Mainframe Cyber Security Engineer - RACF

Mainframe Cyber Security Engineer - RACF

Join to apply for the Mainframe Cyber Security Engineer - RACF role at Tesco

We are seeking a skilled Mainframe Security Engineer to join our team. As part of the Mainframe RACF Security team, the ideal candidate will help ensure the security and integrity of our mainframe systems and will implement security measures, monitor and remediate vulnerabilities, and respond to security incidents. Protect critical data and maintain compliance with industry standards.

• Help design, implement, and maintain security policies and procedures for mainframe systems.
• Monitor mainframe security logs and alerts to detect and respond to potential security incidents.
• Recommend remediation strategies and remediate vulnerabilities.
• Participate in incident response activities, including investigation and reporting of security breaches.
• Collaborate with cross‑functional teams to ensure security best practices are integrated into system development and operations.
• Create, review, and maintain internal documentation (Run books, processes and procedures).
• Meet assigned timelines and complete workloads within SLA.
• Help with daily monitoring of calls for access requirements and requests, prioritise and provide support for user issues with access and system functionality.
• Review and maintain Role Based Access Controls (RBAC), Privileged Access, JML (Joiners/Leavers/Movers), Break glass and Emergency processes.

• Extensive RACF & z/OS experience in mainframe security, including IBM z/OS and other z/OS components.
• SME RACF security product experience is vital.
• Extensive use of IBM z/Secure, including z/Alert, Command Verifier, Access Monitor, RACF Offline and CARLA reporting.
• Understanding of Role Based Access Controls (RBAC).
• Understanding of security framework protocols and compliance standards (e.g., NIST, ISO 27001, PCI‑DSS, GDPR).
• Knowledge of ICFR controls – (previously Sarbanes‑Oxley), security assessments and audits.
• Proficiency in security tools and technologies, such as intrusion detection systems, firewalls, and encryption methods for z/OS.
• Excellent analytical and problem‑solving skills, and ability to work under tight timescales.
• Strong verbal and written communication, capable of conveying complex security concepts to non‑technical stakeholders.
• Familiarity with programming languages such as REXX, COBOL, JCL, CLIST, ISPF, etc.

• Annual bonus scheme of up to 20% of base salary.
• Holiday starting at 25 days plus a personal day (plus Bank holidays).
• Private medical insurance.
• 26 weeks maternity and adoption leave (after 1 year of service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay, and 6 weeks fully paid paternity leave.
• Free 24/7 virtual GP service, Employee Assistance Programme (EAP), and free access to mental well‑being experts.

Our vision at Tesco is to become every customer’s favourite way to shop, whether they are at home or out on the move. Our core purpose is ‘Serving our customers, communities and planet a little better every day’. We are proud to have an inclusive culture where everyone truly feels able to be themselves. We celebrate diversity and are committed to creating a workplace where differences are valued, and all colleagues are given the same opportunities.

We’re proud to have been accredited Disability Confident Leader and are committed to providing an inclusive and accessible recruitment process.

• Seniority level:
  Entry level
• Employment type:
  
  Full‑time
• Job function:
  Information Technology
• Industry: Retail