Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead application security efforts and integrate security into product design.
- Company: Holland & Barrett is a leading health and wellness retailer focused on digital transformation.
- Benefits: Enjoy 33 days holiday, private medical care, and a 25% discount on products.
- Why this job: Make a real impact in cybersecurity while working in a diverse and inclusive environment.
- Qualifications: 5+ years in application security with strong coding and project management skills required.
- Other info: Join a team that values wellbeing and offers career development opportunities.
The predicted salary is between 48000 - 72000 £ per year.
About the Role: At Holland & Barrett, cybersecurity is at the heart of our digital transformation. As we continue to grow and innovate, securing our applications and protecting customer data is a top priority. We are looking for a Senior Application Security Engineer to lead our efforts in strengthening application security, mitigating risks, and ensuring best-in-class security practices. If you are passionate about cybersecurity and eager to make a real impact, we want you on our team!
Key Responsibilities:
- Security Strategy: Help define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into the early stages of product design and development.
- Secure SLDC: Establish a secure Software Development Lifecycle (SDLC) that enables development teams to deliver high-quality applications quickly while implementing essential controls for software integrity, authenticity, and third-party library management.
- Risk Assessments: Conduct risk assessments, threat modeling, and architecture reviews alongside development teams, producing artifacts to drive the implementation of effective security controls.
- Standards Development: Own the creation and maintenance of tailored security standards and guidelines, developing reusable resources for various development teams.
- Team Support: Provide guidance and support to development teams on secure software production practices and flaw mitigation strategies.
Key Requirements:
- Essential: 5+ years of experience in application security, with at least 3+ years in software development. Strong understanding of application security concepts, including secure coding practices, threat modeling, vulnerability management, and access control mechanisms. Experience with AWS, Kubernetes, Service Mesh, and API Security (including authentication and authorization). Proficiency in programming languages such as Python, Java, JavaScript, GoLang, and Rust. Familiarity with Agile methodologies like SCRUM, along with proven project management skills to oversee multiple security projects simultaneously.
- Desired: Independent, proactive, and detail-oriented, with a commitment to maintaining high security standards. Strong communication and interpersonal skills, facilitating effective collaboration with both technical and non-technical teams.
What we offer:
- Pension company contribution = 3%
- Incentive scheme up to 10% of annual salary, based on company performance.
- 33 Days Holiday per year.
- Private Medical Care (Self after 1 year)
- Learning and Development opportunity with Holland & Barrett is a great base for career development long term.
- Career progression.
- Refer and Earn Scheme - earn money by referring people to join us from your network.
- Epic Extras gives you access to exclusive benefits, free advice and savings from a range of retailers and providers.
- 25% discount when you shop at H&B.
- Free 24/7 Confidential Advice & Colleague Welfare.
- Mental Health First Aiders available.
- Onsite Gym at our Nuneaton Hub.
- Colleague Reward and Recognition Schemes.
We're passionate about helping every colleague thrive across all dimensions of wellbeing, and we're committed to having a diverse and inclusive workplace. In line with our EPIC values (Expertise, Pioneering, Inclusive, Caring), we embrace and actively celebrate all our colleagues' unique and varying experiences, backgrounds, identities and cultures.
Senior Application Security Engineer employer: Shanghai VIM Industrial Design Co., Ltd.
Contact Detail:
Shanghai VIM Industrial Design Co., Ltd. Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Application Security Engineer
✨Tip Number 1
Familiarise yourself with Holland & Barrett's current application security practices and challenges. Research their recent projects or initiatives in cybersecurity to demonstrate your understanding of their needs during the interview.
✨Tip Number 2
Showcase your experience with AWS, Kubernetes, and API Security by preparing specific examples of how you've implemented security measures in past roles. This will highlight your practical knowledge and ability to contribute immediately.
✨Tip Number 3
Brush up on Agile methodologies, particularly SCRUM, as this role requires collaboration with various teams. Be ready to discuss how you've successfully managed security projects within an Agile framework.
✨Tip Number 4
Prepare to articulate your approach to risk assessments and threat modelling. Consider bringing a case study or example from your previous work that illustrates your ability to identify vulnerabilities and implement effective security controls.
We think you need these skills to ace Senior Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in application security and software development. Emphasise your understanding of secure coding practices, threat modelling, and any relevant programming languages like Python or Java.
Craft a Compelling Cover Letter: In your cover letter, express your passion for cybersecurity and how you can contribute to Holland & Barrett's mission. Mention specific experiences that demonstrate your ability to lead security initiatives and collaborate with diverse teams.
Showcase Relevant Projects: If you have worked on projects involving AWS, Kubernetes, or API security, be sure to include these in your application. Detail your role and the impact of your contributions on the project's success.
Highlight Soft Skills: Given the importance of communication and collaboration in this role, make sure to highlight your interpersonal skills. Provide examples of how you've successfully worked with both technical and non-technical teams in the past.
How to prepare for a job interview at Shanghai VIM Industrial Design Co., Ltd.
✨Showcase Your Technical Expertise
Be prepared to discuss your experience with application security concepts, secure coding practices, and the programming languages mentioned in the job description. Highlight specific projects where you implemented security measures or conducted risk assessments.
✨Demonstrate Collaboration Skills
Since the role involves working with both tech and non-tech teams, be ready to share examples of how you've successfully collaborated in the past. Emphasise your ability to communicate complex security concepts in a way that is understandable to non-technical stakeholders.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Think about how you would approach integrating security into the Software Development Lifecycle (SDLC) and be ready to discuss your thought process.
✨Align with Company Values
Familiarise yourself with Holland & Barrett's EPIC values: Expertise, Pioneering, Inclusive, and Caring. Be prepared to discuss how your personal values align with theirs and how you can contribute to their diverse and inclusive workplace culture.
