Senior Security Engineer

Job Description

Qodea (formally Appsbroker CTS) is the largest Google Cloud-only digital consultancy in Europe. Our name marks the culmination of a journey which began with the merger of Appsbroker and CTS in 2023. Combining the words ‘code’ and ‘idea’, our name embodies the essence of who we are and what we do; providing tried and trusted digital solutions, whilst helping our clients look to the future and innovate. We’re looking for bright, passionate people to join us at the vanguard, delivering the most ambitious Google Cloud projects across AI, security, martech, data, and Workspace.

With offices across Europe, you’ll be joining a dynamic team of talented but down-to-earth experts, with a presence across the UK, the Netherlands, Romania, and Belgium.

By joining forces, both companies bring over 15 years of Google Cloud experience under one roof, with over 420+ Google certifications, a list of brilliant enterprise customers, incredibly talented people, and multiple industry awards - meaning we can be trusted to deliver.

Role overview:

Qodea is dynamic and the role is varied so you’ll get involved in a wide range of activities but here is how a day would look like:

• Act as a senior member of the team, driving security incident responses and leading threat hunting initiatives.
• Research new attack techniques and analyse logs and system artefacts to develop effective detection logic.
• Leverage your experience to enhance team efficiency through automation and the design of improved processes.

Responsibilities:

• Lead the response to security incidents, conducting thorough investigations using log correlation, malware analysis, and digital forensics, while maintaining clear communication with stakeholders.
• Lead threat hunting efforts by analysing infrastructure signals to detect potential attacks and incorporate findings into improved security controls for clients.
• Design, implement and maintain detection rules and automation playbooks utilising both no-code platforms and scripting languages.
• Administer security tools and optimise log visibility in customer environments while onboarding new systems to SIEM, building integrations for SOAR and overseeing tool performance and configuration.
• Maintain an up-to-date knowledge base of investigation guides and runbooks, promoting team contributions and regularly updating incident response plans.
• Provide mentorship and technical guidance to junior security analysts.
• Participate in our incident response on-call service to support the team when necessary.

Requirements

Key Skills:

• Excellent communication skills in English, both written and verbal.
• In-depth understanding of how adversaries compromise networks and the stages of an attack.
• Experience working in a defensive security role, including identifying threats, investigating incidents, and translating findings into actionable detection mechanisms.
• Excellent analytical skills with expertise in conducting large-scale log analysis, including manipulating and correlating log data using queries in SIEM or data lake platforms, as well as scripting with their APIs.
• A minimum of 5 years of hands-on experience with enterprise security technologies (e.g., SIEM, SOAR, EDR, and CNAPP solutions), securing operating systems and cloud platforms, and a proven ability to identify indicators of compromise across these environments.
• Expertise in automating repetitive tasks using scripting languages (e.g., Python, PowerShell), infrastructure management with IaC, and deployment processes with CI/CD tools.

• Self-driven with the ability to work independently and collaborate effectively in teams.

Desirable Skills:

• Experience in planning and executing penetration tests to identify vulnerabilities and misconfigurations.
• Experience in safeguarding CI/CD pipelines, utilising both commercial and custom-built solutions.

Benefits

• Health Care package
• NN Assurance package (life and health)
• 28 days PTO as standard, plus a flexible annual leave policy and your birthday off
• 10 learning days per year
• Length of service awards
• Work from anywhere for up to 90 days per year
• Sabbatical leave for employees over 5 years service
• Flexible working culture
• Meal tickets
• Transportation costs
• Bookster Platform
• Company events - opportunities to meet colleagues you don’t see every day
• Regular opportunities for industry recognised training and certifications
• Opportunities to develop within a fast growing-tech business with ambitious growth and impact goals

Diversity and Inclusion Statement:

At Qodea, we look after each other in an environment where everyone can work together to achieve great things. We’re proud of our people-first culture that welcomes individuals from all backgrounds. Our commitment to diversity and inclusion creates a dynamic community, unlocks innovation and great ideas, and unites us around a common purpose - and we look for talented people to join us who share these values.