Direct message the job poster from IAG Transform
IAG Transform is a part of International Airlines Group (IAG). IAG is one of the world’s largest airline groups with 600+ aircraft carrying more than 122 million customers to 260 destinations across 91 countries each year.
IAG brings together leading airline brands Aer Lingus, British Airways, Iberia, Level, Vueling. These are supported by IAG Loyalty that spans all its airlines and beyond, offering the global currency Avios and including BA Holidays, and IAG Cargo which delivers vital goods and produce around the world. These businesses are complementary to its core airline businesses. As the first airline group globally to commit to net zero by 2050, sustainability is a core part of IAG’s strategy.
IAG Transform plays a critical role in driving transformation across IAG and the aviation industry, through expertise and capabilities in procurement, technology, AI, innovation, and transformation.
We are based in London, UK, with a presence in Dublin, Madrid, Barcelona and Kraków.
With us, your work will create real impact, from everyday improvements to breakthrough change that reshapes the way the world flies.
Purpose of the Role
In your role you will work within the team that investigates and analyses high priority cybersecurity incidents with precision. You will respond to and contain security threats effectively, following a robust Cyber Security Incident Response Plan (CIRP). Collaborating with both internal and external stakeholders, you will ensure seamless communication and effective outcomes. You will document incident responses meticulously and create comprehensive reports. Additionally, you will be responsible for introducing and utilising security automation and scripting to enhance efficiency and security measures.
Key Responsibilities
* Monitor security alerts and logs to detect potential security incidents.
* Conduct initial triage and assessment of incidents to determine severity and impact.
* Conduct in-depth analysis of security incidents to determine root cause, scope, and extent of compromise.
* Analyze malware samples, network traffic, and system logs to identify indicators of compromise (IOCs) and attack patterns.
* Lead and coordinate incident response efforts, including containment, eradication, and recovery activities.
* Collaborate with cross-functional teams to mitigate security incidents and minimize business impact.
* Assist partners in/and conduct digital forensic investigations to gather evidence and support incident response efforts.
* Preserve and analyze forensic artifacts from compromised systems to identify attacker tactics, techniques, and procedures (TTPs).
* Analyze threat intelligence feeds and reports to identify emerging threats and vulnerabilities.
* Correlate threat intelligence with security events and incidents to enhance detection and response capabilities.
* Document incident findings, analysis, and response actions in incident reports and case management systems.
* Prepare and present post-incident reports to management, stakeholders, and regulatory authorities.
* Coordinate incident response activities with internal teams, external partners, and law enforcement agencies.
* Communicate effectively with stakeholders to provide timely updates on incident status and resolution efforts.
* Cyber Table Top Exercise and Breach Attack Simulation Exercise
* Perform Oncall Duties on rota basis during out of office hours
* This role may require travel and working from multiple sites/locations. Willing and able to travel to participate in meetings, workshops, and other related activities.
Qualifications & Experience Required:
Education:
Bachelor's or Masters degree or higher in Computer Science, Information Security, Cybersecurity, or a related field. Advanced degrees (e.g., Master's or Ph.D.) may be preferred for senior-level positions.
Certifications:
Relevant certifications in cybersecurity and incident response are highly desirable. Examples include:
* Certified Information Systems Security Professional (CISSP)
* Certified Incident Handler (GCIH)
* Certified Ethical Hacker (CEH)
* Certified Computer Security Incident Handler (GCFE)
* GIAC Certified Forensic Analyst (GCFA)
* GIAC Certified Incident Handler (GCIH)
* Certified Information Security Manager (CISM)
* Offensive Security Certified Professional (OSCP)
* CompTIA Cybersecurity Analyst (CySA+)
Experience:
* Several years of experience in cybersecurity, with a focus on incident detection, analysis, and response.
* Experience working in a CIRT or SOC environment, preferably in a senior role.
* Demonstrated expertise in conducting digital forensic investigations and malware analysis.
* Strong understanding of incident response frameworks, methodologies, and best practices (e.g., NIST Incident Response Framework, SANS Incident Handling Process).
* Experience with threat intelligence analysis, including the use of threat intelligence feeds and platforms.
* Familiarity with network security monitoring tools, SIEM (Security Information and Event Management) systems, and other security technologies.
The chance to enjoy a challenging career in an exciting, fast-moving environment in a dynamic industry, working in a multi-cultural environment with great offices in many locations. We aim to provide all our people with a work/life balance, as well as the many benefits offered by a global organisation, including health insurance, pension, and performance bonuses
Seniority level
* Seniority level
Mid-Senior level
Employment type
* Employment type
Full-time
Job function
* Job function
Engineering and Project Management
* Industries
Airlines and Aviation
Referrals increase your chances of interviewing at IAG Transform by 2x
Get notified about new Security Operations Center Analyst jobs in London Area, United Kingdom.
London, England, United Kingdom 4 days ago
City Of London, England, United Kingdom £60,000.00-£70,000.00 1 week ago
London, England, United Kingdom 1 month ago
London, England, United Kingdom 2 weeks ago
London, England, United Kingdom 4 days ago
Greater London, England, United Kingdom 3 months ago
Information Security Analyst, 6 Month FTC, London
London, England, United Kingdom 1 week ago
London, England, United Kingdom £40,000.00-£50,000.00 1 month ago
London, England, United Kingdom 3 days ago
Register your Interest in Cyber Security Opportunities
London, England, United Kingdom 2 weeks ago
Information Security Analyst - Law Firm (6 Month FTC)
London, England, United Kingdom 2 weeks ago
London Area, United Kingdom £75.00-£90.00 23 hours ago
Security Engineer, Governance, Risk and Compliance
London, England, United Kingdom 1 week ago
London, England, United Kingdom 3 days ago
CyberSecurity Operations Engineer - Graduate Cons.
London, England, United Kingdom 2 days ago
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr