Job Description:

CSIRT Manager(cyber security incident response team)

Primary location: Staines (TW18 3DZ), London (EC2R 7HJ) or Salford (M50 3SP)

Flexible / Hybrid working options.

Permanent

up to £85,700 Neg (depending on exp. & location).

10% Bonus+ fantastic benefits

Full time 37.5 hours
We consider all types of flexibility, including locations, hours and working patterns.

We make health happen

At Bupa, we’re passionate about technology. With colleagues, customers, patients and residents in mind you’ll have the opportunity to work on innovative projects and make a real impact on their lives.
Right from the start you’ll become part of our digital & data strategy, joining us on our journey and developing yourself along the way.

This is an exciting opportunity to join a business experiencing significant change. You will play a key role in a large-scale security transformation program, developing and embedding a high-performing security incident management and response function within Bupa.

How you’ll help us make health happen:

Lead and manage the Cyber Security and Incident Response Team, overseeing and remediating security incidents.

Handle major and critical cyber security incidents, keeping relevant stakeholders updated.

Collaborate with internal teams and outsourced suppliers to enhance security incident management and response capabilities.

Ensure the SOC has the visibility and technology to detect cyber security threats across Bupa’s technologies, applications, and infrastructure.

Identify, manage, and process cyber security incidents promptly to minimise business impact.

Build strong relationships within the cyber security team and the wider business to raise security awareness.

Maintain a highly motivated and skilled cyber security incident management and response team.

Monitor, evaluate, and report on metrics and KPIs to assess the effectiveness of security incident management and response services.

Represent the security incident management and response function at Bupa security governance committees.

Oversee forensics and malware analysis to identify security exposures and provide guidance on remediation strategies and risk mitigation measures.

Key Skills / Qualifications needed for this role:

Extensive experience in cybersecurity, particularly in Incident Response and Recovery Management.

Strong knowledge of common security incidents, attack vectors, and situational awareness.

Highly desired- Relevant professional qualifications in Cyber and Information Security (e.g., OCSP, CISM, CISSP, CEH).

Experience with incident response and remediation tools.

High-level knowledge of penetration testing tools and security testing frameworks (e.g., Nessus, Metasploit, Burp Suite).

Experience with Red Teaming, Purple Teaming, and Attack Automation.

Familiarity with industry regulations and compliance standards (e.g., NIST CSF, PCI DSS, GDPR, ISO 27001).

Experience in cloud environments (Azure, GCP, AWS) and related security practices.

Strong communication skills to convey technical concepts to non-technical stakeholders and senior management.

Ability to influence and facilitate collaboration with internal teams, external partners, and global business units.

Excellent analytical and problem-solving abilities to address complex technical issues and recommend effective solutions.

Logical approach to conceptual thinking and high-quality problem-solving in various scenarios.

Decisive action-taking, especially under time constraints, while maintaining high confidentiality.

Self-motivated, capable of operating under pressure, managing time effectively, and making proactive decisions.

Commitment to raising performance standards through continuous learning, knowledge-sharing, and training.

Benefits

Our benefits are designed to make health happen for our people. Viva is our global wellbeing programme and includes all aspects of our health – from mental and physical, to financial, social and environmental wellbeing. We support flexible working and have a range of family friendly benefits.

Joining Bupa in this role you will receive the following benefits and more:

• 25 days holiday, increasing through length of service, with option to buy or sell

• Bupa health insurance as a benefit in kind

• An enhanced pension plan and life insurance

• Annual performance-based bonus

• Onsite gyms or local discounts where no onsite gym available

• Various other benefits and online discounts

Why Bupa?

We’re a health insurer and provider. With no shareholders, our customers are our focus. Our people are all driven by the same purpose – helping people live longer, healthier, happier lives and making a better world. We make health happen by being brave, caring and responsible in everything we do.