Senior Red Teamer

Tesco UK  •  Welwyn Garden City  •  Hybrid  •  Full-Time  •  Apply by 28-Jul-2025 About the role We are passionate about step changing our cyber security capability to better protect customers and colleagues across our global business. 
As part of this we’re growing our security testing function to complement and help further mature our defensive security capabilities.
  This new role is the ideal opportunity for a red teamer who would like to embrace the challenge of helping us build a red team capability to complement our team of penetration testers. As we broaden our security testing to become more threat-led, we want to ensure we regularly test ourselves against the potential threats we might face.
We encourage positive engagement with our detection and response teams to help push the envelope of what we do at Tesco. You will have the opportunity to help support and develop a mature blue team capability even further. 
You will also support and collaborate with application and infrastructure teams to help address any underlying issues that you find along the way.
What is in it for you We’re all about the little helps. That’s why we make sure our Tesco colleague benefits package takes care of you – both in and out of work. Click Here to find out more!   

• Annual bonus scheme of up to 20% of base salary 
• Holiday starting at 25 days plus a personal day (plus Bank holidays) 
• Private medical insurance 
• 26 weeks maternity and adoption leave (after 1 years’ service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay, we also offer 4 weeks fully paid paternity leave 
• Free 24/7 virtual GP service, Employee Assistance Programme (EAP) for you and your family, free access to a range of experts to support your mental wellbeing 

You will be responsible for You’ll be working in an offensively trained and defensively focused security team. Your primary responsibility will be to help us further mature our security testing team to include a threat-led testing capability. 
You’ll be working in a team of other testers and, unlike in a typical consultancy role, you’ll also have the advantage of being able to use internal knowledge, data sources and tools to help identify attack vectors and be able to test out your hypotheses.
  There will be other opportunities to stretch your skills:
• Supporting our wider security capability by providing a red teamers perspective to pentesting, security    detection and prevention engineering • Lead , mentor and develop other team members to drive forward high performance• Support the validation of findings from our bug bounty program • Triage and validate Tesco’s risk posture for newly released CVEs as part of vulnerability management
You will be supported in your career development and given time and opportunities to carry out personal research as well as put yourself through certifications supported by us to ensure you remain at the leading edge of offensive security.
You will need • Experience of leading or performing red team engagements in a corporate environment, exposing weaknesses in security that potentially could be exploited  • Familiarity with established frameworks such as TIBER-EU or MITRE ATT&CK
• Experience of at least one C2 framework (for example Cobalt Strike, Mythic, Havoc)
• Experience of building or managing C2 infrastructure
• CRTO or other industry relevant certifications are desired but not crucial
• Knowledge of preventative and detective controls (EDR, firewalls, IDS, IPS, anti-virus, etc)
• Analytical and critical thinking skills, willingness to challenge status quo
• Good written and oral communication skills
• To be comfortable working both independently, and collaboratively in a diverse team
About us Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or out on the move. Our core purpose is ‘Serving our customers, communities and planet a little better every day’. Serving means more than a transactional relationship with our customers. It means acting as a responsible and sustainable business for all stakeholders, for the communities we are part of and for the planet.    We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. At Tesco, we not only celebrate diversity, but recognise the value and opportunity it brings. We're committed to creating a workplace where differences are valued, and make sure that all colleagues are given the same opportunities. We’re proud to have been accredited Disability Confident Leader and we’re committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please click here.    We’re a big business and we can offer a range of diverse full-time & part-time working patterns across our many business areas, which means that we can find something that works for you.  We work in a more blended pattern - combining office and remote working.  Our offices will continue to be where we connect, collaborate and innovate.  If you are applying internally, please speak to the Hiring Manager about how this can work for you - Everyone is welcome at Tesco.