Senior Database Security Specialist

About Us

Tesco Technology was established in Prague to support Tesco’s retail business in Central Europe and across the Tesco Group. What began as a regional center over 25 years ago has evolved into a modern, forward-thinking team, driving innovation and digital transformation throughout the region.

With operations in the UK, Ireland, India, Hungary, Poland, and the Czech Republic, we’re committed to delivering great value to our customers every day.

Role Summary

We’re expanding our team and looking for a seasoned professional to help elevate the security posture of our Oracle and SQL database environments. Whether you come from an IT security background or you’re an experienced DBA ready to broaden your expertise, we’d love to meet you.

Your focus will span areas such as risk management, regulatory compliance, and the development and enhancement of security policies — with plenty of room to grow, learn, and shape our security landscape.

This role is based in or near Prague, with a hybrid setup that brings us together in the office three days a week. We offer relocation support and visa assistance for candidates moving to the Czech Republic.

What You’ll Be Responsible For

Risk Management

• Assess security risks across complex, business‑critical systems, applications, and processes.
• Conduct and document in‑depth risk assessments.
• Contribute to the design and rollout of security solutions and programs.

Regulatory Compliance

• Support programs that ensure alignment with key industry and government standards (ISO‑27001, PCI‑DSS, HIPAA, FedRAMP, GDPR, etc.).
• Research and interpret evolving regulations and standards, translating them into actionable guidance for the business.
• Participate in industry forums and stay ahead of compliance developments.
• Mentor colleagues and support reporting for leadership.

What You’ll Do

• Help build and refine our security control catalogue, policies, and procedures — and support their implementation.
• Apply your knowledge of applications, data classification, governance, logging, and authorization.
• Translate security requirements into scalable, secure database controls.
• Review application architectures to identify design flaws or missing controls.
• Lead improvements in security processes, tools, and methodologies.
• Use static and dynamic analysis tools to support testing and vulnerability discovery in CI/CD pipelines.
• Conduct security assessments and audits.
• Collaborate with Corporate Security and system owners to ensure consistent standards.
• Automate infrastructure tasks using Python, Ruby, Terraform, Ansible, or Oracle Apex.
• Drive innovation and integrate new technologies into ongoing projects.
• Provide expertise and leadership across cross‑functional initiatives.
• Stay curious and continuously learn new technologies and security practices.
• Apply and expand your knowledge of encryption technologies.

What We’re Looking For

We welcome two types of candidates — and everyone in between:

1. Experienced IT Security Professionals

You bring several years of hands‑on experience in security analysis, ideally with exposure to IAM and database environments.

2. Senior DBAs Ready to Grow Into Security

If you’re a strong Oracle or SQL expert who’s eager to deepen your knowledge in IT security, we’re excited to support your development. Security experience is advantageous, but not essential — a willingness to learn is.

Additional Skills & Experience

• Strong background with Oracle databases (SQL experience is a plus).
• Experience with security assessments or audits is helpful.
• Typically 5+ years of professional experience (7–10 years preferred).

Please send your application with a CV.