Cyber Security Manager, Risk

As Cyber Security Manager, Risk, you'll lead Heathrow's day‑to‑day cyber risk management, driving a proactive, business‑wide approach to identifying and managing threats. You'll shape and refine our risk policies and standards, ensure compliance through close collaboration with assurance teams, and build strong relationships with regulators to meet our obligations under the NIS Regulations and wider cyber resilience standards.

• Lead day‑to‑day cyber risk management, ensuring risks are identified, assessed and managed effectively across the business.
• Develop and enhance risk management policies and standards, aligning with industry best practice and Heathrow's enterprise risk framework.
• Work closely with assurance teams to oversee compliance of key systems and drive corrective actions where needed.
• Engage with regulators and authorities, including the Civil Aviation Authority, to support Heathrow's compliance with NIS Regulations and other cyber resilience requirements.
• Champion a culture of proactive risk management, driving continuous improvement and alignment with Heathrow's strategic goals.

• Degree‑educated (or equivalent experience) with experience in cyber risk management, ideally across IT and OT environments.
• Holds or working towards relevant certifications such as CISSP, CISM, C‑RISC, CISA or ISO 27001 Lead Auditor/Implementor.
• Strong knowledge of information security controls, standards and frameworks, including ISO 27001, NIST and NCSC CAF.
• Solid understanding of the UK cyber regulatory landscape, particularly the NIS Regulations 2018; aviation sector experience (e.g. CAP1753) advantageous.
• Experienced in applying risk management frameworks (e.g. ISO 27005, NIST RMF) within complex operational environments.
• Proven leadership and stakeholder management skills, able to collaborate effectively with both technical SMEs and senior executives.

Heathrow is a leading global airport offering diverse career opportunities across operations, technology and sustainability.

Competitive salaries, performance‑based bonuses, Share in Success Bonus, generous annual leave, market‑leading pensions, private health insurance, wellbeing tools and learning & development opportunities.

Hybrid working approach. Must be based in the UK within commuting distance to Heathrow.

Follow Heathrow's Sustainable Travel Guide.

Equal opportunities employer encouraging applications from all. Diversity and inclusion are integral to Heathrow's culture.

The Solutions team covers project management, process improvement, business change, technology, cyber defence, masterplanning, infrastructure and procurement, delivering solutions that enhance every journey.