Principal Security Architect

Bupa
Salford
1 year ago
Applications closed

Related Jobs

View all jobs

IAM Security Consultant - PERM - London, UK

Principal Security Consultant

Security Resilience Manager

Security and Governance Analyst

MRICS Principal Asset Surveyor -Local Authority

PES Lead Engineer/Principal Engineer

Job Description:

Principal Security Architect

Permanent

London / Staines / Manchester (Hybrid Working)

Full time

Closing date: Tuesday 18h February 2025

We make health happen.

At Bupa, we’re passionate about technology. With colleagues, customers, patients and residents in mind you’ll have the opportunity to work on innovative projects and make a real impact on their lives.

Right from the start you’ll become part of our digital strategy, joining us on our journey and developing yourself along the way.

As the Principal Security Architect for Bupa Global, India, and UK (BGIUK) you’ll be responsible for providing senior technical security leadership and guidance to cross functional teams on security technologies, architecture and design. We’ll look to you for direction and recommendations to improve the overall security posture of BGIUK.

How you’ll help us make health happen:

Support the Director of Cyber Technology to develop the BGIUK Cyber Security Strategy and own the associated technology roadmaps to maintain our security posture.

Support the wider Bupa leadership to develop product roadmaps that incorporate security by design.

Define our target Security Architecture, ensuring it’s integrated and aligned with our Cyber Security Strategy and overarching target Enterprise Architecture.

Inspire, manage, and develop a team of security consultants and architects to deliver security architecture service and embed security within agile ways of working.

Develop and maintain repeatable security architecture artifacts (models, patterns, templates, standards, and procedures).

Collaborate with other teams to develop and maintain security policies, procedures, and standards, considering legal, governance and regulatory requirements (e.g. NIST, PCI-DSS, Enterprise Risk Framework, and GDPR).

Foster innovation and digital transformation, ensuring the ethical and secure adoption of new technologies within the business, including the technology and CISO teams.

Represent the CISO team at all design authorities and architectural forums, taking ownership of security architecture design forums and governance processes 

What you’ll bring

Solid experience in cyber security with specific architecture/consultancy experience in large-scale organisations.

A proven track record of implementing security architecture, designing security controls, design reviews and security solution architecture.

Strong knowledge and implementation experience specific to Network & Infrastructure Security, Application Security, Cloud Security (IaaS, PaaS, SaaS), Data Security

Good knowledge of designing the deployment of applications and infrastructure into public cloud services.

Strong knowledge of security assessment methodologies and delivering a security assessment service.

Experience of developing security standards and patterns.

Strong knowledge of enterprise security frameworks, best practices and principles.

Proven Experience using threat modelling and translating this into security requirements.

A recognised security security accreditation such as CISSP, CISM, SABSA, GAIC or a recognised Degree/ Masters qualification in Information Security.

Benefits

Our benefits are designed to make health happen for our people. Viva is our global wellbeing programme and includes all aspects of our health – from mental and physical, to financial, social and environmental wellbeing. We support flexible working and have a range of family friendly benefits.

Joining Bupa in this role you will receive the following benefits and more:

25 days holiday, increasing through length of service, with option to buy or sell

Bupa health insurance as a benefit in kind

An enhanced pension plan and life insurance

Annual performance-based bonus

Onsite gyms or local discounts where no onsite gym available

Various other benefits and online discounts

Why Bupa? 

We’re a health insurer and provider. With no shareholders, our customers are our focus. Our people are all driven by the same purpose – helping people live longer, healthier, happier lives and making a better world. We make health happen by being brave, caring, and responsible in everything we do. 

We encourage our people to “Be you at Bupa”, we champion diversity, and we understand the importance of our people representing the communities and customers we serve. That’s why we especially encourage applications from people with diverse backgrounds and experiences. 

As a Disability Confident employer, we offer a guaranteed interview for every disabled applicant who meets the minimum criteria for the job. We’ll make sure you are treated fairly and offer reasonable adjustments as part of our recruitment process to anyone that needs them. 

Time Type:

Full time

Job Area:

IT

Locations:

Angel Court, London, Bupa Place, Kirkstall Forge, Staines - Willow House

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.