Security Engineer

Security Engineer

Location:

Cromwell Hospital, London (SW5 0TU
)

Salary: £55,100 – £68,000 (variable depending on experience)

Contract Type:
Fixed‑Term 12 months (Full time, 37.5 hours per week)

Hybrid Working: 2 days per week onsite.

• Support the implementation, monitoring, and continuous improvement of security frameworks and controls aligned to NIST, ISO
  27001, and CIS standards.
• Design, implement, and manage security solutions, including SSO, MFA, and identity lifecycle processes (JML), ensuring secure and seamless user access.
• Collaborate with IT, HR, compliance, and security teams to embed and maintain security controls across systems, projects, and business workflows.
• Identify, assess, and manage security risks and vulnerabilities across applications and infrastructure; develop and drive remediation plans through completion.
• Ensure security is embedded across the full project lifecycle, including participation in change management and design processes.
• Develop, maintain, and document security policies, procedures, and SOPs in line with best practice and regulatory requirements.
• Monitor security posture, track risks, and ensure adherence to defined security metrics and organisational risk appetite.
• Support security assessments, pre‑engagement activities, and coordination with internal SMEs and wider security teams.
• Implement and maintain capabilities for early detection, response, and management of security incidents.
• Test systems and infrastructure to identify vulnerabilities and recommend improvements.
• Produce clear reporting on security posture, risk, and improvement initiatives, and represent the organisation in relevant security forums.
• Develop and implement technical solutions and tools to enhance security capability, automate processes, and protect organisational data and infrastructure.
• Promote security awareness across the organisation, providing guidance and training where required.

• Proven experience as a Security Engineer, Application Security Engineer, or similar role within an enterprise or regulated environment.
• Strong working knowledge of security frameworks and standards, including NIST, ISO
  27001, and CIS, with hands‑on experience implementing and maintaining controls.
• Practical experience designing, implementing, and managing identity and access solutions, including SSO, MFA, and joiner/mover/leaver (JML) processes.
• Technical expertise across security technologies such as firewalls, intrusion detection systems, anti‑virus, authentication systems, log management, and content filtering.
• Good understanding of network security, segmentation, monitoring tools, infrastructure, and OS security (Windows/Linux).
• Experience identifying and managing vulnerabilities, supporting remediation activities, and maintaining security systems in complex environments.
• Ability to design, document, and optimise security processes, policies, and procedures to a high standard.
• Strong understanding of infrastructure and application security principles, capable of securing end‑to‑end enterprise environments.
• Relevant professional certifications such as CISSP, CISM, or equivalent are highly desirable.
• Excellent problem‑solving skills and ability to work effectively under pressure.
• Strong communication and stakeholder management skills; can translate technical security concepts into business context.

• 25 days holiday per year, pro‑rata to contract.
• Access to a range of services to support physical and mental wellbeing.
• Fixed‑term benefits allowance.
• Access to our confidential employee assistance programme.
• Workplace pension.
• Online discounts covering everyday shopping, entertainment, eating out, and more.

We especially encourage applications from people with diverse backgrounds and experiences. Bupa is a Level2 Disability Confident Employer. We offer reasonable adjustments for disabled applicants.