Chief Information and Security Officer (CISO)
Republic of Ireland, Dublin, Dublin
ā ļø We'll shut down after Aug 1st - try fooš¦ for all jobs in tech ā ļø
Aer Lingus
General information
Vacancy Reference number
004776Ā ĀAbout us
At Aer Lingus, we believe in going above and beyond to connect people, places and possibilities. Whether working at the airport, in our offices or at home - every employee has a role to play in making Aer Lingus the heart of travel to, through and beyond Ireland for generations to come.
How do we do this? We Put Safety First. There's nothing more important. We Are Customer Focused. We champion the customer and go above and beyond to get things just right for them. We're Stronger Together. With a āhow can I help?' attitude, we communicate and collaborate to achieve shared success. We Own It. We do what we say we're going to do and always follow through. We Look Forward. We build the future by embracing change today.
What we offer
As well as offering you a competitive salary and staff travel benefits (with Aer Lingus and many other international airlines), you will also have the opportunity to work in a dynamic and collaborative environment and to join a team of amazing professionals who are passionate about the aviation industry. To learn more about the exciting benefits and opportunities that await you at Aer Lingus please visit our website.
Vacancy details
Role title
Chief Information and Security Officer (CISO)
Your role
As Chief Information Security Officer (CISO), you will play a pivotal leadership role in protecting Aer Lingusās digital infrastructure, customer data, and operational systems. You will lead and evolve a resilient, risk-informed cyber security strategy that supports Aer Lingusās digital transformation and aligns with International Airlines Group (IAG) initiatives.
Ā
This senior role, reporting into the Chief Digital and Transformation Officer (CDTO) requires both visionary thinking and hands-on leadership. You will oversee enterprise-wide cyber security operations, direct incident response, and foster a strong security culture across the organisation. Your leadership will ensure regulatory compliance, protect critical assets, and embed cyber resilience into Aer Lingusās digital future.
Ā
Your key responsibilities will include:
- Advance and execute Aer Lingusās enterprise-wide cyber security strategy and multi-year roadmap, aligned with business goals and IAGās cyber objectives.
- Continuously refine the strategy to address evolving threats and technologies, enabling secure digital transformation.
- Establish strong cyber governance by chairing a cross-functional Cyber Security Steering Group and maintaining the Information Security Risk Register.
- Regularly report on cyber risk posture to the executive team and Board, and represent Aer Lingus in IAG cyber governance forums.
- Maintain and enforce security policies, standards, and procedures aligned with NIS2, ISO 27001, GDPR, and industry best practices.
- Oversee implementation of security controls across IT infrastructure, cloud platforms, and applicationsāincluding IAM, encryption, and secure development practices.
- Lead a proactive vulnerability management programme with continuous scanning, testing, and reporting.
- Direct Aer Lingusās cyber incident response, serving as incident commander during critical events. Ensure readiness and execution of the Cyber Incident Response Plan (CIRP), integrated with business continuity and crisis management.
- Ensure compliance with all cyber security and data protection regulations.
- Lead the delivery of key cyber initiatives to strengthen Aer Lingusās defences.
- Ensure rigorous security oversight of third-party vendors and partners.
- Evolve, inspire, and empower a high-performing cyber security team. Define team structure across security operations, GRC, engineering, and identity management.
- Establish and track KPIs and KRIs to measure the effectiveness of the cyber security programme.
Ā
Your qualifications and key criteria
- Bachelorās degree in Computer Science, Information Security, Information Systems, or a related field.
- 10+ years of relevant experience, including 5+ years in senior leadership, ideally in a regulated or critical infrastructure environment.
- Proven experience building and maturing security programmes, leading teams, and managing cross-functional initiatives.
- Demonstrated success in managing major security incidents and implementing effective remediation.
- Deep knowledge of NIS2, GDPR, ISO/IEC 27001, ISO 27002, and related frameworks.
- Strong leadership, communication, and stakeholder management skills.
- Ability to translate complex cyber risks into clear, actionable insights for executive and board-level audiences.
- Professional certifications such as CISSP, CISM, CISA, CRISC, or CCSP are highly desirable.
Division / Department
Digital & Information - Data
Contract type
employee recruitment - permanent
Job location
Job location
Republic of Ireland, Dublin, Dublin
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index š°
Tags: CCSP CISA CISM CISO CISSP Cloud Compliance Computer Science CRISC Encryption GDPR Governance IAM Incident response ISO 27001 ISO 27002 IT infrastructure KPIs NIS2 Security strategy Strategy Vulnerability management
Perks/benefits: Career development Competitive pay Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.