At Bupa, we're passionate about technology. With colleagues, customers, patients and residents in mind you'll have the opportunity to work on innovative projects and make a real impact on their lives. Right from the start you'll become part of our digital strategy, joining us on our journey and developing yourself along the way. As the Secure by Design Training Manager, you'll play a critical role in embedding a security-first mindset across Bupa's technology and product teams. You'll be responsible for designing, delivering, and continuously improving training programs and products that ensure secure development practices are understood and adopted throughout the software development lifecycle. You'll help drive Bupa's commitment to protecting customer data and maintaining trust by fostering a culture of security awareness and technical excellence.
How you will help us make health happen
* Build relationships with, manage and influence stakeholders to ensure cyber security behavioural change activity within the Technology function and wider business is meaningful, data driven, and impactful.
* Design, develop and implement a comprehensive Secure by Design training strategy and delivery plan that includes engaging, role-specific training products for a broad range of user groups (e.g. developers, architects, product owners).
* Deliver against the defined BGIUK Cyber Security Culture and Awareness Strategy, in line with the wider Technology and business strategies, to reduce security risks in technology and product teams.
* Collaborate with key stakeholders within the Chief Security and Controls Office (CSCO) and wider Technology function to identify training needs and create training products that support DevSecOps methodologies.
* Drive continuous improvement of technology security culture, creating opportunities for feedback and responding appropriately to this along with changing requirements and risks.
* Provide subject matter expertise on technical security training, change and awareness related activities.
* Strong understanding and practical experience applying secure development practices, Secure by Design principles, and DevSecOps methodologies.
* Experience designing and delivering technical training programs within a cyber security or technology function.
* Familiarity with industry standards and compliance frameworks such as OWASP, NIST, ISO 27001, and secure coding guidelines.
* Understanding of how to drive security culture and behavioural change in technical environments.
* Demonstrated ability to collaborate with and influence a wide range of stakeholders, including developers, architects, product owners, and senior leaders.
* Experience of working in a product‑centric model.
* Excellent interpersonal, communication and presentation skills.
* Strong understanding of the regulatory environment within which we operate.
About Bupa
We're a health insurer and provider. With no shareholders, our customers are our focus. Our people are all driven by the same purpose - helping people live longer, healthier, happier lives and making a better world. We make health happen by being brave, caring and responsible in everything we do.
We're a Level 2 Disability Confident Employer
Bupa is a Level 2 Disability Confident Employer. This means we aim to offer an interview/assessment to every disabled applicant who meets the minimum criteria for the role. We'll make sure you are treated fairly and offer reasonable adjustments as part of our recruitment process to anyone that needs them.
#J-18808-Ljbffr