AppSec Jobs
← Back to all jobs

Bupa UK

Head of Product Security

London, England, United KingdomWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Bupa UK

Bupa Global is the international private medical insurance division of Bupa, a UK-based healthcare company founded in 1947. It specializes in premium health insurance for individuals, families, expatriates, and businesses, providing access to over 2 million medical providers in more than 190 countries. Bupa Global operates without shareholders, reinvesting profits to enhance customer-centric services and offering global flexibility, digital health tools, and no specialist referrals. The company offers a range of health insurance products, including comprehensive plans with high coverage limits, major medical insurance, and tailored business health solutions for small and medium enterprises. Bupa Global also provides travel insurance that covers various needs, including emergency medical situations and chronic conditions. With a focus on sustainability, Bupa Global engages in initiatives like tree-planting and solarizing water boreholes to support communities. It serves over 468,000 insurance customers in Hong Kong and millions globally, emphasizing high-quality care for those who expect the best from life.

Industry

insurance

Employees

2,300

21 engineers

Revenue

$779K

Website

Visit →

Security at Bupa UK

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

Bupa's AppSec philosophy involves owning and developing a Product Security Framework, embedding security into the lifecycle of all digital products, and driving a Secure by Design vision while transitioning to DevSecOps practices.

Security Team

Information regarding the AppSec team's organizational structure, reporting line, and estimated team size is not publicly available. However, a 'Head of Product Security' role exists at Bupa UK.

Key Initiatives

  • Bupa's initiatives include developing a Product Security Framework, embedding security into the product lifecycle, and transitioning to DevSecOps.
  • They have also implemented biometric authentication (Face/Touch ID) using Authgear, replacing Azure AD B2C, which has reduced password-related tickets.
  • However, public evidence for a Security Champions program or formal vulnerability triage SLAs is not available.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.