Senior Security Engineer

Job Title: Senior Security Engineer

Location: Bulgaria, Poland, UK - Remote

Duration: 6 Months (Extendable)

Employment Type: Contract B2B

Roles & responsibilities:

Senior Security Engineering position will perform research, design and engineering assignments for a special project within the European Union. The person in this role must be able to work independently to identify, investigate and remediate ISO-27001 security controls. They must have practical, hands-on experience, with Endpoint Detection & Response and Vulnerability and Compliance Management tools.

Key Responsibilities

• Monitor and Respond to Security Tools:
• Review and analyze outputs from Qualys, or equivalent, vulnerability and compliance scans.
• Actively monitor and respond to alerts from our SIEM (Security Information and Event Management) platform.
• Monitor and react to activity from Antivirus and EDR (Endpoint Detection and Response) tools.
• Security Requirements & Support:
• Define and document security requirements for new development efforts.
• Provide support to Commercial team members to ensure security is considered in product planning and delivery.
• Change Validation:
• Perform production security validation of infrastructure, application, and network changes to ensure they meet internal policies and standards.
• Compliance & Auditing:
• Extract and compile audit evidence for internal Security Plans and support external ISO audits and certifications.
• Collaboration & Other Duties:
• Work cross-functionally with IT, DevOps, and business teams to drive security improvements.
• Perform other duties as required.

Qualifications

• Good experience in an information security or security operations role.
• Hands-on experience with security tools such as Qualys, SIEM platforms (e.g., Splunk, Sentinel), and AV/EDR tools.
• Strong understanding of network security, infrastructure hardening, and secure application development principles.
• Familiarity with compliance frameworks such as ISO 27001.
• Require enhanced written and verbal communicate skills to communicate security risks and recommendations clearly to technical and non-technical audiences.
• Strong problem-solving and analytical skills.

Preferred Qualifications

• Security certifications such as Security+, CEH, GSEC, or CISSP (or working towards them).
• Experience supporting audits and producing evidence for compliance and certification processes.
• Prior experience working with cross-functional development or product teams.