China-Britain Business Council
City Of Westminster, London
We're building a secure, cloud native platform that underpins how software is delivered across the organisation. Following a major digital transformation, our platform enables teams to ship high quality software quickly, safely, and consistently-by default. As we continue to scale, security, reliability, and developer experience are treated as first class concerns, designed in from the start. This role sits at the heart of that mission, shaping how security is applied at scale and how engineering teams confidently move from idea to production. About the role: As a DevSecOps Engineer, you'll be a hands on contributor to the design, build, and operation of our internal platform. This is a delivery focused role, working closely with SRE, Cloud, and Application Security teams to embed security controls, guardrails, and best practices directly into tooling, pipelines, and infrastructure. You'll help define how security is applied at scale in a pragmatic, developer friendly way, influencing engineering culture through code, automation, and clear technical standards-raising the baseline for security and operational excellence across the organisation. The Tech Stack You'll work with a modern, cloud native platform, including: Cloud & Networking: AWS (multi account, IAM, VPC, managed services), hybrid/on prem connectivity Infrastructure as Code: OpenTofu, Terragrunt, CloudFormation Security & Identity: Microsoft Entra, AWS IAM, OIDC, secrets management, policy as code Observability: Centralised logging, metrics, tracing (e.g. Datadog, OpenTelemetry) Platform Automation: Declarative configuration and infrastructure management Internal Tooling: Developer facing tools and services built with Python, Go, and modern frontend frameworks Version Control: Git, merge requests, and code review workflows We value strong fundamentals over specific tools-if you understand the principles, you'll thrive here. What You'll Do Design, build, and operate secure cloud and platform capabilities Embed security controls across the software delivery lifecycle by default Build and maintain fast, reliable, secure CI/CD pipelines and reusable components Automate security, compliance, and operational checks Partner with engineering teams to remove friction and improve workflows Contribute to platform architecture, standards, and technical direction Promote ownership, continuous improvement, and pragmatic DevSecOps practice Key Requirements Hands on experience as a DevSecOps Engineer, Platform Engineer, Cloud Security Engineer, or similar role Strong understanding of DevSecOps principles, including CI/CD, infrastructure as code, and security automation Solid experience working in AWS environments Practical knowledge of containerised workloads and Kubernetes Clear communication skills and the ability to work effectively across teams A focus on raising engineering standards through practical, scalable solutions Why Holland & Barrett? You will be joining at a point where the platform is still being actively shaped, with real scope to influence how security and delivery work across the organisation. This role offers autonomy, technical ownership, and the opportunity to build foundational capabilities that directly impact hundreds of engineers. We offer a competitive salary, comprehensive benefits, and flexible working arrangements. If you enjoy building secure platforms that developers actually love, we'd love to hear from you. What we offer: Health Cash Plan Life Assurance Incentive Scheme - Based on company & personal performance Virtual GP Private Medical care Holiday Purchase option Access to 'Wellhub' with gyms, studios and wellbeing apps Discounts & Savings 25% Colleague Discount with FREE Standard Delivery Exclusive Discounts from a wide range of partners £/€50 Annual Product Allowance to spend in store Learning & Development Access to a variety of learning opportunities, including Level 2 5 Apprenticeships, Workshops and our Digital Learning Library AND MORE! Holland and Barrett is an equal opportunity employer. We welcome diverse perspectives and are committed to creating an inclusive environment for all colleagues. We understand that when our colleagues are listened to, respected and valued for who they are, we build an organisation with belonging at its heart - making health and wellness a way of life for everyone.
We're building a secure, cloud native platform that underpins how software is delivered across the organisation. Following a major digital transformation, our platform enables teams to ship high quality software quickly, safely, and consistently-by default. As we continue to scale, security, reliability, and developer experience are treated as first class concerns, designed in from the start. This role sits at the heart of that mission, shaping how security is applied at scale and how engineering teams confidently move from idea to production. About the role: As a DevSecOps Engineer, you'll be a hands on contributor to the design, build, and operation of our internal platform. This is a delivery focused role, working closely with SRE, Cloud, and Application Security teams to embed security controls, guardrails, and best practices directly into tooling, pipelines, and infrastructure. You'll help define how security is applied at scale in a pragmatic, developer friendly way, influencing engineering culture through code, automation, and clear technical standards-raising the baseline for security and operational excellence across the organisation. The Tech Stack You'll work with a modern, cloud native platform, including: Cloud & Networking: AWS (multi account, IAM, VPC, managed services), hybrid/on prem connectivity Infrastructure as Code: OpenTofu, Terragrunt, CloudFormation Security & Identity: Microsoft Entra, AWS IAM, OIDC, secrets management, policy as code Observability: Centralised logging, metrics, tracing (e.g. Datadog, OpenTelemetry) Platform Automation: Declarative configuration and infrastructure management Internal Tooling: Developer facing tools and services built with Python, Go, and modern frontend frameworks Version Control: Git, merge requests, and code review workflows We value strong fundamentals over specific tools-if you understand the principles, you'll thrive here. What You'll Do Design, build, and operate secure cloud and platform capabilities Embed security controls across the software delivery lifecycle by default Build and maintain fast, reliable, secure CI/CD pipelines and reusable components Automate security, compliance, and operational checks Partner with engineering teams to remove friction and improve workflows Contribute to platform architecture, standards, and technical direction Promote ownership, continuous improvement, and pragmatic DevSecOps practice Key Requirements Hands on experience as a DevSecOps Engineer, Platform Engineer, Cloud Security Engineer, or similar role Strong understanding of DevSecOps principles, including CI/CD, infrastructure as code, and security automation Solid experience working in AWS environments Practical knowledge of containerised workloads and Kubernetes Clear communication skills and the ability to work effectively across teams A focus on raising engineering standards through practical, scalable solutions Why Holland & Barrett? You will be joining at a point where the platform is still being actively shaped, with real scope to influence how security and delivery work across the organisation. This role offers autonomy, technical ownership, and the opportunity to build foundational capabilities that directly impact hundreds of engineers. We offer a competitive salary, comprehensive benefits, and flexible working arrangements. If you enjoy building secure platforms that developers actually love, we'd love to hear from you. What we offer: Health Cash Plan Life Assurance Incentive Scheme - Based on company & personal performance Virtual GP Private Medical care Holiday Purchase option Access to 'Wellhub' with gyms, studios and wellbeing apps Discounts & Savings 25% Colleague Discount with FREE Standard Delivery Exclusive Discounts from a wide range of partners £/€50 Annual Product Allowance to spend in store Learning & Development Access to a variety of learning opportunities, including Level 2 5 Apprenticeships, Workshops and our Digital Learning Library AND MORE! Holland and Barrett is an equal opportunity employer. We welcome diverse perspectives and are committed to creating an inclusive environment for all colleagues. We understand that when our colleagues are listened to, respected and valued for who they are, we build an organisation with belonging at its heart - making health and wellness a way of life for everyone.
China-Britain Business Council
Nuneaton, Warwickshire
Senior Security Engineer - Operations (41079) We offer hybrid working, with occasional presence at one of our Holland & Barrett offices in Nuneaton or London for team meetings, collaboration sessions and key events. AtHolland & Barrett, we're on a mission to make health and wellness a way of life for everyone. As we continue our digital transformation, we've built a modern cloud-native technology platform powered by AWS, Azure, Kubernetes, serverless technologies and automation. We're looking for a Senior Security Operations Engineer to help protect our customers, colleagues and digital platforms. This is an exciting opportunity to shape and strengthen our security operations capability, combining detection engineering, automation and incident response to help us stay ahead of emerging threats. You'll join a collaborative Cyber Security team where innovation, continuous improvement and proactive security are at the heart of everything we do. What you'll be doing Lead security incident investigations and coordinate effective response and remediation activities. Design, build and automate detection and response workflows using modern security technologies. Develop and enhance monitoring use cases across ecommerce platforms, mobile applications, APIs and corporate systems. Conduct threat hunting activities to identify suspicious behaviour and improve security visibility. Strengthen cloud security controls across AWS and Azure environments. Partner with Engineering, Product, Fraud and Customer Experience teams to embed security into digital services. Support audits, compliance activities, post-incident reviews and continuous improvement initiatives. Mentor colleagues and contribute to security playbooks, standards and operational best practices. Participate in an on-call rotation supporting critical security events. What you'll bring Experience in Security Operations, Incident Response, Detection Engineering or Cyber Defence. Strong understanding of threat detection, security monitoring, incident response and threat hunting. Hands-on experience with SIEM, SOAR, EDR, automation platforms and cloud-native security tooling. Knowledge of AWS and Azure security services, including identity, access management and cloud monitoring capabilities. Experience investigating security incidents across cloud, hybrid and distributed environments. Strong communication and stakeholder management skills, with the ability to collaborate across technical and non-technical teams. A passion for automation, continuous improvement and building scalable security capabilities. Experience within ecommerce, retail, fintech or other customer-focused digital environments would be beneficial. If you're excited by the challenge of protecting a modern cloud-native organisation through intelligent detection, automation and incident response, we'd love to hear from you. Apply today and help us build a secure, resilient digital future that supports millions of customers on their health and wellness journeys. 33 days holiday, including bank holidays Private medical insurance - single cover 24/7 Virtual GP access Annual free at-home health testing kit (after 6 months' service) Access to our Employee Assistance Programme and Mental Health First Aiders Workplace pension with 5% employer contribution Life assurance (2x salary, after 6 months' service) Annual bonus (subject to company and individual performance) up to 10% £50 colleague product allowance on Holland & Barrett products (after 6 months' service) 25% colleague discount in store and online, with free delivery on online orders Free Wellhub membership, with discounted access to gyms, studios and wellbeing apps Cycle to Work scheme Access to cashback and discounts from a wide range of retailers About Holland & Barrett For over 150 years, Holland & Barrett has been supporting people to live healthier, happier lives. Today, we're one of Europe's leading health and wellness retailers, combining trusted expertise with digital innovation to make wellness accessible for every body. We're committed to creating a workplace where people can grow, contribute and make a meaningful impact. Guided by our values of Knowledge, Energy, Connection, Progress and Living Wellness, we're building a business that helps people add quality years to life. Inclusion & Accessibility Statement At Holland & Barrett, we believe every body deserves the opportunity to thrive. We're committed to building an inclusive workplace where colleagues feel respected, valued and able to be themselves. We welcome applications from people of all backgrounds, experiences and identities. If you require any adjustments during the recruitment process, please let us know and we'll work with you to provide the support you need. Holland and Barrett is an equal opportunity employer. We welcome diverse perspectives and are committed to creating an inclusive environment for all colleagues. We understand that when our colleagues are listened to, respected and valued for who they are, we build an organisation with belonging at its heart - making health and wellness a way of life for everyone. Holland & Barrett does not accept unsolicited resumes from search firms/recruiters. Please do not forward resumes to our job alias, employees, or any other company location. Holland & Barrett is not and will not be responsible for any fees if a candidate submitted by a search firm/recruiter unless otherwise agreed with respect to specific open position(s).
Senior Security Engineer - Operations (41079) We offer hybrid working, with occasional presence at one of our Holland & Barrett offices in Nuneaton or London for team meetings, collaboration sessions and key events. AtHolland & Barrett, we're on a mission to make health and wellness a way of life for everyone. As we continue our digital transformation, we've built a modern cloud-native technology platform powered by AWS, Azure, Kubernetes, serverless technologies and automation. We're looking for a Senior Security Operations Engineer to help protect our customers, colleagues and digital platforms. This is an exciting opportunity to shape and strengthen our security operations capability, combining detection engineering, automation and incident response to help us stay ahead of emerging threats. You'll join a collaborative Cyber Security team where innovation, continuous improvement and proactive security are at the heart of everything we do. What you'll be doing Lead security incident investigations and coordinate effective response and remediation activities. Design, build and automate detection and response workflows using modern security technologies. Develop and enhance monitoring use cases across ecommerce platforms, mobile applications, APIs and corporate systems. Conduct threat hunting activities to identify suspicious behaviour and improve security visibility. Strengthen cloud security controls across AWS and Azure environments. Partner with Engineering, Product, Fraud and Customer Experience teams to embed security into digital services. Support audits, compliance activities, post-incident reviews and continuous improvement initiatives. Mentor colleagues and contribute to security playbooks, standards and operational best practices. Participate in an on-call rotation supporting critical security events. What you'll bring Experience in Security Operations, Incident Response, Detection Engineering or Cyber Defence. Strong understanding of threat detection, security monitoring, incident response and threat hunting. Hands-on experience with SIEM, SOAR, EDR, automation platforms and cloud-native security tooling. Knowledge of AWS and Azure security services, including identity, access management and cloud monitoring capabilities. Experience investigating security incidents across cloud, hybrid and distributed environments. Strong communication and stakeholder management skills, with the ability to collaborate across technical and non-technical teams. A passion for automation, continuous improvement and building scalable security capabilities. Experience within ecommerce, retail, fintech or other customer-focused digital environments would be beneficial. If you're excited by the challenge of protecting a modern cloud-native organisation through intelligent detection, automation and incident response, we'd love to hear from you. Apply today and help us build a secure, resilient digital future that supports millions of customers on their health and wellness journeys. 33 days holiday, including bank holidays Private medical insurance - single cover 24/7 Virtual GP access Annual free at-home health testing kit (after 6 months' service) Access to our Employee Assistance Programme and Mental Health First Aiders Workplace pension with 5% employer contribution Life assurance (2x salary, after 6 months' service) Annual bonus (subject to company and individual performance) up to 10% £50 colleague product allowance on Holland & Barrett products (after 6 months' service) 25% colleague discount in store and online, with free delivery on online orders Free Wellhub membership, with discounted access to gyms, studios and wellbeing apps Cycle to Work scheme Access to cashback and discounts from a wide range of retailers About Holland & Barrett For over 150 years, Holland & Barrett has been supporting people to live healthier, happier lives. Today, we're one of Europe's leading health and wellness retailers, combining trusted expertise with digital innovation to make wellness accessible for every body. We're committed to creating a workplace where people can grow, contribute and make a meaningful impact. Guided by our values of Knowledge, Energy, Connection, Progress and Living Wellness, we're building a business that helps people add quality years to life. Inclusion & Accessibility Statement At Holland & Barrett, we believe every body deserves the opportunity to thrive. We're committed to building an inclusive workplace where colleagues feel respected, valued and able to be themselves. We welcome applications from people of all backgrounds, experiences and identities. If you require any adjustments during the recruitment process, please let us know and we'll work with you to provide the support you need. Holland and Barrett is an equal opportunity employer. We welcome diverse perspectives and are committed to creating an inclusive environment for all colleagues. We understand that when our colleagues are listened to, respected and valued for who they are, we build an organisation with belonging at its heart - making health and wellness a way of life for everyone. Holland & Barrett does not accept unsolicited resumes from search firms/recruiters. Please do not forward resumes to our job alias, employees, or any other company location. Holland & Barrett is not and will not be responsible for any fees if a candidate submitted by a search firm/recruiter unless otherwise agreed with respect to specific open position(s).