Senior Security Engineer (AWS)

Who we are 🩵

We’re the people behind the global loyalty currency, Avios, and home to three ambitious, growing businesses; IAG Loyalty, British Airways Holidays and The Wine Flyer. Each business has its own goals and strategy, but collectively we create brilliant experiences for our global customers.

We’re on a truly exciting journey of growth and transformation – we’re going places! This is where you come in.

The Opportunity ✨

IAG Loyalty is fast becoming a Platform as a Service business. As a result, we are looking for a highly capable individual to join our security team. The candidate will have a strong technical background and experience in implementing best practice security controls within cloud and DevOps. They will be comfortable working in a cloud‑native environment where high rates of technology change are the norm. We are looking for someone who can lead the delivery of a number of our security engineering objectives, be responsible for the effective operation of the tools that help keep our organisation secure and manage a small team of security engineer.

This role is based out of our London office. We call our approach to hybrid working The Blend — it’s about giving you the flexibility to choose where you do your best work, while staying connected with your team and the wider business. This means you will be required to spend at least two days per week in the office, with the rest of the time working from home. You may also be required to work from one of our other office or partner locations, based on your role and 'to do' list.

What you’ll be doing 🌠

You will lead the Platform Security practice within our security team, driving key initiatives to enhance the security of our cloud platform and software development lifecycle. This involves coordinating and contributing to continuous security improvements, developing secure‑by‑default patterns for engineering teams, and maintaining critical security tools such as CSPM and CNAPP.

In addition, you’ll write scripts and build automation tools to streamline security activities, work cross‑functionally to ensure effective monitoring and incident response, and collaborate closely with product teams to provide guidance and encourage adoption of security best practices. You’ll also take part in an on‑call rotation to support timely and effective incident response when needed.

What we’re looking for 💡

• Cloud engineering experience with security tooling and cloud workload protection
• Skilled in DevOps, AWS, Infrastructure as Code (Terraform), and scripting (Python, Bash)
• Knowledge of secure engineering standards (OWASP, CIS, NIST) and Agile/DevOps practices
• Experienced with CSPM, CNAPP, security incident response, and SIEM tools
• Ability to evaluate and recommend new security technologies
• Clear communicator focused on enhancing developer experience
• Calm, evidence‑based decision‑making under pressure
• Entrepreneurial, goal‑oriented, and innovative
• Comfortable sharing best practices across the organisation

• You only want to focus on your to‑do list; we’re a small, high‑performing team, we help each other to succeed.
• You value perfection over fast iteration and progress; IAG Loyalty moves fast, we learn and iterate as we go; our environment isn’t right for everyone.
• You’re looking to create but not build; this is an end‑to‑end role, you need to be comfortable owning your space, from ideation through to delivery and review.

If you think you have what it takes but don’t meet every single point above, please do still apply. We’d love to chat and see if you could be a great fit.

Equity, Diversity and Inclusion at IAG Loyalty

Our vision, 'to create the world's most rewarding experiences,' applies not only to our customers but for our colleagues too. It's about taking belonging seriously, actively fostering a culture where everyone feels welcomed and valued by embracing diverse identities, personal histories, and perspectives.

This commitment makes IAG Loyalty a rewarding place to work and enhances our ability to solve complex problems, drive innovation, and better serve our customers and communities.

Please let us know if we can make any reasonable adjustments to support your interview process with us.