remote

Security Engineer - Bupa

Security Engineer

Senior Security Engineer focused on implementing and maintaining NIST, ISO 27001, and CIS controls to protect hospital data, drive continuous improvement, and support incident response and vulnerability management.

About the role

Key Responsibilities

Lead the implementation and ongoing maintenance of NIST, ISO 27001, and CIS control frameworks across the organization.
Conduct risk assessments, vulnerability scans, and penetration testing to identify and remediate security gaps.
Develop and enforce security policies, procedures, and incident response plans.
Collaborate with IT, compliance, and clinical teams to ensure secure configuration of systems and applications.
Provide security awareness training and guidance to staff on best practices and emerging threats.

Requirements

Proven experience as a Security Engineer in a regulated healthcare environment.
Deep knowledge of NIST, ISO 27001, and CIS controls, with hands‑on implementation experience.
Strong skills in risk assessment, vulnerability management, and incident response.
Excellent communication skills and ability to translate technical concepts to non‑technical stakeholders.
Relevant certifications (CISSP, CISM, ISO 27001 Lead Implementer) preferred.

Skills

linuxfinancial analysis

CompanyBupa

DepartmentEngineering

LocationLondon, United Kingdom

Experience3+ years

Tenurefull-time

LevelMid-Level

Salary68,000

Posted June 25, 2026