About The Role
At Holland & Barrett, cybersecurity is at the heart of our digital transformation. We are looking for a Senior Application Security Engineer to lead our efforts in strengthening application security, mitigating risks, and ensuring best-in-class security practices.
If you are passionate about cybersecurity and eager to make a real impact, we want you on our team!
Key Responsibilities
* Security Strategy: Define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into early product design and development.
* Secure SDLC: Establish a secure Software Development Lifecycle (SDLC) that enables rapid delivery while implementing controls for software integrity, authenticity, and third-party library management.
* Risk Assessments: Conduct risk assessments, threat modeling, and architecture reviews with development teams, producing artifacts to drive secure controls.
* Standards Development: Own the creation and maintenance of tailored security standards and guidelines, developing reusable resources for various development teams.
* Team Support: Provide guidance on secure software production practices and flaw mitigation strategies.
Essential
Key Requirements
* 5+ years of experience in application security, with at least 3+ years in software development.
* Strong understanding of application security concepts, including secure coding practices, threat modeling, vulnerability management, and access control mechanisms.
* Experience with AWS, Kubernetes, Service Mesh, and API Security (including authentication and authorization).
* Proficiency in programming languages such as Python, Java, JavaScript, GoLang, and Rust.
* Familiarity with Agile methodologies like SCRUM, with proven project management skills to oversee multiple security projects.
Desired
* Independent, proactive, and detail-oriented, with a commitment to maintaining high security standards.
* Strong communication and interpersonal skills to collaborate with both technical and non-technical teams.
What We Offer
* Pension company contribution = 3%
* Incentive scheme up to 10% of annual salary based on company performance.
* 33 days holiday per year for wellbeing and time off.
* Private medical care (self after 1 year).
* Learning and development opportunities for long-term career growth.
* Career progression.
* Refer and earn scheme to help you grow our network.
* Epic Extras with exclusive benefits, advice, and savings.
* 25% staff discount from day one on eligible purchases.
* Free 24/7 confidential advice and colleague welfare support.
* Mental Health First Aiders and onsite gym at the Nuneaton Hub.
* Colleague reward and recognition schemes.
* And many more benefits.
We are committed to a diverse and inclusive workplace. In line with our EPIC values (Expertise, Pioneering, Inclusive, Caring), we celebrate all colleagues’ experiences, backgrounds, identities, and cultures.
Holland & Barrett does not accept unsolicited resumes from search firms/recruiters. Resumes should not be forwarded to our job alias or other company locations. We are not responsible for fees relating to submissions by search firms unless otherwise agreed for specific open positions.
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology
* Industries: Computer and Network Security
Get notified about new Senior Application Security Engineer jobs in London, England, United Kingdom.
London, England, United Kingdom
#J-18808-Ljbffr