Security Architect

This job has now expired please search on the home page to find live IT Jobs.

About The Cyber Security Team

Our cyber security team are the eyes and ears of our organisation. We use the latest technologies to increase visibility and protection of systems, services and data. To do this we need to stay ahead of the latest threats and continuously improve our tooling, techniques, and processes.

Responsible for developing and running security processes day-to-day for the Tesco Group, we're continually working to step change security capability to further enhance the protection and controls that we offer for our customers and colleagues across the UK, Europe and Asia, and we're looking to add great people to our growing team.

We believe that skilled and passionate people are our greatest asset in reducing risk to our business and customers. We encourage and support continual development and learning, and recognise the importance of keeping up with changes in technology and an evolving threat landscape.

Communication is key - working collaboratively with our software and systems engineering teams to support security throughout the development lifecycle, as well as to build proactive monitoring and responses to security events.

Main Responsibilities

Security Architect

Whilst they will be supported by a wider team, this role will be the SME on security architecture for the Tesco global business.

You'll provide technical expertise on matters pertaining to information security, as well as being an active member of the security architecture team. building strong relationships across the business, to enable a good understanding of changes in the pipeline and be in a position to influence ideas, initiatives and designs early on.

Additionally you'll contribute to Tesco's enterprise security architecture ensuring it is fit for purpose against current threats and aligned to the business risk appetite.

Being responsible to enable the delivery of secure products to customers through proactive engagement with the development and DevOps teams, as well as ensuring projects and business initiatives are delivered securely with residual risks articulated clearly for the business to make a decision on.

You'll manage the end-to-end formal security architecture processes, engaging external resources where necessary, removing or minimising delay to the business and commissioning, tracking remedial work identified as being required. You'll also provide guidance on information security to other architects, developers and the wider Tesco business to enable informed decisions to be taken.

Requires in-depth technical knowledge and experience; has developed specialised skills or is multi-skilled

Applies best practices and knowledge of internal/external business challenges to improve products, processes or services

Has developed depth and breadth of expertise in information security and architecture and moderately deep knowledge of other technical teams remits

Solves, and leads others to solve, unique and complex technical problems with a broad impact on the business

Anticipates customer needs; assesses requirements and identifies new solutions

Develops and ensures successful implementation of processes and policies aimed at continuous improvement

Provides full information, analysis and authoritative recommendation which is likely to be accepted by the decision makers

Makes decisions guided by both internal policies and external industry guidelines in non-standard situations

Develops business or technical rationale that impacts resource allocation, programme, or project support and direction

Is accountable for technical contribution to project team

Builds awareness of costs related to own work

The Ideal Candidate

Key Skills and Experience

This role would suit someone with an application security / development background with experience in Security Architecture, to include:

Good knowledge of JIRA

In particular, we would like to target people with experience with OAuth 2.0, OpenID Connect, XACML, SCIM.

Experience with Ping Identity, Twobo Technology and Axiomatics products would be a plus.

Ability to demonstrate advanced understanding in the field of Information Security in terms of both concepts and technology

Experience working with Cloud solutions and securing Amazon Web Services

Knowledge and experience of working with OWASP

Experience of security governance and compliance (e.g. GDPR, PCI-DSS, ISO27001)

Strong understanding of the penetration testing lifecycle (scope, conduct, analysis, client delivery)

An excellent level of attention to detail and a strong sense of ownership

Ability to articulate complex technical or sensitive issues to a wide audience is essential

Ability to work both individually with minimal supervision in addition to working as a part of larger teams on projects of varying complexity

About The Company

Our vision here at Tesco is to become every customer's favourite way to shop, whether they are at home, out shopping, on the move, anywhere in the world.

We want our customers to be inspired and whatever they are looking for, we're finding bigger and better ways to provide it.

Everything is underpinned by our continuous drive for the best tools and technology to deliver our vision. We're driving innovation and transforming our Technology to become the world's leading retailer.

We need people who share our ambition to deliver for our customers; Passionate and confident people willing to take the initiative and drive us forwards. In return we offer excitement, a great team, an excellent benefit package, and significant career development opportunities.

Joining us means playing a part in defining; building and launching an ambitious roadmap of digital products that could affect the lives of millions of people over the years to come.

If that sounds exciting then we'd love to hear from you.

The position will be based at our Campus in Welwyn Garden City.

Package Description

We offer excellent benefits that help make Tesco a great place to work. These include but aren't limited to:

An annual bonus scheme which you can achieve up to 3.5% of base salary

Colleague Clubcard (including a 2nd card for a family member) after 6 months service with 10% off most purchases at Tesco

Holiday starting at 25 days plus a personal day

A retirement savings plan - 4%-7.5% contribution rate

Life Assurance - 5 x contractual pay

Buy As You Earn Scheme

Save As You Earn Scheme

Deals & Discounts through Tesco including Tesco Mobile & Tesco Bank