Job Description: CSIRT Manager (cyber security incident response team) Primary location: Staines (TW18 3DZ), London (EC2R 7HJ) or Salford (M50 3SP) Flexible / Hybrid working options. Permanent up to £85,700 Neg (depending on exp. & location). 10% Bonus fantastic benefits Full time 37.5 hours We consider all types of flexibility, including locations, hours and working patterns. We make health happen At Bupa, we’re passionate about technology. With colleagues, customers, patients and residents in mind you’ll have the opportunity to work on innovative projects and make a real impact on their lives. Right from the start you’ll become part of our digital & data strategy, joining us on our journey and developing yourself along the way. This is an exciting opportunity to join a business experiencing significant change. You will play a key role in a large-scale security transformation program, developing and embedding a high-performing security incident management and response function within Bupa. How you’ll help us make health happen: Lead and manage the Cyber Security and Incident Response Team, overseeing and remediating security incidents. Handle major and critical cyber security incidents, keeping relevant stakeholders updated. Collaborate with internal teams and outsourced suppliers to enhance security incident management and response capabilities. Ensure the SOC has the visibility and technology to detect cyber security threats across Bupa’s technologies, applications, and infrastructure. Identify, manage, and process cyber security incidents promptly to minimise business impact. Build strong relationships within the cyber security team and the wider business to raise security awareness. Maintain a highly motivated and skilled cyber security incident management and response team. Monitor, evaluate, and report on metrics and KPIs to assess the effectiveness of security incident management and response services. Represent the security incident management and response function at Bupa security governance committees. Oversee forensics and malware analysis to identify security exposures and provide guidance on remediation strategies and risk mitigation measures. Key Skills / Qualifications needed for this role: Extensive experience in cybersecurity, particularly in Incident Response and Recovery Management. Strong knowledge of common security incidents, attack vectors, and situational awareness. Highly desired- Relevant professional qualifications in Cyber and Information Security (e.g., OCSP, CISM, CISSP, CEH). Experience with incident response and remediation tools. High-level knowledge of penetration testing tools and security testing frameworks (e.g., Nessus, Metasploit, Burp Suite). Experience with Red Teaming, Purple Teaming, and Attack Automation. Familiarity with industry regulations and compliance standards (e.g., NIST CSF, PCI DSS, GDPR, ISO 27001). Experience in cloud environments (Azure, GCP, AWS) and related security practices. Strong communication skills to convey technical concepts to non-technical stakeholders and senior management. Ability to influence and facilitate collaboration with internal teams, external partners, and global business units. Excellent analytical and problem-solving abilities to address complex technical issues and recommend effective solutions. Logical approach to conceptual thinking and high-quality problem-solving in various scenarios. Decisive action-taking, especially under time constraints, while maintaining high confidentiality. Self-motivated, capable of operating under pressure, managing time effectively, and making proactive decisions. Commitment to raising performance standards through continuous learning, knowledge-sharing, and training. Benefits Our benefits are designed to make health happen for our people. Viva is our global wellbeing programme and includes all aspects of our health – from mental and physical, to financial, social and environmental wellbeing. We support flexible working and have a range of family friendly benefits. Joining Bupa in this role you will receive the following benefits and more: • 25 days holiday, increasing through length of service, with option to buy or sell • Bupa health insurance as a benefit in kind • An enhanced pension plan and life insurance • Annual performance-based bonus • Onsite gyms or local discounts where no onsite gym available • Various other benefits and online discounts Why Bupa? We’re a health insurer and provider. With no shareholders, our customers are our focus. Our people are all driven by the same purpose – helping people live longer, healthier, happier lives and making a better world. We make health happen by being brave, caring and responsible in everything we do. We encourage all of our people to “Be you at Bupa”, we champion diversity, and we understand the importance of our people representing the communities and customers we serve. That’s why we especially encourage applications from people with diverse backgrounds and experiences. Bupa is a Level 2 Disability Confident Employer. This means we aim to offer an interview/assessment to every disabled applicant who meets the minimum criteria for the role. We’ll make sure you are treated fairly and offer reasonable adjustments as part of our recruitment process to anyone that needs them. Time Type: Full time Job Area: IT Locations: Angel Court, London, Bupa Place, Staines - Willow House Be at the heart of helping people live longer healthier, happier lives and making a better world. We employ more than 80,000 people globally who are making this a reality. If you've got the belief, the drive and the talent to help us in our ambition then we’d like to hear from you. Wherever you work, one thing stands out about Bupa people. Our customers are our passion – they’re at the heart of our positively different culture of care. At Bupa you’ll be challenged, you’ll be encouraged to innovate, and collaborate with colleagues who are committed to delivering exceptional experiences. We trust, respect and consider everyone, knowing your difference will make the difference. Please introduce yourself to our recruiters and we'll get in touch if there's a role that sounds like a good match.