AWS Cloud Engineer (Security)

Who we are ????

We’re the people behind the global loyalty currency, Avios, and home to three ambitious, growing businesses; IAG Loyalty, British Airways Holidays and The Wine Flyer. Each business has its own goals and strategy, but collectively we create brilliant experiences for our global customers.

We’re on a truly exciting journey of growth and transformation – we’re going places! This is where you come in.

The Opportunity

IAG Loyalty is rapidly evolving into a Platform as a Service business, and we are looking for a Security Engineer to join our platform security engineering team. This is an exciting opportunity for someone with a background in development or engineering who has a passion for building robust security controls and innovative tooling.

You’ll thrive in a cloud-native environment, where adaptability and a hands-on approach are essential. Your experience working in a continuous delivery ecosystem will be key, as our platform is constantly evolving to meet the demands of high-speed innovation and rapid technological change.

This role is based out of our London office. We call our approach to hybrid working The Blend — it’s about giving you the flexibility to choose where you do your best work, while staying connected with your team and the wider business. This means you will be required to spend at least two days per week in the office, with the rest of the time working from home. You may also be required to work from one of our other office or partner locations, based on your role and 'to do' list.

What you’ll get up to

In this role, you’ll take a proactive approach to securing and enhancing our platform, focusing on driving automation and developing secure-by-default practices that empower our teams to deliver safely and efficiently. Your work will contribute to building a security-first culture, ensuring continuous improvement while maintaining the platform’s security, compliance, and high performance in a fast-changing environment.

The ideal candidate will have development or engineering experience and a strong interest in developing security controls and tooling. They will thrive in a cloud-native environment and have a proven track record of working in a continuous delivery ecosystem, where high rates of technology change are the norm. You will deliver security engineering projects to enhance and automate our processes, maintain and improve existing tools like our CNAPP product, and work closely with product teams to design secure-by-default patterns.

Additionally, you will provide expert advice on cloud securityand DevSecOps, helping the engineering community adopt best practices. You’ll also collaborate with the IAG Group SOC to monitor and respond to incidents, assist teams in prioritizing and resolving security issues, and build integrations to track and measure our security program’s performance.

Furthermore, you’ll play an active role in our 24x7 on-call security incident response rota (post-probation)

What we need from you

• Strong technical background with experience in scripting or automation (e.g., Python, Bash)

• Proven track record in DevOps or engineering roles, with expertise in cloud platforms (e.g., AWS) and Infrastructure as Code (e.g., Terraform)

• Knowledge of incident response processes, vulnerability management, and incident triage

• Experience implementing security controls and maintaining security tools

• Familiarity with agile methodologies in fast-paced environments

• Calm, evidence-based decision-maker in high-pressure situations

• Innovative, with a focus on practical, cost-effective solutions

• Committed to continuous learning and improvement in Information Security

• You only want to focus on your to-do list; we’re a small, high-performing team, we help each other to succeed.

• You value perfection over fast iteration and progress; IAG Loyalty moves fast, we learn and iterate as we go; our environment isn’t right for everyone.

• You’re looking to create but not build; this is an end-to-end role, you need to be comfortable owning your space, from ideation through to delivery and review.

If you think you have what it takes but don't meet every single point above, please do still apply. We'd love to chat and see if you could be a great fit.

Equity, Diversity and Inclusion at IAG Loyalty

Our vision, 'to create the world's most rewarding experiences,' applies not only to our customers but for our colleagues too. It's about taking belonging seriously, actively fostering a culture where everyone feels welcomed and valued by embracing diverse identities, personal histories, and perspectives.

This commitment makes IAG Loyalty a rewarding place to work and enhances our ability to solve complex problems, drive innovation, and better serve our customers and communities.

Please let us know if we can make any reasonable adjustments to support your interview process with us.