Cyber Security Manager, Aviation Security

In this role, you’ll:

• Lead a team of skilled cybersecurity professionals to deliver robust protection across the airport estate.
• Drive the development and execution of cybersecurity strategy aligned with aviation security (AVSEC) standards and regulations.
• Partner with internal and external stakeholders to strengthen compliance and continually enhance our security posture.
• Champion innovation and best practice across all aspects of cybersecurity leadership and governance.

This is an exciting opportunity to influence cybersecurity in a high-impact environment where safety, resilience, and trust are paramount.

If you’re an experienced Cybersecurity leader with a passion for excellence and a drive to make a difference in a world-class aviation setting, we’d love to hear from you.

you’ll play a key leadership role in shaping Heathrow’s cyber resilience. You’ll manage and inspire a team of talented cybersecurity professionals, driving awareness, innovation, and strategic collaboration across the organisation and the wider aviation security community.

Your key responsibilities will include:

• Leading and mentoring a high-performing Cyber Security team to deliver impactful campaigns and initiatives that strengthen our security culture.
• Designing and implementing engaging phishing simulations, training modules, and behavioural change programmes that drive awareness and reduce risk.
• Collaborating with the wider Cyber Security function to identify key threat areas and tailor awareness efforts accordingly.
• Measuring and reporting on the success of campaigns, using data-driven insights to continuously improve engagement and effectiveness.
• Building strong partnerships across internal departments, industry stakeholders, and external partners to foster a unified, security-conscious culture.
• Staying ahead of the curve on emerging threats, trends, and best practices in cyber education and awareness.
• Representing Cyber Security in cross-functional meetings and contributing to long-term strategic planning.
• Providing expert consultancy on cybersecurity across systems and processes for both internal and external stakeholders.
• Developing trusted relationships with government bodies, industry partners, and suppliers to assess and respond to emerging threats.
• Representing Heathrow at national and international forums on cybersecurity policy, regulation, and technology development.
• Influencing policy and regulation to ensure Heathrow remains a leader in aviation cybersecurity.

• Operational experience in Cyber Security within complex or high-risk environments (aviation experience preferred).
• Proven ability to lead and manage successful teams, delivering measurable security outcomes.
• Strong understanding of Aviation Security (AVSEC) operations, regulations, and compliance requirements (CAA, DfT, ECAC).
• Hands-on experience in incident response, including threat-to-life scenarios and CSIRT design/improvement.
• Solid grasp of threat actors, risk assessment, and the broader threat landscape.
• Experience in security testing (penetration testing, red/blue/purple teaming).
• Familiarity with cybersecurity standards (ISO 27001, NIST, GDPR) and policy development.
• Strong leadership, communication, and stakeholder management skills – able to influence, mentor, and collaborate across teams.
• Confidence working with government agencies, regulators, and third-party partners.
• Knowledge of AI-based screening, IT/OT systems, and emerging AVSEC technologies.
• Understanding of secure software development lifecycle (SSDLC) principles.
• Ability to promote cybersecurity awareness and embed a positive security culture.
• Relevant qualifications in Cyber Security, IT, or related field (CISSP, CISM, SANS desirable).