Head of Product Security

* Before submitting your application, you should read our to understand how Bupa will use, store and share your information.* For Australia or New Zealand candidates - Before submitting your application, you should read our to understand how Bupa will use, store and share your information.Head of Product Security page is loaded## Head of Product Securitylocations: Central London: Salford Quays: Leedstime type: Full timeposted on: Posted Todayjob requisition id: R1208545Job Description:**Head of Product Security****London / Staines / Manchester (Hybrid) Permanent****We make health happen**At Bupa, our purpose is simple: helping people live longer, healthier, happier lives and making a better world. We do this by delivering trusted healthcare services and innovative digital solutions.As **Head of Product Security**, you’ll play a vital role in protecting the digital products that make this possible. From mobile apps to cloud platforms, you’ll ensure security is built into every stage of development. This is a unique opportunity to lead a high-performing team and shape our Secure by Design strategy, influencing how millions of customers experience safe, secure healthcare.**Key Responsibilities*** Own and develop Bupa’s Product Security Framework, embedding security into the lifecycle of all digital products.* Drive our Secure by Design vision and lead the transition to DevSecOps practices.* Oversee application and cloud security, ensuring compliance with GDPR, ISO 27001, and NIST standards.* Act as a thought leader, staying ahead of emerging threats and industry best practices.* Build and manage a talented team of security specialists, fostering a culture of innovation and collaboration.* Support audits and governance, ensuring robust reporting and risk management.* Engage with senior stakeholders across technology and business teams to align security initiatives with strategic priorities.**What We’re Looking For*** Degree-level education or equivalent experience in IT, Cybersecurity, or related field.* Professional certifications such as CISSP, CISM, or CISA.* 8+ years in cybersecurity, including 3+ years in leadership roles.* Strong technical grounding in cloud and application security, including DevSecOps practices.* Experience with security technologies (SCA, SAST, DAST, CSPM, CNAPP) and frameworks (OWASP, NIST).* Proven ability to lead teams, influence stakeholders, and manage change in complex environments.* Excellent communication skills and a collaborative mindset.**Benefits**Our benefits are designed to make health happen for our people. Viva is our global wellbeing programme and includes all aspects of health – from mental and physical, to financial, social and environmental wellbeing. We support flexible working and have a range of family-friendly benefits.Joining Bupa in this role you will receive the following benefits and more:* 25 days holiday, increasing with service, plus option to buy or sell* Enhanced pension and life insurance* Private medical insurance* Access to health and wellbeing services* Discounts on Bupa products and services**Why Bupa**We’re a health insurer and provider. With no shareholders, our customers are our focus. Our people are all driven by the same purpose – helping people live longer, healthier, happier lives and making a better world. We make health happen by being brave, caring and responsible in everything we do.We encourage all of our people to “Be you at Bupa”. We champion diversity and understand the importance of representing the communities and customers we serve. That’s why we especially encourage applications from people with diverse backgrounds and experiences.Bupa is a Level 2 Disability Confident Employer. We aim to offer an interview to every disabled applicant who meets the minimum criteria for the role and provide reasonable adjustments throughout the process.Time Type:Full timeJob Area:ITLocations:Angel Court, London, Bupa Place, Kirkstall Forge