Information Security Manager

At ZeroAvia, we're revolutionising aviation and securing the future of clean flight. We pioneer hydrogen-electric propulsion systems that will transform commercial aviation. We seek a visionary Information Security Manager to protect our technology, intellectual property, and operational infrastructure, shaping cybersecurity strategy at the forefront of sustainable aviation while safeguarding systems that will decarbonise the skies. Join us in building robust security frameworks that will enable ZeroAvia to achieve certification, scale operations, and maintain the trust of aviation authorities, partners, and passengers as we deliver zero-emission flight solutions. We are seeking an experienced Information Security Manager to lead our comprehensive information security programme across our UK operations. In this critical role, you will develop and implement security strategies that protect ZeroAvia\'s hydrogen-electric propulsion technologies, certification data, and operational systems while ensuring compliance with aviation cybersecurity regulations including EASA EAR Part-IS, CAA requirements, and emerging aviation security standards. This position requires deep expertise in cybersecurity frameworks, aviation security requirements, and the ability to balance innovation with robust risk management in our fast-paced, cutting-edge environment.

• Minimum 8 years of information security experience, with at least 3 years in aerospace, aviation, or highly regulated industries
• Proven experience implementing and managing ISMS frameworks, preferably ISO 27001 certification
• Deep understanding of aviation cybersecurity regulations, including EASA requirements, CAA frameworks, or similar aviation security standards
• Experience with industrial control systems security, particularly in safety-critical environments
• Demonstrated expertise in cybersecurity risk assessment and management methodologies specific to engineering and manufacturing environments

• Strong knowledge of cybersecurity frameworks (NIST, ISO 27001, aviation-specific standards)
• Experience with security architecture design for complex technical systems
• Understanding of aviation safety management systems and their integration with cybersecurity programmes
• Familiarity with certification processes and regulatory compliance in aerospace or similar sectors
• Knowledge of threat detection, incident response, and security monitoring technologies

• Proven ability to lead security programmes in fast-paced, innovative technology companies
• Excellent stakeholder management skills, with ability to influence at all organisational levels
• Strong communication skills for presenting security strategies to technical and executive audiences
• Experience building security teams and developing cybersecurity culture within engineering organisations

• Professional certifications such as CISSP, CISM, ISO 27001 Lead Auditor, or aviation security qualifications
• Experience with hydrogen infrastructure, electric propulsion systems, or clean energy technologies
• Knowledge of aviation certification processes (FAA, EASA, CAA)
• Background in aerospace, defence, or other safety-critical industries
• Degree in Cybersecurity, Engineering, or related field

• Develop and execute ZeroAvia\'s comprehensive information security strategy, aligning with aviation safety and certification requirements
• Establish and maintain an Information Security Management System (ISMS) compliant with ISO 27001 and aviation-specific cybersecurity standards
• Lead cross-functional security initiatives across engineering, operations, and certification teams
• Provide security expertise to support ZeroAvia\'s certification programmes with FAA, CAA, and EASA

• Conduct comprehensive cybersecurity risk assessments specific to aviation systems and hydrogen-electric propulsion technologies
• Ensure compliance with EASA EAR Part-IS regulations and UK aviation cybersecurity requirements
• Implement security controls for critical aviation systems, including propulsion control systems, flight test data, and certification documentation
• Manage security aspects of supplier relationships and third-party integrations

• Design and implement security architectures for aviation systems, including industrial control systems and hydrogen infrastructure
• Establish security monitoring, threat detection, and incident response capabilities
• Oversee security measures for intellectual property protection, particularly around proprietary hydrogen-electric technologies
• Manage security requirements for certification and regulatory data integrity

• Build and lead a high-performing information security team aligned with ZeroAvia\'s mission
• Establish security awareness programmes and training for all staff, emphasising aviation-specific security requirements
• Develop security policies, procedures, and standards tailored to the aviation sector
• Collaborate with engineering teams to embed security by design principles in hydrogen-electric propulsion systems

At ZeroAvia, we are committed to supporting our people with a range of benefits. Private health and dental care provides access to services and support for you and your family. We also offer:

• Mental health support through trained Mental Health First Aiders, Employee Assistance Programmes and wellbeing resources
• Free lunch and healthy snacks to keep you fueled
• Sports, games and culture clubs to connect with fellow ZeroAvians

We also offer:

• Stock options to share in our success
• 5 hours of free flying lessons
• 25 days holiday, plus public holidays
• Free EV Charging and membership in our EV Club
• Salary Sacrifice Schemes for EV Club, Curry\'s Tech, Cycle to Work, and Ikea Furniture
• Weekly Spot Bonuses to reward excellence
• Income Protection and Legal Support for peace of mind
• Relocation Support to make your move seamless

As an emergent company shaping the aviation industry, we know that diversity fuels success and unlocks potential. We are an equal-opportunity employer and actively seek individuals from diverse backgrounds. We value the multitude of skills, perspectives, and mindsets everyone can bring to the table. We proudly reject discrimination in all forms, including based on race, religion, color, national origin, sex, gender expression, sexual orientation, age, marital status, veteran status, or disability status.