRA, Git, GitHub, and Nexus

Good understanding of agile processes

Good understanding of networking topology

Good understanding of GitOps practices

Good understanding of architecture and design principles

Strong operations & technical troubleshooting experience

Passion for technology and keeping up to date with latest trends and developments across DevOps and Cyber Security

Ability to interpret, discuss, and contribute to architecture and solution designs, considering security and effective operations

Strong written communication skills and a desire to produce accurate, comprehensible documentation

Soft Skills

A good communicator with solid written and oral communication skills

A team player who is not afraid to get stuck in and work collaboratively.

What's in it for you
We're all about the little helps. That's why we give our wonderful colleagues bags of benefits. Including wellbeing services, an award-winning pension scheme and much, much more, our colleague reward package keeps on giving. And helps make every day a little better for you and your family. These include but are not limited to:

Annual bonus scheme of up to 20% of base salary

Holiday starting at 25 days plus a personal day (plus Bank holidays)

Buy holiday salary sacrifice scheme (for salaried roles)

Private medical insurance

Retirement savings plan - save between 4% and 7.5% and Tesco will match your contribution

LifeAssurance - 5 x contractual pay

26 weeks maternity and adoption leave (after 1 years' service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay, we also offer 4 weeks fully paid paternity leave

The right to request flexible working from your first day with us

Free 24/7 virtual GP service, Employee Assistance Programme (EAP) for you and your family, free access to a range of experts to support your mental wellbeing

A Colleague Clubcard for you & a family member (after 3 months of service), giving you access to lots of discounts in-store & online

Great colleague deals and discounts, saving you money on everyday purchases, eating out and utility bills for the home

Access to our colleague networks providing a space for colleagues to come together from a range of backgrounds. For more information about our colleague networks please click here

Opportunities to get on - take advantage of our ongoing learning opportunities and award-winningtraining, to help you achieve the job and career you want

Click Here to read more about the full range of benefits we have available for our colleagues

About us
Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or out on the move. Our core purpose is 'Serving our customers, communities and planet a little better every day'. Serving means more than a transactional relationship with our customers. It means acting as a responsible and sustainable business for all stakeholders, for the communities we are part of and for the planet.
We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. At Tesco, we not only celebrate diversity, but recognise the value and opportunity it brings. We're committed to creating a workplace where differences are valued, and make sure that all colleagues are given the same opportunities.We're proud to have been accredited Disability Confident Leader and we're committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please click here .
We're a big business and we can offer a range of diverse full-time & part-time working patterns across our many business areas, which means that we can find something that works for you. We work in a more blended pattern -combining office and remote working. Our offices will continue to be where we connect, collaborate and innovate. If you are applying internally, please speak to the Hiring Manager about how this can work for you - Everyone is welcome at Tesco.

{ "@context": "http://schema.org/", "@type": "JobPosting", "title": "Security Engineer (Systems Engineering - Application Security)", "description": " \r\n
About the role
\r\n \r\n Tesco Technology are looking for a Security Engineer witha Systems Engineering background, reporting into the Application Security Team. This is an exciting opportunity for a highly motivated engineer who is looking to develop their skills in security.
\n\r\n
\r\n
\r\n \r\n
You will be responsible for
\r\n \r\n In this pivotal role, you will leverage your existing expertise as a Systems Engineer to evolve into a guardian of Tesco digital assets. Your ability to seamlessly blend your system engineering proficiency with an acute focus on security will be instrumental in ensuring the integrity and confidentiality of Tesco critical information.
\n\nYou will ideally have some knowledge of DevOps practices, with experience in scripting, coding, continuous integration (i.e. Azure DevOps, Jenkins, GitHub Actions etc), cloud and writing technical documentation.
\n\nIn this role, you can expect to
\n\n\n\t

Work as part of a team to support Application Security tooling consumed by software engineering teams across Tesco

\n\t

Create infrastructure and environments to simulate software engineering teams setups

\n\t

Support, monitor, maintain and improve our infrastructure and running of our tooling

\n\t

Have an understanding of agile working practices i.e. scrum

\n\t

Work with other members of the Application Security team to identify gaps in software engineering practices and recommend appropriate frictionless security solutions

\n\t

Documenting easy to consume guidance on our product portfolio

\n\t

Build safe-by-default guardrails for software engineers to use

\n\n\r\n
\r\n
\r\n \r\n
You will need
\r\n \r\n Technical Skills & Experience
\n\n\n\t

Experience of supporting, administering, and building cloud infrastructure (Azure preferred)

\n\t

Experience with automation tooling, including Jenkins, Terraform, GitHub Actions & Azure DevOps

\n\t

Experience using open-source software within an enterprise environment

\n\t

Experience using IDE environments (VSC & IntelliJ) and integrating security tools

\n\t

Proven experience operating & administrating Linux distributions, including RHEL, Ubuntu & CentOS

\n\t

Proven experience automating and optimising manual tasks

\n\t

Scripting experience in Python and Groovy

\n\t

An understanding of Java and JavaScript programming languages

\n\t

An understanding of security testing approaches, including SAST, vulnerability scanning, and SCA

\n\t

Good understanding of secrets management, including use of Azure Key Vault & Hashicorp Vault

\n\t

Good understanding of containerization and container orchestration (Docker & Kubernetes)

\n\t

Good understanding of the SDLC and some of the common tools, including JIRA, Git, GitHub, and Nexus

\n\t

Good understanding of agile processes

\n\t

Good understanding of networking topology

\n\t

Good understanding of GitOps practices

\n\t

Good understanding of architecture and design principles

\n\t

Strong operations & technical troubleshooting experience

\n\t

Passion for technology and keeping up to date with latest trends and developments across DevOps and Cyber Security

\n\t

Ability to interpret, discuss, and contribute to architecture and solution designs, considering security and effective operations

\n\t

Strong written communication skills and a desire to produce accurate, comprehensible documentation

\n\n\nSoft Skills
\n\n\n\t

A good communicator with solid written and oral communication skills

\n\t

A team player who is not afraid to get stuck in and work collaboratively.

\n\n\r\n
\r\n
\r\n \r\n
What's in it for you
\r\n \r\n We're all about the little helps. That's why we give our wonderful colleagues bags of benefits. Including wellbeing services, an award-winning pension scheme and much, much more, our colleague reward package keeps on giving. And helps make every day a little better for you and your family. These include but are not limited to:
\n\n\n\t

Annual bonus scheme of up to 20% of base salary

\n\t

Holiday starting at 25 days plus a personal day (plus Bank holidays)

\n\t

Buy holiday salary sacrifice scheme (for salaried roles)

\n\t

Private medical insurance

\n\t

Retirement savings plan - save between 4% and 7.5% and Tesco will match your contribution

\n\t

LifeAssurance - 5 x contractual pay

\n\t

26 weeks maternity and adoption leave (after 1 years' service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay, we also offer 4 weeks fully paid paternity leave

\n\t

The right to request flexible working from your first day with us

\n\t

Free 24/7 virtual GP service, Employee Assistance Programme (EAP) for you and your family, free access to a range of experts to support your mental wellbeing

\n\t

A Colleague Clubcard for you & a family member (after 3 months of service), giving you access to lots of discounts in-store & online

\n\t

Great colleague deals and discounts, saving you money on everyday purchases, eating out and utility bills for the home

\n\t

Access to our colleague networks providing a space for colleagues to come together from a range of backgrounds. For more information about our colleague networks please click here

\n\t

Opportunities to get on - take advantage of our ongoing learning opportunities and award-winningtraining, to help you achieve the job and career you want

\n\n\n Click Here to read more about the full range of benefits we have available for our colleagues
\n\r\n
\r\n
\r\n \r\n

About us
\r\n \r\n Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or out on the move. Our core purpose is 'Serving our customers, communities and planet a little better every day'. Serving means more than a transactional relationship with our customers. It means acting as a responsible and sustainable business for all stakeholders, for the communities we are part of and for the planet.
\n\nWe are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. At Tesco, we not only celebrate diversity, but recognise the value and opportunity it brings. We're committed to creating a workplace where differences are valued, and make sure that all colleagues are given the same opportunities.We're proud to have been accredited Disability Confident Leader and we're committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please click here .
\n\nWe're a big business and we can offer a range of diverse full-time & part-time working patterns across our many business areas, which means that we can find something that works for you. We work in a more blended pattern -combining office and remote working. Our offices will continue to be where we connect, collaborate and innovate. If you are applying internally, please speak to the Hiring Manager about how this can work for you - Everyone is welcome at Tesco.
\n\r\n
\r\n
\r\n", "identifier": { "@type": "PropertyValue", "name": "Tesco", "value": "868715" }, "datePosted": "2024-02-08", "validThrough": "2024-06-01T00:00", "employmentType": null, "hiringOrganization": { "@type": "Organization", "name": "Tesco", "sameAs": "https://www.tesco.com", "logo": "https://www.tesco.com/images/tesco-logo.png" }, "jobLocation": [ { "@type": "Place", "address": { "@type": "PostalAddress", "streetAddress": "", "addressLocality": "Welwyn Garden City", "addressRegion": "", "postalCode": "", "addressCountry": "United Kingdom" } } ], "baseSalary": null }