About the role
This role is for a senior security analyst responsible for Cyber Threat Intelligence. This involves the collection, triage and dissemination to cyber security operational and engineering teams, the wider group, and security and technology leadership. This includes the ongoing research of cyber threats and associated tactics, techniques, and procedures. The role is part of a global team that responds to cyber security threats.
You will be responsible for
You will be required to analyse and gain insight from large, complex datasets, focusing on researching cyber threats, applying business context, and prioritising the triage and sharing of threat intelligence within the group. Attention to detail and an ability to spot trends will be crucial. You should have a strong understanding of cyber threats and the associated methodologies and frameworks, such as Mitre ATT&CK, the Cyber Kill Chain, Pyramid of Pain, and the Diamond Model. Prior experience in an intelligence or cyber security focused role is preferable. Experience of malware analysis is beneficial, but not a must have. You will also be responsible for the ongoing development and improvement of threat intelligence processes and capability for the group.
You will need
Key Skills and Experience:
An analytical mindset; demonstrated ability to break down and analyse complex problems to gain insight using disparate and large-scale data sources
Attention to detail and the ability to spot trends in data
Strong written and verbal communication skills: articulating insight gained through analysis to teams; making recommendations for next steps and response actions
Understanding of cyber threats and experience using the associated methodologies and frameworks, such as Mitre ATT&CK, the Cyber Kill Chain, Pyramid of Pain, and the Diamond Model
A broad understanding of security concepts; an interest and passion for cyber security
Desirable Skills and Experience:
An understanding and experience of malware analysis is beneficial, but not a must have
Working knowledge of at least one programming language, including scripting languages such as Python or PowerShell
Experience of threat intel platforms and security automation platforms (e.g. TIP & SOAR)
Experience writing detection rules (e.g. YARA, Sigma)
One or more from: GIAC. Where appropriate other industry relevant certifications will be considered.
What's in it for you
We offer excellent benefits that help make Tesco a great place to work. These include but aren't limited to:
- An annual bonus scheme which you can achieve up to 20% of base salary
- Colleague Clubcard (including a 2nd card for a family member) after 6 months service with 10% off most purchases at Tesco
- Holiday starting at 25 days plus a personal day
- A retirement savings plan - 4%-7.5% contribution rate
- Life Assurance - 5 x contractual pay
- Buy As You Earn Scheme
- Save As You Earn Scheme
- Deals & Discounts through Tesco including Tesco Mobile & Tesco Bank
- Deals and Discounts through many other external businesses
Our vision here at Tesco is to become every customer's favourite way to shop, whether they are at home, out shopping, on the move, anywhere in the world.
We want our customers to be inspired and whatever they are looking for, we're finding bigger and better ways to provide it.
Everything is underpinned by our continuous drive for the best tools and technology to deliver our vision. We're driving innovation and transforming our Technology to become the world's leading retailer.
We need people who share our ambition to deliver for our customers; Passionate and confident people willing to take the initiative and drive us forwards. In return we offer excitement, a great team, an excellent benefit package, and significant career development opportunities.
Joining us means playing a part in defining; building and launching an ambitious roadmap of digital products that could affect the lives of millions of people over the years to come.
If that sounds exciting then we'd love to hear from you.