Senior DevSecOps Engineer
China-Britain Business Council
Job Description
We’re building a secure, cloud‑native platform that underpins how software is delivered across the organisation. Following a major digital transformation, our platform enables teams to ship high‑quality software quickly, safely, and consistently—by default. As we continue to scale, security, reliability, and developer experience are treated as first‑class concerns, designed in from the start.
This role sits at the heart of that mission, shaping how security is applied at scale and how engineering teams confidently move from idea to production.About the role:As aDevSecOps Engineer , you’ll be a hands‑on contributor to the design, build, and operation of our internal platform. This is adelivery‑focused role , working closely with SRE, Cloud, and Application Security teams to embed security controls, guardrails, and best practices directly into tooling, pipelines, and infrastructure.You’ll help define how security is applied at scale in a pragmatic, developer‑friendly way, influencing engineering culture through code, automation, and clear technical standards—raising the baseline for security and operational excellence across the organisation.The Tech Stack You’ll work with a modern, cloud‑native platform, including:Cloud & Networking:AWS (multi‑account, IAM, VPC, managed services), hybrid/on‑prem connectivityInfrastructure as Code:OpenTofu, Terragrunt, CloudFormationSecurity & Identity:Microsoft Entra, AWS IAM, OIDC, secrets management, policy‑as‑codeObservability:Centralised logging, metrics, tracing (e.g. Datadog, OpenTelemetry)Platform Automation:Declarative configuration and infrastructure managementInternal Tooling:Developer‑facing tools and services built with Python, Go, and modern frontend frameworksVersion Control:Git, merge requests, and code review workflowsWe value strong fundamentals over specific tools—if you understand the principles, you’ll thrive here.What You’ll DoDesign, build, and operate secure cloud and platform capabilitiesEmbed security controls across the software delivery lifecycle by defaultBuild and maintain fast, reliable, secure CI/CD pipelines and reusable componentsAutomate security, compliance, and operational checksPartner with engineering teams to remove friction and improve workflowsContribute to platform architecture, standards, and technical directionPromote ownership, continuous improvement, and pragmatic DevSecOps practiceKey RequirementsHands‑on experience as a DevSecOps Engineer, Platform Engineer, Cloud Security Engineer, or similar roleStrong understanding of DevSecOps principles, including CI/CD, infrastructure as code, and security automationSolid experience working in AWS environmentsPractical knowledge of containerised workloads and KubernetesClear communication skills and the ability to work effectively across teamsA focus on raising engineering standards through practical, scalable solutionsWhy Holland & Barrett?
You will be joining at a point where the platform is still being actively shaped, with real scope to influence how security and delivery work across the organisation. This role offers autonomy, technical ownership, and the opportunity to build foundational capabilities that directly impact hundreds of engineers. We offer a competitive salary, comprehensive benefits, and flexible working arrangements.If you enjoy building secure platforms that developers actually love, we’d love to hear from you.What we offer:Health Cash PlanLife AssuranceIncentive Scheme – Based on company & personal performanceVirtual GPPrivate Medical careHoliday Purchase optionAccess to ‘Wellhub' with gyms, studios and wellbeing appsDiscounts & Savings25% Colleague Discount with FREE Standard DeliveryExclusive Discounts from a wide range of partners£/€50 Annual Product Allowance to spend in storeLearning & DevelopmentAccess to a variety of learning opportunities, including Level 2‑5 Apprenticeships, Workshops and our Digital Learning LibraryAND MORE!Holland and Barrett is an equal opportunity employer.
We welcome diverse perspectives and are committed to creating an inclusive environment for all colleagues. We understand that when our colleagues are listened to, respected and valued for who they are, we build an organisation with belonging at its heart – making health and wellness a way of life for everyone.#J-18808-Ljbffr