Enable Cookies to Save Jobs
We use cookies to improve your experience on our website. Please enable functional cookies to allow saving of jobs.
Click here to Update cookie settings
Want to know more about how we use cookies? Click here
Head of – Information and Cyber Security
Location: Hybrid – 3 days per week at VHQ, Crawley
Hours: 37.5 per week, Monday to Friday
Contract: 12 month secondment
Salary: Competitive
Closing Date: 26th September 2025
At Virgin Atlantic, our mission has always been about creating thoughtful experiences that feel brilliantly different – in the air, on the ground, and behind the scenes. Protecting our people, our customers, and our data is central to that mission. That’s where you come in.
We’re looking for a Head of Information & Cyber Security to lead our security strategy at a truly pivotal time. As we complete our flagship transformation programme, VelocityX, and move into the next phase of our strategy – Vx30 – we’re investing heavily in next-generation security capabilities, identity management, and advanced tooling. This is your opportunity to set the vision, lead talented teams, and ensure Virgin Atlantic remains resilient and trusted in an ever-changing threat landscape. Reporting to the VP of Technology & Transformation, you’ll play a critical role in shaping how we safeguard our future.
- Lead and inspire the Information & Cyber Security function, setting strategy and direction aligned to our business goals
- Design, deliver, and continually enhance security controls that enable the safe and responsible use of information
- Oversee governance, risk, and compliance activities – ensuring we meet and exceed standards such as PCI-DSS, CAP1753, NIS2, and emerging AI regulations
- Drive our enterprise Identity & Access Management (IAM) strategy, embedding Zero Trust principles and modern authentication practices
- Champion secure-by-design principles across technical architecture, projects, and critical systems
- Oversee security operations, engineering, and the establishment of a 24/7 Security Operations Centre, ensuring rapid detection and response
- Lead threat management, including assurance testing, incident response, and red-teaming
- Partner with leaders across Virgin Atlantic to promote awareness, education, and a culture of cyber resilience
- Manage budgets, oversee cyber insurance, and ensure continuous innovation in our security approach
- A proven cyber security leader with demonstrable experience in information security strategy, governance, and incident response
- Strong knowledge of regulatory and compliance frameworks (PCI-DSS, ISO27001, COBIT, NIS2, EU Privacy Legislation, and related standards)
- Hold professional certifications such as CRISC, CISA, or CISM (or equivalent)
- Experienced in IAM, technical architecture, and security operations at scale
- Adept at communicating complex risks and strategies to technical and non-technical audiences, including executive leadership
- Calm and decisive under pressure, with the ability to prioritise and act quickly during critical incidents
- Naturally collaborative, able to influence across diverse teams and external stakeholders
- Passionate about innovation and continuous improvement, always seeking new ways to strengthen resilience
- Organised, detail-oriented, and able to balance strategic leadership with operational accountability
At Virgin Atlantic, diversity and inclusion are part of our DNA. We’re proud to be an equal opportunity employer, welcoming individuals from all backgrounds and experiences. If you need adjustments during the recruitment process, reach out to us at [email protected]—we’re here to support you every step of the way.
At Virgin Atlantic, our leaders empower teams to thrive through collaboration, innovation, and excellence. Explore our Leadership Recipe and discover the 20 core ingredients that define what it means to lead with us, driving our mission to be the most loved travel company and achieve sustainable profit. Want to learn more? Click here