Security Test Specialist
Security Test Specialist
Staines or Manchester
£50k - £60k (DOE) + Company Benefits
Full time ? 37.5 hours/week
We?re a leading health insurer and healthcare provider, with care homes, health centres, dental practices and a hospital. With no shareholders, our customers are our focus. We reinvest profits into providing more and better healthcare for the benefit of current and future customers.
We believe in quality, affordable and accessible healthcare for all. If you share our purpose of helping people live longer, healthier, happier lives, then look no further, Bupa could be the perfect match.
Join a team that?s passionate about leading the healthcare market with products and services designed to help people lead better lives.
At Bupa you?ll work on high-impact, innovative projects in an organisation that makes a real difference. You?ll have to be ambitious and eager to play an integral role in our overall digital strategy.
What you\ 'll be doing
Our IT Application Security Specialists are there to provide domain expertise and technical knowledge, assisting the Security Test Manager in establishing, implementing and ensuring the security of the BGUK Application estate and supporting systems throughout their lifecycle.
This role may require travel to other Bupa locations in the UK and could additionally require occasional overseas travel (once it is safe to do so). Amongst other responsibilities, Security Test Specialists will be accountable for:
Vulnerability assessment and management of the BGUK IT estate, working with the relevant stakeholders to ensure that the outcome of such assessments are recorded, tracked and remediated within agreed timelines
Implementing and managing secure coding practices utilising static analysis tools to identify, capture and address security weaknesses in the software development lifecycle
Implementing and managing dynamic analysis tooling across the BGUK Web Application estate
Security testing of BGUK Applications and supporting systems in line with Enterprise Security Policies and Standards
Embedding applicable Security Policies, Standards, Tools and Processes into the Application Security function
Supporting the deployment and maintenance of Secure Configurations for BGUK Applications and underlying systems
Ensuring BGUK IT Asset and Risk registers are updated with identified weaknesses and track their action plans accordingly
Working with technical and solution architects to provide expert security consultancy to IT projects in line with the Security by Design framework;
contributing to and reviewing project documentation as necessary
Assisting with the development of junior team members
Motivating the wider community to ensure a strong Security culture, ethos and awareness is maintained
What?s a typical day?
No two days are the same at BUPA, you?ll be involved in a range of duties and project from day 1, supporting multiple areas of the business.
You will proactively carry out Application, Network, Systems and Infrastructure security tests. You?ll build/configure reviews against benchmarks &
standards, Static/dynamic code analysis.
The successful candidate will report on findings to all stakeholders and have technical knowledge of a wide range of toolsets and manual techniques that are commonly required for project delivery.
You?ll need to k eep up to date with latest testing and ethical hacking methods ? which will be supported by the continuous professional development offered by BUPA. You will also liaise with Programme / Project managers to manage expectations for the testing stages of projects. Agree any ?quality gate? criteria and corrective action and operate as a specialist and consultant on Security testing and give advice to both users and IT management to determine the most appropriate testing strategies for projects.
Who we?re looking for?
We?re looking for people that understand the importance of IT security and how it can really affect the business through great communication and influencing ability. And, we?re looking for people with the skills and training to really make difference:
Ideally, a technical degree and/or industry recognised qualification (CRT / OSCP / GPEN)
Experience with Static and Dynamic Analysis Tooling
Experience with Vulnerability Scanning solutions (eg Tenable)
Hands on professional experience with Security Testing tools (eg Burpsuite)
A proven track record of delivery in Cyber Security
Exposure to prevalent industry regulators, standards and frameworks such as OWASP, MITRE ATT&
CK, ISO27001, PCI-DSS, CIS, NIST, etc.
Strong interpersonal, communication and influencing skills
Able to effectively escalate and articulate security concepts, attacks and vulnerabilities to both technical and non-technical audiences
Operate effectively at all levels including Senior Management and external customers &
We?re driven by one purpose, helping people live longer, healthier, happier lives and that that means our people too. As a Bupa employee you?ll be entitled to some fantastic benefits which include 25 days holiday increasing to 30 days as your length of service increases, the option to buy and sell holiday, an enhanced pension plan, life assurance and income protection. You?ll join our annual bonus scheme, amount variable dependent upon your role and performance. Looking after your health is important to us and you can benefit from our health trust scheme where all our people have the option of taking our market-leading medical insurance cover, which includes mental health support and treatment, at a greatly reduced price as well as a free health assessment every 2 year. Your health and wellbeing matter to us and we provide lots of family friendly policies too. You can keep fit at our free onsite gyms (local gym discounts where no onsite gym). We will support you to get to work, offering a season ticket loan to spread the cost of an annual train/bus ticket as well as our cycle to work scheme.
Whether you?ve found your feet or are discovering a new path. Welcome to a place that celebrates you. This isn?t where you\ 've been. This is where you\'re going. This is what we have belief in.
Bupa is committed to making sure that every applicant is assessed solely on the basis of personal merit and qualifications, regardless of gender, sexual orientation, pregnancy or maternity, marital or civil partner status, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age.
Job Posting End Date