Who we are 🩵
We’re the people behind global loyalty currency, Avios, and home to two ambitious, growing businesses across Loyalty and Holidays. Each business has its own goals, strategy and team, but collectively we share a purpose to create the world’s most rewarding experiences for our customers through loyalty programmes, new products and holidays
We’re on a truly exciting journey of growth and transformation – we’re going places! This is where you come in.
The Opportunity ✨
Our Network Engineering team is responsible for managing network technology–driven change and tackling technical debt, all guided by a cloud-first strategy. We work closely with product and development teams, providing the network foundations that enable growth and innovation across the business.
As part of the core engineering function, this is a hands-on operational role with a strong emphasis on network security and content delivery. We’re seeking a highly skilled Network Engineer with deep expertise in content delivery networks, Palo Alto technologies, AWS networking best practices, and LAN infrastructure automation.
This role brings together advanced network engineering, cloud security and edge performance optimisation to deliver secure, scalable and high-performing infrastructure across hybrid and multi-cloud environments.
This role is based out of our London office. We call our approach to hybrid working
The Blend — it’s about giving you the flexibility to choose where you do your best work, while staying connected with your team and the wider business. This means you will be required to spend at least two days per week in the office, with the rest of the time working from home. You may also be required to work from one of our other office or partner locations, based on your role and 'to do' list.
What you’ll be doing 🌠
Working within the Tech Ops function of Core Engineering, you will support Product, Data, and AI-focused teams by ensuring cloud networking is well-architected and that guardrails are consistently applied.
A key part of the role is collaborating with cross-functional teams to align CDN solutions with business needs, maintain policies in line with industry trends, and provide ongoing recommendations for improvement. You will also lead the technical review and implementation of network-related IaC delivery across cloud and content delivery platforms.
You’ll contribute to the proactive development of network environments, working in line with business plans, technical architecture and long-term strategies to meet future requirements. This includes taking responsibility for network security, developing and maintaining policies and procedures that meet audit-driven requirements and adhere to industry standards such as ISO and SOC2.
The role also covers firewall security and NAT policy administration, LAN infrastructure maintenance and configuration, and the interpretation and implementation of firewall and LAN/WAN change. In addition, you will manage DNS platforms and ensure the effective ownership and processing of network operations tickets.
Overall, you will play a key part in delivering secure, scalable, and reliable network services that enable the business to operate and innovate with confidence.
What we’re looking for 💡
You’ll be calm under pressure, confident engaging with stakeholders at all levels, and able to manage tight deadlines when restoring critical services. Strong communication, ITIL knowledge, and a collaborative mindset are essential. We’re looking for someone who embraces new technology and takes pride in delivering excellent service.
Occasional travel and hands-on support with IT equipment may be required.
Key skills & experience
AWS Networking & Security: VPC design, subnetting, routing, NAT, peering, plus Security Groups, NACLs, IAM and AWS WAF/Shield.
Content Delivery & Performance: Experience with Akamai, Alkami, CloudFront or similar CDN platforms.
Connectivity & Access: IPSEC and client VPN solutions, DNS and domain management, and Palo Alto Networks.
Infrastructure as Code: Terraform (including automation principles) and broader IaC practices.
Certificates & Monitoring: TLS/PKI lifecycle management, network monitoring, troubleshooting and optimisation.
Identity & Delivery: CI/CD tooling, SAML/IDP integration and Microsoft Entra.
We might not be right for you if:
You only want to focus on your to-do list; we’re a small, high-performing team, we help each other to succeed.
You value perfection over fast iteration and progress; IAG Loyalty moves fast, we learn and iterate as we go; our environment isn’t right for everyone.
You’re looking to create but not build; this is an end-to-end role, you need to be comfortable owning your space, from ideation through to delivery and review.
If you think you have what it takes but don't meet every single point above, please do still apply. We'd love to chat and see if you could be a great fit.
Equity, Diversity and Inclusion at IAG Loyalty
Our vision, 'to create the world's most rewarding experiences,' applies not only to our customers but for our colleagues too. It's about taking belonging seriously, actively fostering a culture where everyone feels welcomed and valued by embracing diverse identities, personal histories, and perspectives.
This commitment makes IAG Loyalty a rewarding place to work and enhances our ability to solve complex problems, drive innovation, and better serve our customers and communities.
Please let us know if we can make any reasonable adjustments to support your interview process with us.
Top Skills
IAG Loyalty London, England Office
123 Buckingham Palace Road, London, United Kingdom, SW1W 9SH
