National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Senior Cloud Security Engineer

Holland and Barrett
Greater London
1 month ago
Create job alert
About the role:


Join Our Team at Holland & Barrett!


Are you passionate about cloud security and looking to make a significant impact? Holland & Barrett is seeking a Cloud Security Specialist to help us define and implement our cloud security strategy. If you're an experienced professional eager to work with cutting-edge technology and collaborate with diverse teams, we want to hear from you!


Key Responsibilities:



  • Security Strategy: Help define and execute the Holland & Barrett cloud security strategy, partnering with platform and Site Reliability Engineering (SRE) teams to build robust infrastructure that supports our business.
  • Perimeter Security: Establish platform perimeter security by implementing controls at ingress and egress points, including creating and maintaining an edge network with a Web Application Firewall (WAF), Distributed Denial of Service (DDoS) protection, and a Content Delivery Network (CDN).
  • Access Control: Establish an access control baseline focusing on the principle of least privilege and segregation of duties. Monitor and enforce these controls once roles and permissions are set.
  • Security Controls: Design, implement, and maintain security controls to prevent, detect, and remediate insecure configurations, including defining and disseminating secure AWS/infrastructure baselines.
  • Standards Development: Own the development and maintenance of tailored security standards and guidelines, creating reusable resources for various development teams.
  • AWS Security Services: Establish and manage AWS security services, including certificate authorities, encryption services, insecure configuration scanners, and security control canaries.


Key requirements:

Essential:



  • 5+ years of experience in cloud security, particularly with AWS, and at least 2+ years in software development.
  • Strong understanding of cloud and application security concepts, including secure coding practices, threat modeling, vulnerability management, and access control mechanisms.
  • Experience with AWS, Kubernetes, Service Mesh, API gateways, and API Security (authentication and authorization).
  • Proficiency in programming languages such as Python, JavaScript, GoLang, Terraform, CloudFormation (AWS), and AWS CDK.
  • Familiarity with Agile methodologies like SCRUM, along with proven project management skills to manage multiple security projects effectively.

Desired:



  • Ability to work independently, take initiative, and maintain a keen attention to detail, ensuring high security standards.
  • Strong communication and interpersonal skills, facilitating effective collaboration with both technical and non-technical teams.

 


Why Holland & Barrett?


At Holland & Barrett, we are dedicated to promoting health and well-being while ensuring the highest standards of cloud security. Join our team and be part of a company that values innovation and security.


Ready to Make an Impact?


If you're excited about cloud security and want to contribute to a secure future, apply now! We look forward to welcoming you to our team.

What we offer:

  • Pension company contribution = 3%
  • Incentive scheme up to 10% of annual salary, based on company performance.
  • Your wellbeing is paramount so you can get away and take33 Days Holiday per year.
  • Private Medical Care(Self after 1 year)
  • Learning and Development opportunitywith Holland & Barrett is a great base for career development long term.
  • Career progression.
  • Refer and Earn Scheme- as we're growing you can earn money by referring people to join us from your network.
  • Epic Extrasgives you access to exclusive benefits, free advice and savings from a range of retailers and providers.
  • Stay healthy with Discounted Products- from day one you'll get a 25% discount (on top of other promotions) when you shop at H&B on anything that you buy.
  • We all need a little help sometimes, so weofferFree 24/7 Confidential Advice & Colleague Welfare.
  • Mental Health First Aiders- we have lots of qualified Mental Health First Aiders because its all about your health & wellbeing.
  • Stay active in theOnsite Gymat our Nuneaton Hub!
  • We havecolleague Reward and Recognition Schemes, so your hard work and loyalty won't go unnoticed.
  • And many more!

We're passionate about helping every colleague thrive across all dimensions of wellbeing, and we're committed to having a diverse and inclusive workplace. In line with our EPIC values (Expertise, Pioneering, Inclusive, Caring), we embrace and actively celebrate all our colleagues' unique and varying experiences, backgrounds, identities and cultures - I am me, we are H&B. 


Holland & Barrettdoes not accept unsolicited resumes from search firms/recruiters. Please do not forward resumes to our job alias, employees, or any other company location. Holland & Barrett is not and will not be responsible for any fees if a candidate submitted by a search firm/recruiter unless otherwise agreed with respect to specific open position(s). 

Related Jobs

View all jobs

Senior Cloud Security Engineer

Senior Cloud Security Engineer

Senior Cloud Security Engineer, Anti-Fraud Technology

Senior Cloud Security Engineer, Anti-Fraud Technology

Cloud Security Architect

Cloud Security Architect

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Cyber Security Jobs Skills Radar 2026: Emerging Frameworks, Tools & Certifications to Learn Now

Cyber threats are evolving—and so must the people defending against them. As ransomware, AI-enhanced phishing, and supply chain attacks grow more advanced, UK employers are urgently hiring cyber security professionals with the right mix of strategic and hands-on skills. Welcome to the Cyber Security Jobs Skills Radar 2026, your go-to guide for the most in-demand tools, frameworks, certifications, and technologies shaping the UK's cyber workforce. Whether you're a SOC analyst, penetration tester, or cloud security architect, this annual radar is designed to help you stay ahead of the market.

How to Find Hidden Cyber Security Jobs in the UK Using Professional Bodies like BCS, CIISec & More

The demand for skilled cyber security professionals in the UK has never been higher. With threats increasing in sophistication and frequency, organisations are urgently hiring ethical hackers, threat analysts, GRC specialists, and security architects. But many of the most valuable roles—particularly in government, defence, and critical infrastructure—are never publicly advertised. Instead, these jobs are shared behind the scenes through trusted networks, private communities, and professional bodies. In this article, we explore how to uncover hidden cyber security jobs in the UK using organisations like the BCS (The Chartered Institute for IT), CIISec (The Chartered Institute of Information Security), ISACA, and ISC² UK Chapter. We’ll show you how to use membership directories, special interest groups, CPD events and informal networks to gain early access to roles most people never see.

How to Get a Better Cyber Security Job After a Lay-Off or Redundancy

Redundancy is never easy—especially in a fast-moving field like cyber security, where your skills and experience are constantly evolving. But if you’ve recently been made redundant from a cyber security role, know this: the UK cyber workforce remains in high demand, and your expertise is more valuable than ever. Whether you’re a SOC analyst, penetration tester, incident responder, security architect or GRC specialist, there are still thousands of opportunities across sectors including finance, defence, government, retail, and critical infrastructure. This guide will help you turn redundancy into a career relaunch, with a clear action plan tailored to the UK cyber security job market.