Working across the full Cyber Security function, the role defines and matures meaningful performance metrics to assess the effectiveness of detective and protective controls, identify emerging risks and trends, and support data‑led decision making at both operational and senior leadership levels. By ensuring security performance is measurable, transparent, and aligned to organisational risk appetite and regulatory expectations, this role directly enables continuous improvement of the organisation's security posture. Success requires strong analytical capability, commercial awareness, and the ability to translate complex technical data into clear, credible insights for a wide range of stakeholders.
Responsibilities
* Collect, aggregate, and manage cyber security telemetry and metrics from across security tools, platforms, and processes.
* Analyse security data to identify trends, emerging risks, control effectiveness, and improvement opportunities.
* Produce clear, accurate, and timely reports for both technical teams and senior stakeholders.
* Provide insight‑led recommendations to enhance detective and protective security controls.
* Support risk and compliance activities through evidence‑based metrics and analysis.
* Track progress against cyber initiatives, control enhancements, and assurance actions to ensure measurable outcomes.
Qualifications
* Ability to define meaningful security metrics that drive insight rather than activity reporting, aligned to KPIs and business goals.
* Strong analytical skills with the ability to identify trends, risks, and improvement opportunities from complex data sets.
* Experience producing high‑quality reports, dashboards, and presentations tailored to different audiences.
* Ability to translate technical security data into clear, actionable business insight.
* Strong stakeholder engagement skills with a proven ability to build trusted working relationships.
* Knowledge of data visualisation or reporting tools such as Power BI, Tableau, ServiceNow and operational databases.
* Strong understanding of cyber security principles, controls, and operating models.
* Experience working within a Cyber Security Governance, Risk & Assurance function.
* Familiarity with industry frameworks and standards such as ISO/IEC 27001, NIST CSF, NIST 800‑53, or similar.
Benefits
We offer competitive salaries, performance‑based annual bonuses, generous annual leave, market‑leading pensions, private health insurance, wellbeing tools, and learning and development opportunities.
Location
The role is hybrid, with the employee based in the UK and within commuting distance to Heathrow. Hybrid working offers the option to work from home up to two days a week, with variations confirmed during recruitment.
Equal Opportunities
Equal opportunities employer – encourage applications from all. We believe that diverse talent makes us stronger. Heathrow is an accessible place to work.
#J-18808-Ljbffr