IAG Loyalty
Security Operations Manager

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Who We Are π
We're IAG Loyalty - one organisation creating more rewarding ways to travel. Home to Avios, the global loyalty currency, we help millions of members collect and spend rewards across travel, retail and financial services.
We're transforming our technology landscape, investing in modern platforms and strengthening our cyber security capability to support our ambitious growth plans. It's an exciting time to join us as we continue to build a resilient, secure and customer-focused business.
The opportunity β¨
We're looking for a Security Operations Manager to play a key role in developing and maturing our Security Operations capability.
Working at the heart of our Cyber Security team, you'll act as the bridge between Security Engineering and Security Operations across IAG Group and our operating companies. You'll combine technical expertise with operational leadership to improve monitoring, strengthen threat detection, optimise security tooling and lead the response to security incidents.
This is a hands-on role where you'll have genuine influence over how Security Operations evolves. You'll shape the roadmap, improve operational resilience and ensure our security capabilities continue to develop as our technology landscape grows.
If you're passionate about building better security operations, enjoy solving complex technical challenges and want to make a visible impact, we'd love to hear from you.
What You'll Be Doing π
You'll lead the continual improvement of our Security Operations capability, working closely with Security Engineering, technology teams and third-party partners to strengthen monitoring, detection and incident response across the business.
- Own the end-to-end incident management lifecycle, coordinating responses to security incidents, driving investigations, facilitating lessons learned and ensuring improvement actions are delivered.
- Configure and optimise SIEM, threat protection and case management platforms, developing new detection rules, alerts and automation to improve our ability to identify and respond to emerging threats.
- Build and maintain operational playbooks and runbooks, helping establish consistent ways of working across internal teams and managed service providers.
- Produce meaningful KPIs and reporting, using operational data to identify trends, improve service performance and demonstrate the effectiveness of our security controls.
Reasons to use Rodeo
Iβm in my final year doing Economics and I donβt know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer β it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) donβt need a masters. Letβs look at the ones youβd be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet β that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant β 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
Youβve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon β deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme β client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right β and where to focus when applying.
Working collaboratively across technology, engineering and business teams, you'll support security testing, assurance activities and resilience exercises, helping ensure our operational security capability continues to evolve in line with business priorities and regulatory expectations.
What We Need From You β‘
- Strong experience working within Security Operations, Cyber Defence or Incident Response in a complex enterprise environment
- Proven experience managing the end-to-end security incident management lifecycle
- Hands-on experience configuring and administering SIEM, threat protection, logging and case management platforms
- Experience developing threat detection use cases, alerts, dashboards and operational reporting
- Strong understanding of security monitoring, investigation, triage, containment, recovery and continuous improvement
- Experience developing operational playbooks, runbooks and standard operating procedures
- Experience working closely with Security Engineering teams to improve operational capabilities
- Ability to collaborate with suppliers, technology teams and stakeholders across the business
- Experience developing KPIs, operational reporting and service metrics
- Strong analytical and communication skills, with the ability to translate technical information for different audiences
- Good understanding of security governance, operational resilience and regulatory requirements


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Desirable
- Experience supporting Business Continuity and Disaster Recovery activities
- Experience working with outsourced Security Operations Centres or Managed Security Service Providers
- Familiarity with Microsoft Sentinel, Splunk, Microsoft Defender, CrowdStrike or similar enterprise security platforms
- Experience automating security operations using scripting or SOAR technologies
We might not be right for you if...
- You prefer working within a narrow technical specialism rather than owning security operations end-to-end.
- You enjoy maintaining existing processes more than improving and evolving them.
- You prefer working independently rather than collaborating across engineering, operations and business teams.
If you think you have what it takes but don't meet every single requirement, we'd still love to hear from you.
The Blend π
This role will work as part of our Loyalty Division and is based from our London office.
We call our approach to hybrid working The Blend β it's about giving you the flexibility to choose where you do your best work while staying connected with your team and the wider business.
You'll typically spend at least two days each week in the office, with the remainder working remotely. There may also be occasions where you'll work from other IAG or partner locations depending on business needs.
Diversity and Inclusion
Our vision is to create a more rewarding world of travel and experiences. Delivering that requires diverse thinking and inclusive leadership.
We are committed to building a workplace where people feel they belong and are valued for their perspective. Inclusion drives better decisions, stronger performance and more innovative outcomes.
We actively encourage applications from people with different experiences and backgrounds, and are committed to ensuring our recruitment process is fair, inclusive and accessible.
βIt took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what Iβve been looking for.β
Jessica, London
Skills
Location