Senior Incident Responder - DFIR

Senior Incident Responder (DFIR)

Location: Hybrid (UK-based)

Job Type: Full-time

Salary: Competitive + up to 20% annual bonus

Are you a seasoned DFIR professional with a passion for digital forensics and incident response? Do you thrive in high-pressure environments and want to make a real impact in protecting one of the UK's largest retailers? If so, Tesco Technology wants you on our team.

We're looking for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You'll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams.

What You'll Be Doing

️ Lead Investigations: Conduct host, network, and cloud-based forensic analysis to uncover the full scope of security incidents.

️ Incident Handling: Support incident managers with root cause analysis and recommend detection and prevention strategies.

️ Drive Innovation: Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities.

Threat Hunting: Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering efforts.

What We're Looking For

• 4+ years of hands-on experience in DFIR or cyber incident response
• Strong background in forensic analysis across Windows, MacOS, and Unix systems
• Experience in large-scale corporate environments, ideally with Microsoft Azure
• Proficiency in tools like EDR, SOAR, SIEM, and scripting languages (Python, PowerShell)
• Calm, analytical mindset with the ability to lead technical investigations under pressure

Bonus: Experience with static and dynamic file/malware triage

Why Tesco? At Tesco, we're more than just a retailer - we're a team of problem-solvers, innovators, and collaborators.

Our purpose is simple: Serving our customers, communities, and planet a little better every day. We're proud to foster an inclusive culture where everyone feels welcome and valued.

What's In It For You?

Up to 20% annual bonus

25 days holiday + personal day + bank holidays

Private medical insurance

Generous parental leave policies

24/7 virtual GP & mental wellbeing support

Blended working model (office + remote)

Ready to make a difference? Apply now and help us protect Tesco from the threats of tomorrow.