Menzies Aviation is an independent, time-critical logistics specialist serving the airline industry. At more than 200 locations in 37 countries, Menzies Aviation offers landside and airside services tailored to customers’ needs; timed to their schedules; and delivered by teams with the knowledge, tools and passion to set standards rather than chase them.

The position will exist within the Information Technology team.  Cyber Security is growing in importance to Menzies Aviation and all aspects of the Aviation industry, particularly our customers. This post is an exciting role, supporting the Chief Information Security Officer with responsibilities for the translation of IT-risk requirements into technical controls, systems requirements and specifications, as well as the development of metrics for ongoing performance measurement and reporting against an Information Management Security System.


Main Responsibilities Include:

  • Working with the Chief Information Security Officer to develop a security programme that addresses identified risks and business information security requirements.
  • Performing risk, business impact, control and vulnerability assessments and define treatment strategies.
  • Working with business and IT stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security programme.
  • Consulting with IT and system owners to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software.
  • Monitoring and reporting on compliance with security policies, as well as the enforcement of policies within the IT department.
  • Managing the process of gathering, analysing and assessing the current and future information security threat landscape.
  • Managing and coordinating the operational components of incident management, including detection, response and reporting.
  • Participating in the IT Change Advisory Board and Supplier Operations Boards.
  • Managing third party compliance with contracted information security requirements.
  • Supporting responses to customer bids, RFQ’s and subsequent clarifications.


Key Skills, Qualifications and Experience:

  • Undergraduate Degree in an IT or cyber security discipline.
  • Knowledge of common information security management frameworks, such as International Standards Organization (ISO) 27001, the IT Infrastructure Library (ITIL) or the National Institute of Standards and Technology Cybersecurity Framework.
  • Understanding of networks, systems and applications.
  • Familiarity with the principles of cryptography.
  • Knowledge of security testing.
  • Experience of working and learning within a fast-moving, changeable environment with new technology/services/infrastructure/priorities and working practices (processes).
  • Excellent organisational, planning and administrative skills and a good eye for detail.
  • Highly analytical with the ability to influence, challenge and implement change.
  • Experience of dealing with work of a confidential and sensitive nature.


Professional Standards:

  • High level of integrity
  • Passionate, driven and strong work ethic
  • Clear and honest communication
  • Flexible and understanding of changing business needs and priorities
  • Confident and focused
  • Broad understanding of Service Desk measurement and the ability to translate into an action plan and analyst target


Close map
Edinburgh - HQ
2 Lochside Avenue, Edinburgh Park, Edinburgh, United Kingdom, EH12 9DJ
  • Salary:
    Commensurate with skills and experience
  • Location:
    Edinburgh - HQ
  • Region:
  • Function:
  • Vacancy Type:
    Full-Time Permanent
  • Hours Per Week: