Security Engineer

Location: London – travel required as per project needs

Work where work matters.

Elevate your career at Qodea, where innovation isn’t just a buzzword, it’s in our DNA. We are a global technology group built for what’s next, offering high‑calibre professionals the platform to tackle high‑stakes work and solve problems that have no ready answers. When you join us, you’ll tackle deadlines that experts can’t meet, working where technology, design, and human behaviour converge to deliver tangible outcomes, fast.

About the Role

We are seeking an experienced Security Engineer with deep expertise in Microsoft Identity and Access Management (IdAM) – specifically Entra ID and Active Directory – to join our Secure Services team. The ideal candidate will have a strong consultancy background and demonstrable experience delivering secure solutions within the UK public sector, including compliance with government security standards and frameworks.

What you’ll do

• Lead the design and hands‑on implementation of modern IdAM solutions, including Microsoft Entra ID, Role‑Based Access Control (RBAC), and hybrid identity configurations.
• Design and implement security configurations for cloud architectures (Microsoft) tailored to public sector requirements.
• Lead security assessments, threat modelling, and risk analysis for cloud‑based and hybrid environments.
• Collaborate with internal teams and external stakeholders to embed security best practices throughout project lifecycles.
• Develop and maintain security documentation, including architecture diagrams, policies, and procedures.
• Advise clients on compliance with standards such as NCSC Cloud Security Principles, ISO 27001, Cyber Essentials Plus, and GDPR.
• Support incident response planning and execution.
• Stay current with emerging threats, vulnerabilities, and regulatory changes.

Experience & Skills

• Proven experience working in a consultancy capacity within the UK public sector.
• Recent, hands‑on experience designing and implementing Microsoft IDAM solutions, with deep expertise in Entra ID and hybrid identity models.
• Strong understanding of security frameworks, risk management, and governance.
• Excellent communication and stakeholder engagement skills.
• Strong knowledge of Microsoft security technologies (Azure Security Center, Sentinel, Defender, Purview, etc.).
• Experience with M365 security and compliance configurations.
• Familiarity with hybrid environments and securing on‑prem to cloud transitions.
• Familiarity with Active Directory.

Leadership & Attributes

• Trusted advisor mindset, able to influence and guide clients.
• Strong collaboration and relationship‑building skills.
• Analytical thinker with a passion for secure cloud adoption.
• A hands‑on problem‑solver, comfortable with both high‑level design and deep technical implementation.

Clearance Requirements

• Ability to obtain (or currently hold) SC/DV Security Clearance
  • SC clearance usually requires 5 years of continuous UK residency.
  • DV clearance usually requires 10 years of continuous UK residency.

Qualifications

• Degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).

Relevant Certifications

• Relevant Microsoft security certifications (e.g., AZ‑500, SC‑300).
• CISSP, CISM, or similar.
• TOGAF or equivalent.

Benefits

Compensation and Financial Wellbeing

• Competitive base salary.
• Matching pension scheme (up to 5%) from day one.
• Discretionary company bonus scheme.
• 4 × annual salary Death in Service coverage from day one.
• Employee referral scheme.
• Tech Scheme.

Health and Wellness

• Private medical insurance from day one.
• Optical and dental cash‑back scheme.
• Help@Hand app: access to remote GPs, second opinions, mental health support, and physiotherapy.
• EAP service.
• Cycle to Work scheme.

Work‑Life Balance and Growth

• 36 days annual leave (inclusive of bank holidays).
• An extra paid day off for your birthday.
• Ten paid learning days per year.
• Flexible working hours.
• Market‑leading parental leave.
• Sabbatical leave (after five years).
• Work from anywhere (up to 3 weeks per year).
• Industry‑recognised training and certifications.
• Bonusly employee recognition and rewards platform.
• Clear opportunities for career development.
• Length of Service Awards.
• Regular company events.

Diversity and Inclusion

At Qodea, we champion diversity and inclusion. We believe that a career in IT should be open to everyone, regardless of race, ethnicity, gender, age, sexual orientation, disability, or neurotype. We value the unique talents and perspectives that each individual brings to our team, and we strive to create a fair and accessible hiring process for all.