We are easyJet – a FTSE listed, £multi-billion low-cost airline that serves tens of millions of customers every single year. If you’re reading this, you have probably already been an easyJet customer, and you’ll know that there is no more iconic (or Orange!) travel brand in Europe.
We fly more than 1,207 routes, connecting 38 countries across Europe, and employ more than 18,000 colleagues. We’re on a mission to make low-cost travel easy – and whatever your role here, you’ll connect millions of people to what they love using Europe’s best airline network, great value fares, and friendly service.
What makes us easyJet? Our Promise Behaviours - we are Safe, Bold, Welcoming and Challenging. Four Behaviours. One Spirit. One easyJet.
READ ON IF YOU
Have experience in cybersecurity engineering, automation or DevSecOps
Enjoy building scalable solutions and improving security through automation
Thrive in a fast-paced, collaborative environment
Are excited by the opportunity to work across threat intelligence, exposure management and security engineering
Want to help shape and evolve modern cybersecurity capabilities
THE TEAM
You’ll lead the engineering capability within easyJet’s Cyber Threat Exposure Management (CTEM) function, supporting Attack Surface Management, Cyber Threat Intelligence and Advanced Threat Protection teams through automation, integrations and engineering enablement.
The team is focused on improving visibility, scalability and response across easyJet’s cybersecurity landscape, helping drive measurable exposure reduction through practical, innovative engineering solutions.
THE ROLE
As CTEM Engineering Lead, you’ll build and run the engineering foundations that allow Cyber Threat Exposure Management to scale effectively across the organisation.
You’ll transform CTEM outputs into repeatable workflows, improving speed, visibility and consistency through automation and integrations. From detection and prioritisation through to ticketing, tracking and revalidation, you’ll help create streamlined and resilient security processes that support the wider business.
You’ll also play a key role in identifying where AI-assisted automation can add value in a governed and practical way.
Key responsibilities include:
Leading the design, build and maintenance of automation pipelines across ASM, CTI and ATP
Converting CTEM activities into scalable and repeatable workflows
Integrating CTEM data sources with SIEM, CNAPP, vulnerability management and ticketing platforms
Building reliable data pipelines across multiple systems while maintaining data quality and resilience
Owning and managing the Threat Intelligence Platform, including integrations, enrichment workflows and platform reliability
Developing dashboards and reporting to provide clear visibility into threats, exposures and remediation progress
Supporting breach and attack simulation tooling and integrations to validate detection and response capability
Collaborating with CTEM leadership, Security Architecture and engineering teams to deliver secure-by-design solutions
Driving continuous improvement across tooling, automation and operational processes
Mentoring colleagues across CTEM and promoting knowledge sharing and capability uplift
Requirements of the Role
WHAT WE’RE LOOKING FOR
Proven experience in cybersecurity engineering, automation or DevSecOps environments
Strong scripting and automation skills using tools such as Python, PowerShell or Bash
Experience integrating APIs and building resilient data pipelines across multiple systems
Knowledge of security tooling including TIPs, SIEM/SOAR, CNAPP and vulnerability management platforms
Familiarity with cloud-native security tooling such as Azure Defender, AWS Security Hub or GCP SCC
Understanding of CTEM disciplines including threat intelligence, attack surface management and detection and response concepts
Practical understanding of AI-assisted automation and governance considerations
Strong communication and stakeholder management skills with the ability to explain technical concepts clearly
Experience working with secure development practices and architectural governance
Ability to manage multiple priorities independently within a fast-moving environment
Desirable experience includes:
Mentoring or coaching experience within technical teams
Knowledge of breach and attack simulation tooling
Experience driving continuous improvement and onboarding new technologies
WHAT YOU’LL GET IN RETURN
Up to 20% bonus
25 days holiday
BAYE, SAYE and Performance Share schemes
7% pension
Life assurance
Flexible benefits package
Flexible working available
Excellent staff travel benefits
PRACTICALITIES
This is a full-time position. We support hybrid working and spend time together as a team in our Luton HQ offices.
REASONABLE ADJUSTMENTS
At easyJet, we are dedicated to fostering an inclusive workplace that reflects the diverse customers we serve across Europe. We welcome candidates from all backgrounds. If you require specific adjustments or support during the application or recruitment process, such as extra time for assessments or accessible interview locations, please contact us at [email protected]. We are committed to providing reasonable adjustments throughout the recruitment process to ensure accessibility and accommodation.
#LI-CH1 #LI-HYBRID
