<div class="earcuposdescription"><div class="earcuposdescriptiontitle">About the role:</div><div class="earcuposdescriptionnote"><p data-start="259" data-end="628">At <strong data-start="262" data-end="283">Holland &amp; Barrett</strong>, we're over a century old — and building like a startup. We've transformed into a <strong data-start="366" data-end="401">fully cloud-native organisation</strong>, using Kubernetes, containers, serverless, and event-driven architectures. Now we're embedding <strong data-start="497" data-end="545">security directly into how we build software</strong>, and we're looking for an Application Security Engineer to help lead that journey.</p><p data-start="652" data-end="906">This is a role for someone who loves working <strong data-start="697" data-end="716">with developers</strong>, not around them. Our ambition is simple: make the secure path the easy path. You'll help build an AppSec model that's automated, developer-friendly, and built into every stage of the SDLC.</p><h4 data-start="908" data-end="922">The Role</h4><p data-start="923" data-end="1185">As an <strong data-start="929" data-end="962">Application Security Engineer</strong>, you'll be a trusted partner to our engineering teams. You'll work hands-on to integrate security into CI/CD pipelines, identify and fix vulnerabilities early, and help teams design and ship secure applications by default.</p><h4 data-start="1187" data-end="1205">What You'll Do</h4><ul data-start="1206" data-end="1632"><li data-start="1206" data-end="1268"><p data-start="1208" data-end="1268">Embed <strong data-start="1214" data-end="1237">SAST, DAST, and SCA</strong> tooling into CI/CD pipelines</p></li><li data-start="1269" data-end="1345"><p data-start="1271" data-end="1345">Perform code reviews, threat modelling, and application security testing</p></li><li data-start="1346" data-end="1427"><p data-start="1348" data-end="1427">Work directly with engineers to remediate vulnerabilities and improve designs</p></li><li data-start="1428" data-end="1494"><p data-start="1430" data-end="1494">Develop and promote secure coding standards and best practices</p></li><li data-start="1495" data-end="1559"><p data-start="1497" data-end="1559">Deliver security training and workshops to engineering teams</p></li><li data-start="1560" data-end="1632"><p data-start="1562" data-end="1632">Champion a culture of shared responsibility for application security</p></li></ul></div></div><div class="earcuposdescription"><div class="earcuposdescriptiontitle">Key requirements:</div><div class="earcuposdescriptionnote"><div class="flex flex-col text-sm pb-25"><article class="text-token-text-primary w-full focus:outline-none [--shadow-height:45px] has-data-writing-block:pointer-events-none has-data-writing-block:-mt-(--shadow-height) has-data-writing-block:pt-(--shadow-height) [&amp;:has([data-writing-block])>*]:pointer-events-auto scroll-mt-[calc(var(--header-height)+min(200px,max(70px,20svh)))]" dir="auto" tabindex="-1" data-turn-id="request-WEB:c6d68547-df40-47a9-be8e-5739a5936684-8" data-testid="conversation-turn-12" data-scroll-anchor="true" data-turn="assistant"><div class="text-base my-auto mx-auto pb-10 [--thread-content-margin:--spacing(4)] @w-sm/main:[--thread-content-margin:--spacing(6)] @w-lg/main:[--thread-content-margin:--spacing(16)] px-(--thread-content-margin)"><div class="[--thread-content-max-width:40rem] @w-lg/main:[--thread-content-max-width:48rem] mx-auto max-w-(--thread-content-max-width) flex-1 group/turn-messages focus-visible:outline-hidden relative flex w-full min-w-0 flex-col agent-turn" tabindex="-1"><div class="flex max-w-full flex-col grow"><div class="min-h-8 text-message relative flex w-full flex-col items-end gap-2 text-start break-words whitespace-normal [.text-message+&amp;]:mt-1" dir="auto" data-message-author-role="assistant" data-message-id="a44fad02-f46b-4c15-a76b-e39391ebc11f" data-message-model-slug="gpt-5-2"><div class="flex w-full flex-col gap-1 empty:hidden first:pt-[1px]"><div class="markdown prose dark:prose-invert w-full break-words light markdown-new-styling"><ul data-start="1656" data-end="2117"><li data-start="1656" data-end="1726"><p data-start="1658" data-end="1726">Experience as an <strong data-start="1675" data-end="1708">Application Security Engineer</strong> or similar role</p></li><li data-start="1727" data-end="1802"><p data-start="1729" data-end="1802">Strong understanding of <strong data-start="1753" data-end="1769">OWASP Top 10</strong> and modern application threats</p></li><li data-start="1803" data-end="1884"><p data-start="1805" data-end="1884">Hands-on experience with tools like <strong data-start="1841" data-end="1882">Snyk, Checkmarx, Veracode, Burp Suite</strong></p></li><li data-start="1885" data-end="1980"><p data-start="1887" data-end="1980">Proficiency in at least one modern programming language (e.g. <strong data-start="1949" data-end="1977">Python, Java, JavaScript</strong>)</p></li><li data-start="1981" data-end="2041"><p data-start="1983" data-end="2041">Experience integrating security into <strong data-start="2020" data-end="2039">CI/CD pipelines</strong></p></li><li data-start="2042" data-end="2117"><p data-start="2044" data-end="2117">Great communication skills and a collaborative, developer-first mindset</p></li></ul><h4 data-start="2119" data-end="2145">Why Holland &amp; Barrett?</h4><ul data-start="2146" data-end="2407"><li data-start="2146" data-end="2227"><p data-start="2148" data-end="2227">Help <strong data-start="2153" data-end="2188">shape AppSec from the ground up</strong> in a modern engineering organisation</p></li><li data-start="2228" data-end="2294"><p data-start="2230" data-end="2294">Work with cloud-native technologies and forward-thinking teams</p></li><li data-start="2334" data-end="2407"><p data-start="2336" data-end="2407">A purpose-led business focused on helping people live healthier lives</p></li></ul><p data-start="2409" data-end="2539" data-is-last-node="" data-is-only-node="">If you're passionate about building secure software and making security a natural part of development, we'd love to hear from you.</p></div></div></div></div><div class="z-0 flex min-h-[46px] justify-start">&nbsp;</div><div class="mt-3 w-full empty:hidden"><div class="text-center">&nbsp;</div></div></div></div></article></div><div class="pointer-events-none h-px w-px absolute bottom-0" aria-hidden="true" data-edge="true">&nbsp;</div></div></div><div class="earcuposdescription"><div class="earcuposdescriptiontitle">What we offer:</div><div class="earcuposdescriptionnote"><p><strong>What we offer:</strong></p><p><strong>Wellbeing &amp; Lifestyle Benefits</strong>&nbsp;</p><ul><li>Health Cash Plan&nbsp;&nbsp;</li><li>Life Assurance</li><li>Incentive Scheme - Based on company &amp; personal performance</li><li>Virtual GP&nbsp;</li><li>Private Medical care</li><li>FREE at-home blood test kit&nbsp;</li><li>Holiday Purchase option&nbsp;</li><li>Pension Contribution scheme</li><li>Access to ‘Wellhub' with gyms, studios and wellbeing apps&nbsp;</li></ul><p><strong>Discounts &amp; Savings</strong>&nbsp;</p><ul><li>25% Colleague Discount with FREE Standard Delivery&nbsp;</li><li>Exclusive Discounts from a wide range of partners&nbsp;</li><li>£/€50 Annual Product Allowance to spend in store&nbsp;</li></ul><p><strong>Learning &amp; Development</strong>&nbsp;</p><ul><li>Access to a variety of learning opportunities, including Level 2-5 Apprenticeships, Workshops and our Digital Learning Library&nbsp;</li><li>AND MORE!&nbsp;</li></ul></div></div><div class="earcuposdescription"><div class="earcu_posdescriptionnote"><p><span style="font-size: 11pt; font-family: 'open sans', sans-serif;"><em><span class="ui-provider a b c d e f g h i j k l m n o p q r s t u v w x y z ab ac ae af ag ah ai aj ak" dir="ltr"><span data-teams="true">Holland and Barrett is an equal opportunity employer. We welcome diverse perspectives and are committed to creating an inclusive environment for all colleagues. We understand that when our colleagues are listened to, respected and valued for who they are, we build an&nbsp;organisation&nbsp;with belonging at its heart – making health and wellness a way of life for everyone.</span></span></em></span></p><p><span style="font-family: 'open sans', sans-serif; font-size: 11pt;"><span class="ui-provider a b c d e f g h i j k l m n o p q r s t u v w x y z ab ac ae af ag ah ai aj ak" dir="ltr"><em>Holland &amp; Barrett </em><em>does not accept unsolicited resumes from search firms/recruiters. Please do not forward resumes to our job alias, employees, or any other company location. Holland &amp; Barrett is not and will not be responsible for any fees if a candidate submitted by a search firm/recruiter unless otherwise agreed with respect to specific open position(s).&nbsp;</em></span></span></p></div></div>