Senior Information Security GRC Analyst
OneTrustMadrid, Community of Madrid, Spain
Posted March 23, 2026
Full Time
About the Company
OneTrust's mission is to enable innovation through the responsible use of data and AI.
Job Description
OneTrust is seeking a Senior Information Security GRC Analyst to manage and execute multiple audits and help mature the compliance program. The role requires a deep understanding of governance, risk, and compliance frameworks and the ability to work collaboratively with various departments.
Requirements
- Bachelor's degree in Information Security, Computer Science, or a related field
- Minimum of 5 years of experience in Information Security, with a focus leading GRC initiatives
- In-depth knowledge and experience in ENS, EU NIS2, EU CRA frameworks
- Working knowledge of NIST CSF, PCI, SOC2, ISO27001, ISO27701, ISO27017, HITRUST, and TISAX frameworks
- Past experience having managed audits end-to-end
- Strong analytical and problem-solving skills
- Excellent communication and interpersonal skills
- Experience with GRC tools and software such as OneTrust or Certification Automation (Tugboat)
- Relevant certifications such as CISSP, CISM, CISA, or CRISC are preferred
Benefits
- Comprehensive healthcare coverage
- Flexible PTO
- Equity RSUs
- Annual performance bonus opportunities
- Retirement account support
- 14+ weeks of paid parental leave
- Career development opportunities
- Company-paid privacy certification exam fees
