We are an Agile business, organised around cross functional end-to-end squads which are then grouped into Tribes and Centres of Excellence (CoE). This is a cyber engineer role with its home in the Cyber Security Chapter, that in turn sits within the Business Integrity CoE, which brings the functions of Legal, Regulatory & Compliance, Cyber Security, and Risk (including Crisis Management) together. This role will report into the Cyber Security Chapter Lead and be a core member of the cyber team. This role is crucial in safeguarding our customers’ data and ensuring the integrity of our systems. The Cyber Security Engineer will be responsible for implementing and improving security controls across the business in line with recommendations built from the cyber security strategy. Ultimately, being a pivotal colleague in achieving the organisational Objective "Protecting Our Customers & Business Is Non-Negotiable". The Cyber Security Engineer will work collaboratively to prioritise workstreams that deliver the most significant improvements to Tesco Mobile's security posture, including, but not limited to Perimeter, Network, Endpoint, Software, Third Party Risk, Monitoring, and SOC. This role can be based in any of our 3 head offices (Slough, Welwyn Garden City or Manchester). Occasional travel to the other offices may be required and is expensable. Tesco Mobile currently operate a hybrid working arrangement with a minimum of 2 days per week collaborating with colleagues at an office, Store, or Supplier location. This role has potential for career growth or learning opportunities for the right person. As a Security Engineer, you will help to build out our detection capability, develop dashboards for monitoring and compliance of controls using Splunk or other data platforms, automate integrations between platforms and tooling, translate requirements into tasks and code, data correlation and supporting of the vulnerability and incident processes. You will be part of the core cyber chapter supporting the run and operate of cyber security controls to ensure we are effectively protecting the business. You may also be required to evaluate new tools and techniques, being able to articulate their value and impact and help lead the roadmap and strategy for tooling within the cyber chapter. Contribute to resolution of any security incidents, Bug Bounty submissions and external threat intelligence. This role with require you to work closely with cross-functional teams in all aspects of the business. 4 years of experience working in the cyber security industry with experience of responding to security incidents in large scale corporate environments. Proficiency in at least one programming or scripting language such as Python, Power Shell, Terraform or similar. Experience of platforms like Splunk and writing of SPL. Understanding basic principles of networks, infrastructure, and cloud environments. Experience with vulnerability scanning tools such as Qualys and Tenable etc and to categorise criticality as well as risk of a vulnerability. Keen to cultivate a culture of collaboration, innovation and bringing industry standards to everything we do. Proactive and able to operate independently. Comfortable with ambiguity. You are resilient – you take ownership of seeing issues through to resolution whilst looking after yourself to be at your best. Have a passion for technology and can share that passion with others. Any relevant certifications that would be beneficial, such as CISSP, CEH, or CISM. LI-AF2 LI-Hybrid