AddressCompany Description
About IAG Tech
IAG Tech is a community of IT and digital professionals from across the International Airlines Group (IAG). We drive the technology behind some of the biggest and most successful brands in global aviation, including British Airways, Aer Lingus, and Iberia.
Brought together in 2019, we are a unique community with a shared vision to deliver Technology Excellence and be recognised as industry leaders in the use of technology.
Our mission is to delight customers, enable employees, accelerate business performance, protect our business and increase shareholder value, through the innovative and agile use of technology and data.
We use product-centric delivery teams using agile methods to implement new capabilities at pace and maximise business outcomes. With a relentless focus on improving system performance and stability, we continually strive to find new and better ways to innovate and support the Group.
Our Values
At IAG Tech we share common values to help us create the right culture to underpin our thriving community:
Innovation| we value identifying new ways of using technology to solve business challenges
Empowerment| we value giving people the freedom to operate, that they take accountability, and collaborate with colleagues
Professionalism | we value having and developing the right knowledge and competency to be able to do our jobs to the best of our ability
Transparency| we value honesty and integrity and always share the reality in a manner the business understands
Agility| we value responsiveness, speed and flexibility in everything we do
We celebrate when we see great examples of our values in action and challenge each other when we see these values being ignored.
Job Description
As a Cyber Engineer Lead, you will be responsible for overseeing and maintaining our Identity and Access Management platforms, leading Product teams in one or more of our domains within the BA Tech Delivery Team to drive and implement agile change.
Purpose of the role
The ideal candidate will have extensive experience leading teams and projects in any of the following security domains - IAM, Network and perimeter security, security policy, guardrails definition and implementation, pipeline security, security logging, API gateways, and compliance.
You will oversee and guide the focus on identity services and platforms, utilising your expertise in IDAM Platform-as-a-Service and Infrastructure-as-a-Code to ensure the delivery of robust, secure and stable identity and access solutions for the organisation. You will lead the design, creation, maintenance, auditing, and enhancement of IDAM solutions and oversee platform development through strategic direction and continuous improvement and automation to align with the technology needs of our business. Now is an exciting time to join the team to help shape and execute ambitious plans over coming years
Accountabilities
Working in partnership with BA Digital and the business to:
- Drive stakeholder discussions to define and implement security policies and procedures for our technical platforms.
- Guide and define the security posture of our technical platforms.
- Oversee implementation and maintenance of security controls for our technical platforms.
- Oversee implementation and maintenance of network and perimeter security controls.
- Oversee implementation and maintenance of IAM policies and access controls.
- Oversee implementation and maintenance of security logging and monitoring solutions.
- Oversee implementation and maintenance of API gateway security controls.
- Guide definition and implementation of pipeline security controls.
- Guide definition and implementation of guardrails to ensure compliance with regulatory and internal security policies.
- Lead discussions with other teams to ensure compliance with security policies and procedures.
- Stay up-to-date with the latest cloud security trends and best practices
This role may require some travel and working from multiple sites/locations within UK and internationally. You must be willing and able to travel to participate in meetings, workshops and other related activities
Qualifications
- Educated to degree level or equivalent experience
Desired qualifications
- Professional certifications e.g., CISM, CISSP, CISA,
Skills
- Ability to lead and manage a team of cybersecurity professionals effectively.
- Strong decision-making skills, especially in high-pressure situations.
- Effective communication with executives, department heads, and non[1]technical stakeholders.
- In-depth knowledge and expertise in cybersecurity technologies, tools, and methodologies
- Understanding of network protocols, firewalls, intrusion detection/prevention systems, VPNs, and other network security technologies.
- Understanding of security policies, procedures, and compliance requirements. This includes knowledge of standards such as ISO 27001, NIST, and industry-specific regulations.
- Fluent written and spoken English.
Experience
- Demonstrable experience of leading cyber security in complex, multi[1]national organisations.
- Familiarity with a wide range of cybersecurity tools for vulnerability scanning, penetration testing, intrusion detection, and incident response.
- Experience conducting risk assessments and developing strategies to mitigate cybersecurity risks
- Proven track record of being professionally persistent, patient, respectful, honest, and strong under pressure, especially during occasional adversarial conversations.
- Experience of proactively identifying, questioning and suggesting improvement to current working methods and processes where necessary
Additional Information
Benefits
The chance to enjoy a challenging career in an exciting, fast-moving environment in a dynamic industry, working in a multi-cultural environment with great offices in many locations. We aim to provide all our people with a work/life balance, as well as the many benefits offered by a global organisation, including health insurance, pension, and performance bonuses
Diversity and Inclusion
IAG Tech is part of the IAG GBS organisation, and our people are at the heart of everything we do. We recognise that we can only deliver the required business outcomes if we have a thriving community of technology professionals. Together we strive to become the very best at what we do.
We focus on making Tech a great place to work, with a community that we feel proud to belong to. To help make this a reality, our people strategy focuses on six key domains: Engagement, Talent Management, Reward and Recognition, Performance Management, Learning and Development and Culture.
We understand the importance of Diversity and Inclusion in the workplace to deliver this strategy – everyone should feel part of our team. We want to foster an inclusive workplace, celebrate individuality and embrace differences so that everyone in IAG Tech can achieve their goals and ambitions, regardless of their personal circumstances or background.
As a Group, IAG has an ambition that 40% of senior management roles are held by women by 2025. IAG Tech fully supports that ambition, and we are working to help make it a reality. With this in mind, we have set ourselves the challenging target of recruiting 50% female colleagues by 2030.
