Head of Product Security

Bupa

full-time

Posted on: 1/13/2026

Location Type: Hybrid

Location: London • United Kingdom

✨ AI Apply

About the role

Own and develop Bupa’s Product Security Framework, embedding security into the lifecycle of all digital products.
Drive our Secure by Design vision and lead the transition to DevSecOps practices.
Oversee application and cloud security, ensuring compliance with GDPR, ISO 27001, and NIST standards.
Act as a thought leader, staying ahead of emerging threats and industry best practices.
Build and manage a talented team of security specialists, fostering a culture of innovation and collaboration.
Support audits and governance, ensuring robust reporting and risk management.
Engage with senior stakeholders across technology and business teams to align security initiatives with strategic priorities.

Degree-level education or equivalent experience in IT, Cybersecurity, or related field.
Professional certifications such as CISSP, CISM, or CISA.
8+ years in cybersecurity, including 3+ years in leadership roles.
Strong technical grounding in cloud and application security, including DevSecOps practices.
Experience with security technologies (SCA, SAST, DAST, CSPM, CNAPP) and frameworks (OWASP, NIST).
Proven ability to lead teams, influence stakeholders, and manage change in complex environments.
Excellent communication skills and a collaborative mindset.

Benefits

Tip: use these terms in your resume and cover letter to boost ATS matches.

cloud securityapplication securityDevSecOpssecurity technologiesSCASASTDASTCSPMCNAPPOWASP

leadershipinfluence stakeholdersmanage changecommunicationcollaborationinnovationrisk managementreportingthought leadershipstrategic alignment

CISSPCISMCISA