Luton/Hybrid Company When it comes to innovation and achievement there are few organisations with a better track record. Join us and you’ll be able to play a big part in the success of our highly successful, fast-paced business that opens up Europe so people can exercise their get-up-and-go. With over 300 aircraft flying over 800 routes to more than 30 countries, we’re the UK’s largest airline, the second largest in Europe and the tenth largest in the world. Flying over 80 million passengers a year, we employ over 13,000 people. Its big-scale stuff and we’re still growing. TEAM The role situated in a team of cyber security professionals and working closely with the wider business to ensure that the principles of Digital Safety are as engrained as Aircraft Safety and that cyber security compliance is maintain in line with applicable legislation. The role requires working closely with the Cyber Security Compliance Manager, Cyber Security Compliance Officers, Cyber Security Risk and Assurance team, Cyber Security Vulnerability Management team, Cyber Security Engineers and Cyber Security Business Partner functions to support easyJet Cyber Security vision Job Purpose The Cyber Security Compliance Analyst is responsible for monitoring the compliance of easyJet against our internal policies and external requirements such as NIS Directive (CAA CAF) and PCI DSS. This will allow easyJet to track compliance on a continuous basis and ensure that all mandatory compliance reporting is met. Additionally, the specialist is responsible for reporting against internal compliance objectives, polices and standards. This role requires collaboration with various business areas to ensure their understand and comply with regulatory requirements. The Cyber Security Compliance Analyst supports the Digital Safety Assurance team’s objectives and assists in shedding light on key areas pertaining to our regulatory compliance and control maturity Job Accountabilities Monitor activities aligned with the compliance calendar for PCI DSS and aviation regulations, including managing Attestation of Compliance from partners, overseeing internal and external scan reports, penetration testing reports, and coordinating remedial actions. Overseeing our annual audit and conduct regular mock audits to ensure compliance with PCI DSS standard. Gather evidence from the control owners and information asset registers to compile internal compliance reports. Oversee the tracking, management, and reporting of control adherence, and identify and report any compliance gaps. Update and maintain compliance reporting metrics. Prepare documentation and materials for both internal and external auditors. Provide subject matter expertise for projects affecting easyJet's compliance, ensuring regulatory requirements are met. Develop materials to support compliance efforts for our regulators. Provide education and guidance to colleagues outside of easyJet Cyber Security Compliance team on the airline compliance obligations fostering a companywide understanding of compliance landscape. Key Skills & Behaviours Required Has sufficient communication skills for effective dialogue with customers, suppliers and partners. Is able to work in a team. Is able to plan, schedule and monitor own work within short time horizons. Demonstrates a rational and organised approach to work. Understands and uses appropriate methods, tools and applications. Identifies and negotiates own development opportunities. Analytical mind-set. Motivation to develop and maintain subject matter expertise. Enthusiastic, pro-active and positive attitude. Ability to work to deadlines, prioritise and multi-task. Ability to manage own workload and meeting schedule. Can clearly write and articulate messages to management and senior management. Ability to adapt to different situations and can work autonomously. Ideal Qualifications PCIP or other technical security qualification Knowledge of risk management tools is desirable (e.g. Riskonnect) Desirable Skills/Experience Ideally previous work in a cyber / information security compliance role that has required a general broad understanding of controls. However, business experience gained in a similar role combined with relevant information security / cyber security education would also be appropriate. Experience in a similar information security role or other business roles where risk management formed part of the role’s responsibilities What You’ll Get In Return Competitive base salary Up to 20% bonus 25 days holiday BAYE, SAYE & Performance share schemes 7% pension Life Insurance Work Away Scheme Flexible benefits package Excellent staff travel benefits About EasyJet At easyJet our aim is to make low-cost travel easy – connecting people to what they value using Europe’s best airline network, great value fares, and friendly service. It takes a real team effort to carry over 90 million passengers a year across 35 countries. Whether you’re working as part of our front-line operations or in our corporate functions, you’ll find people that are positive, inclusive, ready to take on a challenge, and that have your back. We call that our ‘Orange Spirit’, and we hope you’ll share that too. Apply Complete your application on our careers site. We encourage individuality, empower our people to seize the initiative, and never stop learning. We see people first and foremost for their performance and potential and we are committed to building a diverse and inclusive organisation that supports the needs of all. As such we will make reasonable adjustments at interview through to employment for our candidates. Business Area Legal Primary Location United Kingdom-London-London Luton Airport Organisation Legal Schedule Full-time Unposting Date Ongoing