Senior Security Consultant - Assurance
Permanent (up to 3 days WFH)
Location: Manchester (M50 3SP), Staines (TW18 3DZ), London (EC2R 7HJ) or Leeds (LS5 3BF)
Salary: £78,000 DOE + 10% bonus + fantastic benefits
Hours: 37.5 hours per week
We consider all types of flexibility, including locations, hours and working patterns.
How you will help us make health happen
* Define clear security requirements for programmes and agile initiatives, including user stories and acceptance criteria.
* Lead security design reviews and provide expert guidance on control implementation.
* Identify and manage complex security risks, creating practical mitigation strategies.
* Embed security throughout product and programme lifecycles across diverse delivery models.
* Manage escalations and advise on critical security decisions impacting delivery.
* Present security findings and recommendations to senior leaders and stakeholders.
* Provide expert consultation on technical security decisions during development and delivery.
* Support security assessments for vendors and third‑party integrations.
* Collaborate with product owners, project managers, and technical leads to integrate security seamlessly.
* Champion a security‑first culture and promote awareness across teams.
* Drive continuous improvement through retrospectives and feedback loops.
* Coordinate with other security functions to ensure comprehensive coverage.
* Contribute to process improvements and ensure consistent application of security standards.
Key Skills / Qualifications
* Extensive experience in information security, including security consulting and assurance roles.
* Strong knowledge of cyber security principles, practices and emerging technologies.
* Proven ability to lead complex security assessments and assurance activities.
* Expertise in cloud security concepts and best practices across major platforms (Azure, GCP).
* Skill in engaging and influencing senior executives, technical leaders and diverse stakeholders.
* Excellent written and verbal communication skills, able to simplify complex security topics.
* Deep understanding of security frameworks and standards (e.g., NIST CSF, ISO 27001, CIS Controls, OWASP).
* Experience embedding security within agile delivery and traditional project methodologies.
* Ability to work on complex, multi‑disciplinary programmes and product initiatives.
* Advanced security certifications (CISSP, CISM etc.) and specialist knowledge across multiple domains (preferred).
* Familiarity with regulated environments and large‑scale organisational contexts (preferred).
* Strong capability in security reviews, control validation, and assurance methodologies.
* Understanding of security testing approaches, tools and integration with CI/CD pipelines.
* Awareness of security implications of emerging technologies such as AI, ML and IoT.
Benefits
* 25 days holiday, increasing through length of service, with option to buy or sell.
* Bupa medical insurance as a benefit in kind.
* Enhanced pension plan and life insurance.
* Target bonus of 10% based on individual and company performance.
* Onsite gyms or local discounts where no onsite gym is available.
* Various other benefits and online discounts.
We encourage applications from people with diverse backgrounds and experiences. Bupa is a Level 2 Disability Confident Employer and will offer appropriate support and reasonable adjustments to disabled applicants who meet the minimum criteria for the role.
#J-18808-Ljbffr