Senior Risk and Compliance Officer

Why Airbox? You're more likely to love your work when that work has a purpose, when it’s meaningful and when it’s protecting lives. At Airbox Systems, it will.

Values and Culture

We value Commitment, Positive Realism, Ethics, Accountability, Humanity, Quality, and Delight. Our team includes individuals with military, aviation, and law‑enforcement backgrounds, giving us first‑hand insight into frontline operations to enable cutting‑edge concepts.

What this role is about

We are seeking a highly organised and driven Senior Risk & Compliance (R&C) Officer to support our Risk & Compliance function and play a pivotal role in ensuring the operational excellence of R&C within Airbox Systems. In this dynamic role you will ensure that Airbox Systems adheres to legal, regulatory and internal policies, supporting our business objectives while maintaining high standards, mitigating risk and upholding our commitment to robust R&C and Information Security practices.

What you’ll do

• Compliance
• Accreditation Management: Accountability for developing and executing detailed plans to achieve and maintain key business accreditations, including all ISO certifications and Cyber Essentials. Ensure compliance with the latest industry standards and best practices.
• Identifying Additional Accreditations: Identify potential new and relevant accreditations to enhance the company’s standing in Risk & Compliance management, keeping Airbox at the forefront of industry best practices.
• Employee Support and Training: Provide expert advice and training to employees across the business, helping them understand and maintain required Risk & Compliance standards and best practice.
• Internal Audits & ISMS Management: Lead regular internal audits across all areas of the business to assess compliance, identify areas for improvement, and ensure the Information Security Management System (ISMS) remains current and aligned with evolving business needs.
• External Certifications: Manage the external certification process, ensuring the necessary documentation and evidence are prepared for auditors. Regularly report to senior management on certification progress and the effectiveness of the ISMS.
• Compliance Policy and Procedures: Develop, review and implement Airbox Systems R&C framework, policies and procedures in alignment with current regulations and industry standards.
• Company Policy and Procedure Register: Manage the company policy and procedure register and ensure that periodic reviews of company policies are completed and documented correctly.
• Risk
• Risk Assessments: Conduct comprehensive risk assessments on live services and potential suppliers, ensuring alignment with the organisation’s risk management framework, policies and procedures.
• Risk Identification and Mitigation: Collaborate with department leads and stakeholders to identify potential risks and develop and implement effective risk management strategies and action plans.
• Risk Registers: Work closely with relevant stakeholders to ensure that departmental risk registers are aligned with the board‑level risk register.
• Risk Reporting: Compile and present detailed risk reports to senior management, highlighting risk profiles, mitigation actions, and strategic recommendations.
• Three Lines of Defense Framework: Oversee and coordinate the execution of the Three Lines of Defense risk management framework.
• Risk Management Awareness: Lead initiatives to raise awareness of risk management practices within the business, including delivering training sessions and workshops.
• Incident Response: Act as the primary point of contact for risk‑related incidents, leading the response efforts and managing mitigation strategies.
• Data Protection
• Data Protection Impact Assessments (DPIAs): Complete DPIAs (internal and external).
• Record of Processing Activities (ROPA): Collaborate across the business to develop, manage and maintain Airbox Systems ROPA.
• Business Continuity and Disaster Recovery (BCDR)
• Maintain and test BCDR plan: Review and update BCDR plan, including simulating disaster scenarios to ensure operational readiness.
• Risk assessments: Identify vulnerabilities within Business Impact Assessments (BIA) and create strategies to minimise any disruption or downtime.
• Compliance and reporting: Ensure the BCDR plan meets regulatory standards (e.g., ISO 22301) and report against this as required.

About You

• Professional Qualifications: A recognised professional qualification in risk management or business management.
• Risk Management Expertise: Minimum of 5 years of experience in Risk & Compliance, including strong experience in risk analysis, management and reporting.
• ISO Certification Experience: Demonstrable experience in achieving and maintaining ISO certifications, including ongoing compliance management, auditing, and preparation for recertification.
• Communication: An excellent communicator who can convey ideas clearly.
• Problem Solver: A proactive individual who takes initiative and strives for excellence.
• Organisation and attention to detail: Highly organised with a strong attention to detail.
• Continuous Improvement: A proactive approach towards continuous improvement of R&C across the business.

It’s a Bonus If You Have

• Extensive, hands‑on experience with risk management and risk frameworks.
• Experience working with international teams and across multiple geographies.
• Familiarity with scaling businesses in a tech environment, particularly in high‑growth settings.
• Experience in regulated industries and familiarity with industry‑specific legislation.
• Relevant certifications such as ISO Lead Implementer.
• Knowledge of international compliance frameworks and accreditations, such as IRAP.

What we offer

• The chance to work with a passionate team that’s working together every day towards our shared ambitious goal.
• A dynamic, flexible and fun scale‑up work environment with a highly talented team.
• 26 days holiday per year, plus public holidays.
• Private medical cover with Bupa for all colleagues.
• Pension scheme, offering up to 6% matching contribution.
• Electric Car Scheme.
• Flexible & Hybrid Working: Work better from home or in the office. There are 2 mandatory Townhall days – spring and autumn – where the whole business meets.

Contact

If you are interested in the role, please email hr@airboxsystems.com.