Job Description:
CTEM Penetration Testing Analyst
Salary: From £60,000 DOE
Contract type: Permanent
Shift pattern: Full-time – 37.5 hours per week
Location : Hybrid working, Any Bupa office
We make health happen
Working in our UK support functions you’ll play a key part in helping our customer facing colleagues deliver exceptional standards of customer service and patient care. No matter your role, you’ll have an opportunity to do work that matters. Making a difference to the lives of our customers each and every day.
Role Overview
This role is responsible for all aspects of penetration testing Service across BGIUK to assess and protect Bupa. The purpose of this role is to provide cyber security expertise, supporting end-to-end processes, implementation, and coordination of activities around the penetration testing service. Working for the Security Penetration Testing Manager and collaborating with other Security Penetration Testing Analysts, this role holder supports the appropriate approach to the penetration testing service within the
business
How you’ll help us make health happen:
1. Support the technical activities of the Penetration Testing team.
2. Assist with the penetration testing process, including planning, scoping, coordination, findings
management, risk discussions, remediation tracking, and post-test reviews.
3. Collaborate with internal teams and outsourced suppliers involved in the penetration testing lifecycle
and contribute to processes that support continuous improvement
4. Act as a technical SME regarding penetration testing methodologies to validate assessment results,
assist in challenging third-party providers on findings, and support representation of the penetration
testing function at Bupa security governance committees
5. Work with the wider security and operational teams on the classification and protection of critical assets,
including technology and information assets
6. Assist in operating the penetration testing framework to help manage an engagement and its findings
from scoping to closure
7. Support the embedding of applicable Enterprise Security Policies, Standards, Tools and Processes into
the penetration testing function
Key Skills / Qualifications Needed For This Role
8. At least 3 years of experience in cybersecurity
9. Hold relevant professional qualifications in Cyber and Information Security (e.g., OSCP, CISSP, OSEP,
CRT/CCT, CISM)
10. High-level knowledge of penetration testing tools and techniques, and security testing frameworks (e.g.,
Nessus, Metasploit, Burp Suite, Nmap and OpenSCAP) in an offensive or defensive role.
11. Some exposure of Red Teaming, Purple Teaming and Attack Automation
12. Understanding of Identity and Privileged access management concepts, involving processes, policies and
technologies that manage and secure digital identities and their access to resources
13. Excellent analytical and problem-solving skills, with the ability to translate and analyse complex information and
technical issues into effective recommendations
14. A logical approach to conceptual thinking and the ability to solve problems to a high standard in different
scenarios.
Benefits
Our benefits are designed to make health happen for our people. Viva is our global wellbeing programme and includes all aspects of our health – from mental and physical, to financial, social and environmental wellbeing. We support flexible working and have a range of family friendly benefits.
Joining Bupa in this role you will receive the following benefits and more:
15. 25 days holiday, increasing through length of service, with option to buy or sell
16. Bupa health insurance as a benefit in kind
17. An enhanced pension plan and life insurance
18. Onsite gyms or local discounts where no onsite gym available
19. Various other benefits and online discounts
Why Bupa?
We’re a health insurer and provider. With no shareholders, our customers are our focus. Our people are all driven by the same purpose – helping people live longer, healthier, happier lives and making a better world. We make health happen by being brave, caring and responsible in everything we do.