Job description
This is a key time to be joining British Airways as we Build a Better BA. We take huge pride in our past – but we’re looking to the future as an airline that loves embracing the best of modern Britain. Our country’s creativity, diversity, style, wit and warmth are the same special qualities that make us who we are. If you’re made of the same qualities as us, you could soon be part of the next chapter of our story. Together as one team, we’re connecting Britain with the world and the world to Britain like no one else.
The Cyber Delivery Assurance Lead is an exciting new opportunity to build your career taking full responsibility for the secure delivery of all programmes. You'll use your considerable expertise to assist the product team in interpreting and embedding Cyber Security policies, standards, guidelines and procedures to an agreed framework against all product team deliverables. You will support delivery areas that are moving towards devsecops and secure agile product delivery. An inspiring leader, with excellent communication and influencing skills, encouraging others to deliver.
What you will be doing
- Ensuring product delivery and maintenance meet the programme risk appetite and controls are effective
- Embedding security by design with proportionate appropriate cyber controls aligned to risk
- Negotiating and influencing across multinational organisations, including third party suppliers and delivery partners
- Taking responsibility for programme security
- Engaging with the BA Cyber Team project assurance and architecture functions, ensuring consistency and best cyber practice is adhered to
- Providing authoritative advice and guidance on the application and operation of all types of security controls. (includes legislative and regulatory requirements)
- Advising users on risk management reduction and promoting cyber awareness programmes
In addition to working in a regulated environment with specific cyber requirements, you will have broad technical knowledge
About you
- Strong effective leadership skills
- Technical knowledge of cyber security controls demonstrated by attainment of appropriate qualifications e.g. CISSP, ISO27001 Lead Implement or or relevant SANS GIAC or equivalent
- Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance.
- Experience working in an agile delivery environment (highly advantageous)
- Specific cyber knowledge and demonstrable experience in at least one of the following areas: Cloud security, network security, digital security (multi-platform), infrastructure security, security by design, security architecture, devsecops
Please note: You can only apply for this role if have you been resident in the UK for the last 3 years to support the new CTC vetting requirement.
Our Corporate and Support roles come with big potential to make your mark on our business. The airline industry changes so fast that we’re constantly evolving and finding new ways to impress customers and get ahead of our competitors. If you’re an innovator and brave and bold thinker, you will be in your element at British Airways.
Your impact on British Airways will be rewarded with a competitive rewards package plus the opportunity to develop and progress your career in many directions.
Not only will you have the chance to further your career development within BA, you’ll have access to our competitive reward and benefits package. This includes core company paid benefits such as a Defined Contribution pension scheme, generous Life Assurance cover and a whole host of options to support your physical, mental and financial wellbeing. You can also sign up for a range of voluntary benefits such as Private Medical cover, Dental and Critical Illness cover, Technology Scheme, Cycle to Work and Electric Car Scheme. And of course, you’ll be able to enjoy the benefit of staff travel as soon as you join us
We are an equal opportunities employer and value diversity at British Airways. We do not discriminate on the basis of race, religion, age, marital status, veteran status or disability status. This job description is intended to convey information essential to understanding the scope of the job and the general nature and level of work performed by job holders within this job. However, this job description is not intended to be an exhaustive list of qualifications, skills, efforts, duties, responsibilities or working conditions associated with the position.
N.B. We reserve the right to close a vacancy before the closing date in the event of an overwhelming response or a change in business priorities
.