AI Summary
GRC Manager responsible for ensuring i6 operates in compliance with security, quality, environmental, and regulatory standards. The role involves managing audit programs, compliance tooling, and operating model assurance. The ideal candidate has 5-10+ years of experience in GRC, Information Security, IT Audit, Risk Management, or Compliance.
Key Highlights
Design, maintain, and communicate i6's compliance framework
Manage compliance tooling and audit history
Ensure business follows documented processes and procedures
Key Responsibilities
Ensure i6 operates in compliance with all applicable security, quality, environmental, and regulatory standards
Manage audit program and compliance tooling ownership
Partner with function heads and serve as deputy CISO
Technical Skills Required
Benefits & Perks
25 days annual leave + birthday day off
Private healthcare
5% pension contribution
Nice to Have
ISC2 CISSP
ISACA CISM
ISO 27001 Lead Auditor or Lead Implementer
CRISC
ITIL Foundation
AI-assisted compliance tooling experience
Job Description
About Us
i6 provides the world’s most advanced end-to-end Aviation fuel management technology - enabling operational efficiency, transparency, and sustainability for airlines, fuel service providers, and suppliers.
Our cloud-based solutions digitise the entire aviation fuel lifecycle through real-time fuel inventory and into-plane management platforms, patented electronic refuelling technology, and advanced fuel analytics and insights.
With the adoption of our technology, our customers have been able to reduce thousands of tonnes of CO2 and benefited from millions in cost savings.
We are a remote first company however for this role we are only able to consider applicants based in the UK.
Your new role
In your new role as a GRC Manager at i6 Group you will be responsible for ensuring i6 operates in compliance with all applicable security, quality, environmental and regulatory standards, through a combination of audit programme management, compliance tooling ownership, policy governance, and operating model assurance. The role partners across all function heads and serves as deputy CISO.
Please note this is a 12 month fixed term contract
What You Will Do
- GRC strategy: design, maintain and communicate i6's compliance framework across ISO 9001, ISO 14001, ISO 27001, SOC 1, SOC 2 and Cyber Essentials
- Compliance tooling: own, implement and develop Vanta (or equivalent) as the single source of truth for compliance evidence, controls monitoring and audit history
- Operating model assurance: ensure the business follows its own documented processes and procedures; identify and resolve gaps
- Policy & document management: own the review cycle for all compliance-related policies and procedures; own the process mapping activities and associated toolset (Lucid, Process Accelerator)
- Internal audit programme: manage and guide James Platt in the execution of the internal audit schedule; report findings to senior leadership
- Audit leadership: lead all external audit engagements and certification renewals; manage the auditor relationship
- RFP & tender support: provide security and compliance input to commercial bids and customer security questionnaires
- ESG / Net Zero: lead the Board Net Zero reporting programme (supported by ESG & Supply Chain Specialist)
- Training & awareness: deliver compliance training; ensure 100% completion
- Reporting: provide timely, accurate executive reporting on compliance posture and audit readiness
- Deputy CISO: support the CISO function (currently fulfilled by the Managing Director)
Interested in remote work opportunities in Development & Programming? Discover Development & Programming Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
- As a guide a GRC Manager at i6 would typically have 5-10+ years experience in GRC, Information Security, IT Audit, Risk Management or Compliance.
- Proven ownership of ISO 27001 programmes: risk assessments, ISMS management, audit cycles
- Hands-on SOC 2 Type 2 experience: evidence collection, control monitoring, external auditor co-ordination
- Strong working knowledge of ISO 9001, ISO 14001, Cyber Essentials and broader security governance frameworks
- Experience implementing or administering Vanta (or similar GRC/trust platform such as ISMS Online, Drata, Tugboat Logic) — strongly preferred
- Incident investigation experience: root cause analysis, CAPA, continuous improvement
- Stakeholder management across engineering, operations, HR, commercial and senior leadership
- Understanding of cloud and IT security concepts (AWS/GCP, IAM, MFA/SSO, vulnerability management) — sufficient to work effectively alongside the technical security function
- Experience managing or guiding junior audit staff
- Relevant professional certification preferred: ISC2 CISSP, ISACA CISM, ISO 27001 Lead Auditor or Lead Implementer, CRISC, or ITIL Foundation
- Experience with AI-assisted compliance tooling is an advantage
- Aviation or regulated industry sector experience is desirable but not essential
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
- We’ve recently raised our Series B funding.
- We are a remote first company with offices in Farnborough and Manchester. A number of our team are fully remote and some teams are primarily remote, typically meeting in the office once a month.
- We aim for all of the company to come together for a day once a quarter.
- Our benefits include: 25 days annual leave + your birthday day off, private healthcare and 5% pension contribution.
Similar Jobs
Explore other opportunities that match your interests
Vice President, Travel Risk Management
••••••
••••••
••••••
Job Type
••••••
Experience Level
••••••
Everbridge
United Kingdom
Chief Product Officer
••••••
••••••
••••••
Job Type
••••••
Experience Level
••••••
elite skills
United Kingdom
Visa Sponsorship
Relocation
Remote
Job Type
Contract
Experience Level
Associate
crossing hurdles
United Kingdom