Principal Security Architect
About the role
We’re all about the little helps. That’s why we make sure our Tesco colleague benefits package takes care of you – both in and out of work. Click Here to find out more!
Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or out on the move. Our core purpose is ‘Serving our customers, communities and planet a little better every day’. Serving means more than a transactional relationship with our customers. It means acting as a responsible and sustainable business for all stakeholders, for the communities we are part of and for the planet.
We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. At Tesco, we not only celebrate diversity, but recognise the value and opportunity it brings. We're committed to creating a workplace where differences are valued, and make sure that all colleagues are given the same opportunities. We’re proud to have been accredited Disability Confident Leader and we’re committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please click here.
We’re a big business and we can offer a range of diverse full-time & part-time working patterns across our many business areas, which means that we can find something that works for you. We work in a more blended pattern - combining office and remote working. Our offices will continue to be where we connect, collaborate and innovate. If you are applying internally, please speak to the Hiring Manager about how this can work for you - Everyone is welcome at Tesco.
We are
seeking a highly skilled and experienced Principal Security Architect, who will
be responsible for ensuring that all enterprise platforms and solutions align
with our existing security framework and industry standards. This role requires
a deep understanding of security principles, technologies, and best practices
to protect our information assets and ensure compliance with regulatory
requirements. The focus will be on collaborating with key stakeholders across
various domains to enable our technology colleagues to work efficiently and manage
their environments effectively. You will perform comprehensive risk
assessments, develop strategies to mitigate threats, and ensure alignment with
organisational security principles and best practices.
- Design and
implement robust security architectures for enterprise-wide capabilities, which
our technology teams rely on regularly to operate their services and perform
their day-to-day tasks efficiently, addressing identified threats and
vulnerabilities. - Conduct
thorough risk assessments for new systems and existing environments, reviewing
their designs and architectures to ensure they meet modern security requirements,
identifying security risks, and recommending mitigation strategies. - Influence
and guide other teams to implement security solutions by collaborating across functions
to integrate security principles and ensure systems align with business needs. - Ensure all
enterprise platforms align with our existing security framework and industry
standards, while collaborating with other enabling and architecture teams to integrate
security into all aspects of the organisation's operations. - Evaluate
and enhance security processes to improve their efficiency and comprehensiveness. - Continuously
monitor and respond to emerging security trends and threats to workplace environments,
virtualisation technologies, and databases. - Develop
and maintain security architecture documentation, including policies, diagrams,
and procedural guides. - Act as an
SME and advise on the security of the cloud, workplace, and infrastructure
control plane capabilities such as virtualisation layers. - Lead and
participate in internal technology initiatives to implement secure enterprise systems,
ensuring alignment with security frameworks and organisational goals to enhance
security posture.
Soft
Skills:
- Proven
leadership experience as a technical individual contributor in complex organisations. - Analytical
mindset with a proactive approach to identifying and solving security challenges. - Strong
communication and interpersonal skills to articulate complex security concepts
to diverse audiences. - Ability to
work collaboratively with cross functional teams while managing multiple initiatives. - Demonstrated
curiosity and flexibility in applying knowledge and advice.
Technical
Skills:
- Demonstrable
experience and expertise in designing, implementing, and applying balanced
controls from security frameworks such as NIST, CIS, ISO 27001, and MITRE. - Expertise
in security controls and best practices for cloud-based workplace environments. - Proficiency
in Microsoft cloud security, compliance capabilities, identity and access management,
and threat protection, including Microsoft Defender, Microsoft Entra, and Microsoft
Purview. - Expertise
with on-prem virtualisation and container platforms. - Familiarity
with virtualisation security best practices and endpoint security. - Proficiency
in securing databases (e.g., SQL, NoSQL). - Proficiency
in risk analysis, security controls management planning, and disaster recovery planning. - Experience
with security technologies such as firewalls, intrusion detection/prevention systems,
and encryption.
Qualifications
& Experience:
- Strong
knowledge of security frameworks and standards (e.g., NIST, ISO 27001). - Bachelor's
degree in Computer Science, Information Technology, or equivalent experience. - Minimum of
5 years in a security architecture role. - Professional
certifications such as SABSA, CISSP, CISM, or TOGAF are highly desirable.
We’re all about the little helps. That’s why we make sure our Tesco colleague benefits package takes care of you – both in and out of work. Click Here to find out more!
- Annual bonus scheme of up to 45% of base salary
- Car allowance of £7,320 per annum
- Holiday starting at 25 days plus a personal day (plus Bank holidays)
- Private medical insurance
- Retirement savings plan - save between 6% - 10% and Tesco will contribute 1.5 times this amount
- 26 weeks maternity and adoption leave (after 1 years’ service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay, we also offer 4 weeks fully paid paternity leave
Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or out on the move. Our core purpose is ‘Serving our customers, communities and planet a little better every day’. Serving means more than a transactional relationship with our customers. It means acting as a responsible and sustainable business for all stakeholders, for the communities we are part of and for the planet.
We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. At Tesco, we not only celebrate diversity, but recognise the value and opportunity it brings. We're committed to creating a workplace where differences are valued, and make sure that all colleagues are given the same opportunities. We’re proud to have been accredited Disability Confident Leader and we’re committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please click here.
We’re a big business and we can offer a range of diverse full-time & part-time working patterns across our many business areas, which means that we can find something that works for you. We work in a more blended pattern - combining office and remote working. Our offices will continue to be where we connect, collaborate and innovate. If you are applying internally, please speak to the Hiring Manager about how this can work for you - Everyone is welcome at Tesco.