Application Security Governance Analyst United Kingdom
Job description
Application Security Governance Analyst
Staines, TW18 3DZ (preferred) open to other locations
Flexible / Hybrid working
Permanent
£39,000- 48,500 (Neg) + fantastic benefits
Full time – 37.5 hours per week
Here you’ll be welcomed. We champion diversity and we understand the importance of our people representing the communities and customers we serve. You’ll find an inclusive environment where you can be yourself and where everyone is driven by the same purpose – helping people live longer, healthier, happier lives and making a better world.
At Bupa, we’re passionate about technology. With colleagues, customers, patients and residents in mind you’ll have the opportunity to work on innovative projects and make a real impact on their lives.
Right from the start you’ll become part of our digital strategy, joining us on our journey and developing yourself along the way.
Role Overview
The purpose of the role is to support the VM and Threat Automation team in their delivery of testing activities and to support remediation of vulnerabilities across Bupa. The role will work with multiple resolver teams to support with their remediation activities, liaising across different levels of the organisation and with different stakeholders. The role works closely with other items in Security including Risk, Threat Intelligence, and Vulnerability Management.
What you’ll do:
- Analyse Red Team report data, breaking it down into actionable work packets. Identify and assign owners of the technologies associated with the work packets.
• Work with owners to agree action plans, assign targets and track remediation.
• Where no action plans are immediately apparent work with product SMEs, Architecture and Risk to identify a way forward.
• Hold regular meetings with stakeholders in order to maintain plan.
• Escalate lack of action, issues etc to appropriate channels.
• Produce vulnerability reporting in line with requirements.
• Facilitate the production of the Security Testing team monthly reports, including data across all flavours of the security testing team (e.g. VM, Pen Test, App Security, SIP data).
• Facilitates the production of Governance and ad-hoc reports
• Embed a more structured approach by inputting project processes to enable effective planning, reporting and financial monitoring. Support the implementation and maintenance of processes and procedures.
• Look to improve process and enable repeatability. Identify systemic issues and/or opportunities for service maturation and improvement.
• Provide any ad-hoc assistance and support Team to ensure tasks are completed as planned.
• Support the governance around the testing including Change Management, Service Now requests and Risk.
• Work closely with Bupa teams and Suppliers to understand the existing security posture, roadmap and security strategy.
What you’ll bring:
- Has a track record of technical delivery within a fast-paced environment.
- A broad security background – Testing, Infrastructure, networking etc
- Strong knowledge and understanding of exploits and vulnerabilities
- Industry recognized qualification is a plus.
- Strong interpersonal, communication and influencing skills
- Operate effectively at all levels including Senior Management and external customers
- Good understanding of Information Security standards and methodologies
- Ability to explain findings to non-technical audience
- Comfortable working in a fast-paced environment.
Why Bupa?
We are a health insurer and provider. With no shareholders, our customers are our focus. We reinvest profits into providing more and better healthcare for the benefit of current and future customers.
Our benefits are driven by what matters to our people. It’s important to us that these benefits support a work-life balance that keeps people healthy, both mentally and physically. You will be eligible for:
· 25 days holiday, increasing through length of service, with option to buy or sell
· Bupa health insurance as a benefit in kind
· An enhanced pension plan and life insurance
· Annual performance-based bonus
· Onsite gyms or local discounts where no onsite gym available
· Various other benefits and online discounts
Diversity and Inclusion
Bupa is committed to making sure that every applicant is assessed solely on personal merit and qualifications. We actively celebrate the diversity of our colleagues and provide an inclusive environment so you can bring your true self to Bupa. We’ll make sure you are treated fairly. That’s why we’re happy to offer reasonable adjustments as part of our recruitment process to anyone that needs them.
Whether you’ve found your feet or are discovering a new path.
Welcome to a place that celebrates you.
This isn’t where you've been.
This is where you're going.
This is what we have belief in.
Time Type:
Full time
