Cyber Incident Response Team Manager

We are part of the International Airlines Group, a leading airline group operating to over 270 destinations and serving more than 100 million passengers annually.

Our platform offers scalable, best-in-class procurement, finance, and IT services to brands including Aer Lingus, British Airways, IAG, IAG Cargo, IAG Loyalty, Iberia, Iberia Express, LEVEL, and Vueling.

We focus on combining functional expertise with excellent customer service to strengthen our Group's competitiveness and efficiency.

This is a strategic, high-impact role suited for a hands-on cybersecurity professional. You will define and implement the operational model for collaboration between the central Security Operations Center (SOC) and supporting functions, including process formulation, technology stack setup, and establishing deliverables for scalable security operations.

Initial responsibilities include contributing to the selection and onboarding of a Managed Security Services Provider (MSSP), working closely to define operational procedures, KPIs, and SLAs. Building a strong relationship with the MSSP will be key.

Long-term, you will develop a business case for internal capabilities, laying the groundwork for an in-house team and transitioning functions strategically. Building relationships with external stakeholders to align SOC services with business priorities is also essential.

• Degree or equivalent experience
• Recognized security qualifications (e.g., CISM, CISSP) preferred
• Experience leading security teams or senior security analysts
• Project management experience (preferred)
• Leadership skills for managing security analysts and specialists
• Expertise in incident detection, analysis, response, and coordination
• Deep understanding of cybersecurity principles and technologies
• Proficiency with SOC tools (SIEM, IDS/IPS, EDR)
• Risk assessment and prioritization skills
• Knowledge of regulations like GDPR, PCI DSS
• Experience ensuring compliance and legal adherence
• Strong communication skills for diverse audiences
• Ability to adapt to evolving threats and technologies

• Extensive security operations experience
• Prior CIRT team experience
• Leadership in Security Incident Response
• Experience with SIEM/SOAR tools
• Knowledge of threat intelligence, vulnerability management, network security
• Experience with threat analysis and security alerts
• Familiarity with frameworks like MITRE ATT&CK, NIST CSF
• Leadership or strong potential in security teams
• Performance management skills
• Excellent communication and collaboration skills
• Optional: scripting skills (Python, Bash), cloud security, compliance knowledge

• Challenging career opportunities in a dynamic industry
• Multicultural environment with offices worldwide
• Commitment to work/life balance and employee benefits including health insurance, pension, bonuses
• We are an equal opportunity employer, welcoming all qualified applicants regardless of background.