Cyber Risk and Assurance Specialist

Job Description - Cyber Risk and Assurance Specialist (17047)

Job Description

Cyber Risk and Assurance Specialist ( 17047 )

Description

We are easyJet – a FTSE listed, £multi-billion low-cost airline that serves tens of millions of customers every single year. If you’re reading this, you have probably already been an easyJet customer, and you’ll know that there is no more iconic (or Orange!) travel brand in Europe.

We fly more than 1,207 routes, connecting 38 countries across Europe, and employ more than 18,000 colleagues. We’re on a mission to make low-cost travel easy – and whatever your role here, you’ll connect millions of people to what they love using Europe’s best airline network, great value fares, and friendly service.

What makes us easyJet? Our Promise Behaviours - we are Safe, Bold, Welcoming and Challenging. Four Behaviours. One Spirit. One easyJet.

Join our Digital Safety team and help shape how cyber security risk is managed across one of Europe's leading airlines. This is an exciting opportunity to work at the heart of risk, assurance and governance, partnering with teams across the business to strengthen our digital resilience and support safe, secure operations for millions of customers.

READ ON IF YOU

• Have experience in cyber security, information security, risk management or assurance.
• Enjoy working across technical and business teams to solve complex challenges.
• Are confident analysing risk information and presenting insights that support decision making.
• Thrive in a collaborative environment where you can influence positive outcomes and drive continuous improvement.

THE TEAM

You’ll be part of a team of cyber security professionals focused on making Digital Safety as integral to easyJet as Aircraft Safety. Working closely with Operational, Commercial, Regulatory and Audit teams, you’ll support the delivery of our Digital Safety vision and help ensure strong governance, risk management and assurance practices across the organisation.

THE ROLE

As a Digital Safety Risk and Assurance Specialist, you’ll play a key role in operating and developing our cyber risk management framework. You’ll work with a wide range of stakeholders to identify, assess and communicate cyber security risks, enabling informed decision making across the business.

Key responsibilities include:

• Operating the Digital Safety risk framework to assess, record and monitor cyber risks across easyJet.
• Partnering with technical and business teams to capture and evaluate risk information.
• Managing supplier assurance activities to identify and understand supply chain risk.
• Supporting regulatory compliance by identifying and escalating potential gaps and working with relevant teams to address them.
• Contributing to data governance activities and helping to drive improvements.
• Collaborating with IT Quality and Risk teams to maintain alignment across risk management activities.
• Presenting findings and recommendations to relevant governance and risk forums.
• Providing guidance, training and support on risk methodologies to colleagues across the business.
• Maintaining risk registers for information assets and risk exceptions.
• Developing and maintaining bow-tie risk models and supporting control effectiveness assessments.
• Supporting quantitative risk analysis, including statistical modelling techniques such as Monte Carlo analysis.
• Monitoring the cyber threat landscape and assessing its impact on organisational risk.

Requirements of the Role

WHAT WE'RE LOOKING FOR

• Experience in a cyber security, information security, risk management or similar role.
• Strong analytical skills with the ability to assess, interpret and communicate risk information effectively.
• Experience working with a range of stakeholders across both technical and non-technical functions.
• Ability to manage multiple priorities and work confidently with complex and sometimes non-routine challenges.
• Excellent communication and presentation skills.
• A collaborative approach with a focus on continuous improvement and knowledge sharing.
• Understanding of cyber security risk frameworks, governance and assurance principles.
• Awareness of regulatory compliance, supplier risk and data governance concepts.
• CRISC or equivalent risk management qualification.
• CISSP, CompTIA Security+ or another relevant cyber security certification.
• Information Security or industry-relevant qualifications.

WHAT YOU'LL GET IN RETURN

• The opportunity to make a meaningful impact within one of Europe's leading airlines.
• Exposure to a broad range of cyber security, risk and assurance activities.
• A collaborative and supportive team environment.
• Ongoing learning and development opportunities.
• Competitive reward and benefits package.

PRACTICALITIES

This is a full-time position. We support hybrid working and spend time together as a team in our Luton HQ offices.

REASONABLE ADJUSTMENTS

At easyJet, we are dedicated to fostering an inclusive workplace that reflects the diverse customers we serve across Europe. We welcome candidates from all backgrounds. If you require specific adjustments or support during the application or recruitment process, such as extra time for assessments or accessible interview locations, please contact us at ma.recruitment@easyjet.com. We are committed to providing reasonable adjustments throughout the recruitment process to ensure accessibility and accommodation.

Business Area

Legal