OVERVIEW

People. Passion. Pride. This is what has driven our teams since 1833.
Since that time, we have developed to become a critical partner in the global aviation industry, delivering time-critical logistics services at over 340 locations in 65 countries, across 6 continents.
But at the heart of our business is our people.

SAFETY, SECURITY, WELLBEING AND COMPLIANCE:

You will have a responsibility and duty whilst at work to take reasonable care of the health, safety and wellbeing of yourself and others in accordance with provided information, training, and workplace health and safety rules or procedures. The company is committed to providing a safe working environment for all staff members. In all areas of our business there is a potential risk to the health, safety and welfare to everyone on our sites through the misuse of alcohol and drugs. As such the Company prohibits such misuse and carries out regular testing to enforce our Substance Misuse Policy.
Please see the attached job description for further details on safety, security, wellbeing & compliance.

ROLE PURPOSE

This role has the responsibility to deliver continuous improvement of cyber security controls globally. It involves working with team members around the globe to implementing controls to comply with policies, standards, contractual and regulatory obligations.

WHAT YOU WILL BE DOING

• Continuous improvement of Menzies overall operational cyber security posture by:
• Oversight of the Vulnerability Management Programme. Liaising with suppliers and managing the service, reporting on the effectiveness and managing change as required to deliver on objectives.
• Scoping and managing the annual external testing of cyber security controls. Report the findings to the relevant stakeholders and manage the mitigation actions.
• Leading the Security Operations Analysts to manage the security operations, ensuring events and incidents are responded to effectively and opportunities for improvement are identified and actioned.
• Manage and prioritise cyber threat intelligence and work with IT teams and system owners to mitigate emerging vulnerabilities.
• Ensure the relevant training and communications teams to promote a Cyber Aware culture within the business based on current Threat Intelligence.
• Monitor and advise on the cyber controls of third-party suppliers.
• Maintain and develop cyber governance by:
• Understanding contractual and regulatory cyber compliance requirements and designing the appropriate controls.
• Performing risk assessments for new systems, processes, projects, integration and updating risk register to manage identified remediation plans.
• Other responsibilities include:
• Working with business and IT stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security programme.
• Consulting with IT and system owners to ensure that their cyber security requirements are factored into the evaluation, selection, installation and configuration of hardware, applications and software. Identifying areas for potential improvement.
• Monitoring and reporting on compliance with security policies, as well as the enforcement of policies within the IT department.
• Supporting responses to customer bids, RFQ’s and subsequent clarifications.
• Managing the configuration for key security tools such as EDR, ID Protection, Cloud Apps, DNS Security and Email.
  Would you like to see more detail on the accountabilities of the role? Please see the attached job description for further information