Who we are 🌍
We’re IAG Loyalty - one organisation with two ambitious, growing divisions across Loyalty and Holidays. Each has its own goals, strategy and team, but together we’re united by a shared vision to create a more rewarding world of travel and experiences.
Our Loyalty division is home to Avios, the global loyalty currency, enabling millions of members to collect and spend rewards across travel, retail and financial services.
Our Holidays division including British Airways Holidays and Iberia Vacaciones, brings together trusted brands, connecting customers to thousands of destinations worldwide through seamless, end-to-end travel experiences.
We’re on an exciting journey of growth and transformation – we’re going places.
The Opportunity ✨
Our Network Engineering team is responsible for managing network technology–driven change and tackling technical debt, all guided by a cloud-first strategy. We work closely with product and development teams, providing the network foundations that enable growth and innovation across the business.
As part of the core engineering function, this is a hands-on operational role with a strong emphasis on network security and content delivery. We’re seeking a highly skilled Network Engineer with deep expertise in content delivery networks, Palo Alto technologies, AWS networking best practices, and LAN infrastructure automation.
This role brings together advanced network engineering, cloud security and edge performance optimisation to deliver secure, scalable and high-performing infrastructure across hybrid and multi-cloud environments.
What you’ll be doing 🚀
Working within the Tech Ops function of Core Engineering, you will support Product, Data, and AI-focused teams by ensuring cloud networking is well-architected and that guardrails are consistently applied.
A key part of the role is collaborating with cross-functional teams to align CDN solutions with business needs, maintain policies in line with industry trends, and provide ongoing recommendations for improvement. You will also lead the technical review and implementation of network-related IaC delivery across cloud and content delivery platforms.
You’ll contribute to the proactive development of network environments, working in line with business plans, technical architecture and long-term strategies to meet future requirements. This includes taking responsibility for network security, developing and maintaining policies and procedures that meet audit-driven requirements and adhere to industry standards such as ISO and SOC2.
The role also covers firewall security and NAT policy administration, LAN infrastructure maintenance and configuration, and the interpretation and implementation of firewall and LAN/WAN change. In addition, you will manage DNS platforms and ensure the effective ownership and processing of network operations tickets.
Overall, you will play a key part in delivering secure, scalable, and reliable network services that enable the business to operate and innovate with confidence.
What we need from you ⚡
You’ll be calm under pressure, confident engaging with stakeholders at all levels, and able to manage tight deadlines when restoring critical services. Strong communication, ITIL knowledge, and a collaborative mindset are essential. We’re looking for someone who embraces new technology and takes pride in delivering excellent service.
Occasional travel and hands-on support with IT equipment may be required.
Key skills & experience
AWS Networking & Security: VPC design, subnetting, routing, NAT, peering, plus Security Groups, NACLs, IAM and AWS WAF/Shield.
Content Delivery & Performance: Experience with Akamai, Alkami, CloudFront or similar CDN platforms.
Connectivity & Access: IPSEC and client VPN solutions, DNS and domain management, and Palo Alto Networks.
Infrastructure as Code: Terraform (including automation principles) and broader IaC practices.
Certificates & Monitoring: TLS/PKI lifecycle management, network monitoring, troubleshooting and optimisation.
Identity & Delivery: CI/CD tooling, SAML/IDP integration and Microsoft Entra.
We might not be right for you if:
You only want to focus on your to-do list; we’re a small, high-performing team, we help each other to succeed.
You value perfection over fast iteration and progress; IAG Loyalty moves fast, we learn and iterate as we go; our environment isn’t right for everyone.
You’re looking to create but not build; this is an end-to-end role, you need to be comfortable owning your space, from ideation through to delivery and review.
If you think you have what it takes but don't meet every single point above, please do still apply. We'd love to chat and see if you could be a great fit.
The Blend 📍
This role will work as part of our Loyalty Division and is based out of our London office. We call our approach to hybrid working The Blend — it’s about giving you the flexibility to choose where you do your best work, while staying connected with your team and the wider business. This means you will be required to spend at least two days per week in the office, with the rest of the time working from home. You may also be required to work from one of our other office or partner locations, based on your role and 'to do' list
Diversity and Inclusion
Our vision is to create a more rewarding world of travel and experiences. Delivering that requires diverse thinking and inclusive leadership.
We are committed to building a workplace where people feel they belong and are valued for their perspective. Inclusion drives better decisions, stronger performance and more innovative outcomes.
We actively encourage applications from people with different experiences and backgrounds, and are committed to ensuring our recruitment process is fair, inclusive and accessible.
Top Skills
IAG Loyalty London, England Office
123 Buckingham Palace Road, London, United Kingdom, SW1W 9SH
