Information Security Analyst

Information Security Analyst

Location: Runcorn, Hybrid

Reporting to: Head of Information Security

About Swissport

We are a global leader in sustainable and responsible airport services provision, renowned for our unwavering commitment to safety, operational excellence, and exceptional service, shaping a future where air travel thrives on reliability, efficiency, and experience.

In 2023, with the support of more than 60,000 colleagues, Swissport provided best-in-class airport ground services for some 232 million airline passengers and handled roughly 4.7 million tons of air freight at 115 cargo centres. Across a global network that is unparalleled in the industry, Swissport served airlines at 286 airports in 44 countries across six continents.

The culture of Swissport is shaped by our corporate values, which guide our actions and decision-making processes. These values are at the core of our culture, shaping our business and underpinning our commitment to measuring our impact. They capture the essence of who we are at Swissport and help us deliver value across the entire company.

"Show You Care" underlines that our actions are perceived and valued from the perspective of the people around us. So, whatever we do, we do it purposefully and consciously, taking in the perspective of our colleagues, customers, and passengers.

“Doing the right things” means that we do the things that are valuable to our colleagues, customers, and passengers. We are trained to do this safely and trusted to do the right thing in any given situation.

"Win as a Team" highlights the importance of teamwork. Either we win as a team, or we fall as individuals. Together, we can surpass ourselves and handle any situation.

These values capture the essence of who we are and our unwavering commitment to excellence, and give actionable guidance for individual behaviour of employees, leaders, and executives, serving as a compass for how to act and deliver.

Job Summary

Work closely with the Security Operations Centre (SOC) to detect, investigate, and address insecure features and malicious activity across Swissport’s networks and infrastructure. Run security controls such as email security gateway and vulnerability management systems. As well as contributing to user awareness and training throughout Swissport.

Job Responsibilities:

• Monitoring, investigating, and responding to security alerts, including those from the SOC, SIEM, and EDR platforms.
• Managing and fine-tunning email security gateways, reviewing quarantined messages and adjusting rules to reduce false positives.
• Supporting the organisation’s vulnerability management process, from detection through to tracking remediation.
• Assisting with cyber risk assessments for new software and services.
• Conducting phishing simulations and analyse results to improve user awareness.
• Coordinating and supporting user security awareness initiatives, including training campaigns and compliance follow-ups.
• Reviewing and managing web access requests to ensure appropriate filtering and compliance.
• Helping ensure logging coverage and data integrity for the SIEM by verifying that key systems are forwarding logs.
• Assisting in investigations involving potentially compromised accounts or endpoint devices.
• Contributing to documentation and process development for consistent, repeatable security operations.
• Working closely with other teams to identify and suggest improvements to tools, processes, or controls.

Qualifications and Competencies:

• 2–3 years of hands-on experience in cybersecurity or IT roles involving security operations, system/network monitoring, or incident response.
• Familiarity with core information security concepts, such as email security, endpoint detection and response, vulnerability management, and SIEM.
• Understanding of at least one information security framework (e.g., ISO 27001, NIST) and general awareness of regulations such as GDPR.
• Strong communication skills, with the ability to explain technical risks to non-technical users.
• Enthusiastic, proactive team player with a continuous improvement mindset.
• Ability to take initiative, work independently on routine tasks, and escalate when needed.
• Comfortable working in a fast-paced, operational environment with shifting priorities.
• Willingness to learn and develop new skills in line with evolving threats and technologies.
• A relevant qualification or certification (e.g., CompTIA Security+, Microsoft SC-900, or equivalent) is desirable but not essential.
• Experience in a regulated or high-availability environment (e.g., aviation, critical national infrastructure) is a plus.