At a Glance
- Tasks: Lead cloud security projects and protect Google Cloud environments for top-tier clients.
- Company: Global tech group based in London, focused on innovative solutions.
- Benefits: Competitive salary, private medical insurance, flexible working, and 28 days leave.
- Other info: Diverse and inclusive workplace with clear career progression opportunities.
- Why this job: Join a dynamic team and make a real impact in cloud security.
- Qualifications: Experience in SIEM/SOC, Google Cloud security, and scripting languages.
The predicted salary is between 60000 - 80000 £ per year.
We are a global technology group, headquartered in London. We deploy experts and frontier technology, like AI, to help organisations thrive through change. We have over 600 professionals (>75% hands‑on technical talent) spread across Europe, North America and Asia, and are backed by Marlin Equity Partners.
About the role: We help regulated and enterprise customers protect their Google Cloud Estates. As a Premier Google Cloud Partner, we deliver Google Unified Security (GUS) engagements across the full stack — from greenfield SIEM/SOAR deployments and SOC modernisation programmes to detection engineering, posture management, threat hunting, and incident response uplift. We secure GCP estates with the adoption of CI/CD pipelines, secure landing zones and cloud posture reviews, and provide expertise when integrating third‑party tools such as Wiz.
What you'll do:
- Google SecOps (SIEM / SOAR): Lead end‑to‑end SecOps deployments – tenant setup, multi‑tenant architecture, data ingestion, retention design, RBAC, and feed onboarding. Build and maintain parsers, UDM mappings, and data models for Google Cloud, AWS, Azure, endpoint, identity and network sources. Write, test and tune YARA‑L detection rules, including single‑event, multi‑event and composite detections. Design SOAR playbooks and Python integrations. Develop custom agents that can be deployed in customer environments using GCP infrastructure.
- GCP: Configure CI/CD pipelines with integrated security tools. Configure GCP security solutions including Security Command Centre Enterprise, IAP, VPC Service Controls and Model Armor. Work with platform teams to support the deployment of secure cloud foundation blueprints. Support clients with secure AI workloads, including the use of Model Armor and agent identities.
- Google Threat Intelligence: Operationalise Google Threat Intelligence inside SecOps – IoC matching, Applied Threat Intelligence and curated detections. Build threat‑informed defence programmes tied to customer‑specific threat profiles (sector, geography, adversary groups). Run threat‑hunting campaigns using GTI, Mandiant Frontline Intelligence, and UDM search. Validate detection coverage against MITRE ATT&CK using Mandiant Security Validation where in scope.
- Practice growth: Mentor engineers and consultants; lead internal SecOps and GUS enablement. Represent the practice in pre‑sales, customer workshops and Google partner forums.
What we're looking for:
- Essential: Strong SIEM/SOC delivery experience (any major platform; Google SecOps / Chronicle preferred). Hands‑on with Google SecOps: UDM, YARA‑L, parsers, SOAR playbooks, data ingestion patterns. Solid grounding in Google Cloud security primitives: IAM, Organization Policies, VPC Service Controls, Cloud Logging, Cloud KMS. Comfortable with Terraform, CI/CD pipelines and at least one scripting language (Python, Go) for automation, parser development and integration work. Experience supporting regulated workloads (financial services, public sector, healthcare) and translating compliance requirements into operational controls. Able to explain risk, trade‑offs and findings to both SOC analysts and executive stakeholders.
- Nice to have: Google Professional Cloud Security Engineer or Google SecOps certification. Prior SIEM migration experience (Splunk → SecOps, Sentinel → SecOps, etc.). Experience with adjacent tooling: Wiz, CrowdStrike, Splunk, Sentinel, Snyk. Consulting or systems‑integrator background. Contributions to open detection content (Sigma, MITRE, public rule repositories).
Benefits: We believe in supporting our team members both professionally and personally. Here's how we invest in you:
- Compensation and Financial Wellbeing: Competitive base salary. Matching pension scheme (up to 5%) from day one. Discretionary company bonus scheme. Four annual salary death‑in‑service coverage from day one. Employee referral scheme. Tech Scheme.
- Health and Wellness: Private medical insurance from day one. Optical and dental cashback scheme. Help@Hand app: access to remote GP’s, second opinions, mental health support and physiotherapy. EAP service. Cycle‑to‑work scheme.
- Work‑Life Balance and Growth: 28 days annual leave (plus bank holidays). One paid day off for your birthday. Ten paid learning days per year. Flexible working hours. Work from anywhere (up to 3 weeks per year). Industry‑recognised training and certifications. Bonusly employee recognition and reward platform. Clear opportunities for career progression. Length‑of‑service awards. Regular company events.
Diversity and Inclusion: At Beyond we champion diversity and inclusion. We believe that a career in IT should be open to everyone, regardless of race, ethnicity, gender, age, sexual orientation, disability or neurotype. We value the unique talents and perspectives that each individual brings to our team, and we strive to create a fair and accessible hiring process for all.
Senior Cloud Security Engineer (SecOps / GCP) in Portsmouth employer: Qodea
As a leading global technology group based in London, we pride ourselves on fostering a dynamic work culture that prioritises innovation and personal engagement. Our commitment to employee growth is evident through our extensive training opportunities, flexible working arrangements, and a supportive environment that champions diversity and inclusion. Join us to work alongside top-tier professionals while contributing to impactful projects for some of the world's most renowned brands.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Cloud Security Engineer (SecOps / GCP) in Portsmouth
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Qodea, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through Qodea
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Qodea. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Senior Cloud Security Engineer (SecOps / GCP) in Portsmouth
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Qodea insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Qodea that you’re committed to staying ahead in the game.
How to prepare for a job interview at Qodea
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at Qodea to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Qodea.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.
