Cyber Security Analyst, Aviation Security

Together, we’re working to welcome millions more passengers, while ensuring aviation can continue to be a force for good by leading global efforts in sustainability. At Heathrow, you can be part of this – providing solutions that make every journey better for millions each year. That means ensuring we meet the changing needs of the passengers, colleagues and partners who use our airport to work, travel, trade, shop, eat, explore and connect.

Our Solutions team covers project management, process improvement, business change, technology, cyber defence, master planning, infrastructure and procurement. It brings together people with the skills to deliver prestigious and often large‑scale projects, from transforming terminals to making big reductions in our carbon emissions.

The Cyber Security Analyst, Aviation will undertake analysis and evaluations to protect Heathrow and critical aviation infrastructure. You will contribute to the resilience and security of aviation systems, ensuring the organisation adheres to the highest standards of aviation cyber security. You’ll also be responsible for helping to build our Cyber Threat Intelligence (CTI) capability by proactively identifying and tracking cyber threats targeting the organisation and by building relationships with external stakeholders across the UK Critical National Infrastructure threat intelligence community.

• Assess, monitor, and enhance the resilience of aviation security systems to ensure they meet security requirements including regulatory obligations and compliance standards.
• Ensure the physical and cyber security of critical computer rooms, data centres, and related infrastructure within the aviation environment.

• Build and maintain strong working relationships with internal stakeholders, external aviation authorities, and regulatory bodies to ensure alignment on security best practices and standards.
• Act as a point of contact for any queries or concerns related to aviation cyber security.
• Play an active and collaborative role in building cyber security resilience at Heathrow by working with internal and external stakeholders as part of a CNI threat intelligence community.

• Champion "Secure by Design" principles across the organisation to ensure that security is integrated at all stages of system development and implementation.
• Provide expertise to cross‑functional teams on implementing security solutions that are scalable, sustainable, and compliant with aviation security standards.

• Proactively seek out and identify, track and report cyber threats and campaigns targeting the organisation using multiple intelligence sources, including OSINT, commercial feeds and industry sharing groups.
• Conduct threat actor profiling and report on attacker motivations, tooling and behaviours.

• Aviation Cyber Security Knowledge:
  Understanding of aviation security systems, regulatory requirements, and industry standards.
• Cyber Threat Intelligence: A strong understanding of CTI concepts, the cyber security landscape and threat actors, and a proven ability to proactively identify and report cyber threats using multiple intelligence sources.
• OSINT:
  Ability to conduct open‑source cyber security and CTI research.
• Analytical mindset:
  The ability to identify patterns, trends and emerging threats in large datasets.
• Stakeholder Management:
  Ability to effectively communicate and work with internal teams, external vendors, and regulatory bodies.
• Technical Proficiency:
  An understanding of cyber security principles, risk management frameworks, and security technologies.

• Experience with ISO 27001 or other security management frameworks.
• Familiarity with aviation security regulations such as EU/UK/EASA aviation security frameworks or ICAO.
• Experience working in an operational security environment would be beneficial.
• Project Management:
  Experience working within cross‑functional projects focused on cyber security improvements.
• Certifications within the Cyber field such as CISSP, CISM would be a bonus.

We offer…