Head of Cyber Threat Exposure

Head of Cyber Threat Exposure

**Job Description**:
**Head of Cyber Threat Exposure**

**Permanent**

**London / Staines / Manchester (Hybrid Working)**

We consider all types of flexibility, including locations, hours and working patterns.

**We make health happen.**

At Bupa, we are at the forefront of an exhilarating digital transformation journey, driven by our ambition to become the world's most customer-centric healthcare provider. Our mission is simple yet profound: to help people live longer, happier, healthier lives, and to make a better world.

**How you'll help us make health happen**
- Lead a team of technical security experts to drive a continuous ecosystem for managing vulnerabilities and offensive security to limit Bupa's exposure from both strategic and tactical threats.
- End to end management and delivery of security services including penetration testing, assumed breach testing, attack and social engineering simulations, red and purple teaming.
- Provide comprehensive dashboarding and reporting capabilities leveraging threat intelligence and proactively identify, prioritise, and remediate vulnerabilities and threat exposures
- Ensure that all technology, cloud services and third-party solutions comply with defined vulnerability management and penetration testing requirements.
- Collaborate with their counterparts in other Bupa Markets to share knowledge, ideas, innovation, and areas for improvement.
- Stay abreast of emerging cybersecurity industry thought leadership, external industry colleagues, threats, vulnerabilities, and attack techniques.

**What you'll bring**
- Solid experience in cybersecurity, with extensive experience in threat management, vulnerability management, offensive security practices and security testing.
- Strong knowledge of common security vulnerabilities, attack vectors, and security testing frameworks, such as OWASP, MITRE ATT&CK, CVE / CVSS, and NIST SP 800-53.
- Experience of vulnerability scanning tools, penetration testing tools, and security testing frameworks (e.g., Nessus, Metasploit, Burp Suite, Nmap, Claire, and OpenSCAP).
- Extensive experience with Red Teaming, Purple Teaming and Attack Automation.
- Familiarity with industry regulations and compliance standards related to cybersecurity, such as NIST CSF, SOC2, PCI DSS, and ISO 27001.
- A relevant professional qualification in Cyber and Information Security (e.g., OCSP, CISM, CISSP, CEH)
- Excellent analytical and problem-solving skills, with the ability to analyse complex technical issues and recommend effective solutions.
- Strong communication skills, with the ability to convey technical concepts and findings to non-technical stakeholders and senior management.
- Ability to take decisive action where time is critical factor and maintain a high degree of confidentiality, even under pressure.

**Benefits**

Our benefits are designed to make health happen for our people. Viva is our global wellbeing programme and includes all aspects of our health - from mental and physical, to financial, social and environmental wellbeing. We support flexible working and have a range of family friendly benefits.
- Joining Bupa in this role you will receive the following benefits and more:

- 25 days holiday, increasing through length of service, with option to buy or sell
- Bupa health insurance as a benefit in kind
- An enhanced pension plan and life insurance
- Annual performance-based bonus
- Onsite gyms or local discounts where no onsite gym available
- Various other benefits and online discounts

**Why Bupa**

We're a health insurer and provider. With no shareholders, our customers are our focus. Our people are all driven by the same purpose - helping people live longer, healthier, happier lives and making a better world. We make health happen by being brave, caring, and responsible in everything we do.

Bupa is a Level 2 Disability Confident Employer. This means we aim to offer an interview/assessment to every disabled applicant who meets the minimum criteria for the role. We'll make sure you are treated fairly and offer reasonable adjustments as part of our recruitment process to anyone that needs them.

Time Type:
Full time
Job Area:
IT
Locations:
Angel Court, London, Bupa Place

Employee mentoring programme, Health & wellbeing programme, Referral programme, Free flu jabs, Company pension, Gym membership, Cycle to work scheme, Financial planning services