Nitro Software Security Analyst GRC

Damia Group

Not Interested
Bookmark
Report This Job
profile Job Location:

Porto - Portugal

profile Monthly Salary: Not Disclosed
Posted on: Yesterday
Vacancies: 1 Vacancy
Register to Apply

Job Summary

Nitro Software is currently hiring a Security Analyst (GRC) to join their amazing team
About the company:
Nitro is a global SaaS leader for seamless digital document workflows Nitro offers a suite of solutions for PDF eSigning identity verification and analytics supported by a best-in-class customer success and change management more than 3 million licensed users and 13000 business customers across 157 countries we serve 67% of the Fortune 500.
They are building an environment where everyone feels like a valued part of something bigger than themselves. They take full ownership of their actions and decisions. They empower one another to lead with confidence creativity and a solutions-focused mindset. They are dedicated to their customers and take their commitments seriously
About the role:
They are looking for a proactive detail-oriented and collaborative Security Analyst with a strong focus on Governance Risk and Compliance (GRC) to help evolve and sustain Nitros global security and compliance posture.This key role is central to ensuring Nitro maintains always-on compliance - embedding governance and control assurance into daily operations. The successful candidate will help maintain and mature Nitros core compliance programs including ISO 27001 SOC 2 HIPAA and DORA while serving as the primary point of contact (POC) for their external compliance vendor.In addition to managing their compliance frameworks this role will drive Security oversight across Nitros diverse ecosystem of business-critical applications platforms and integrations - including systems such as Salesforce Atlassian Microsoft 365 and other SaaS and cloud-based services. The analyst will ensure these environments are governed by consistent effective controls and that security risk is continuously monitored and managed.Youll collaborate across Security Operations IT Engineering Legal Sales and Customer Success amongst others to ensure Nitros security practices are robust transparent and trusted - both internally and by their customers.
What youll be doing:
Governance Risk and Compliance
  • Play a significant role in Nitros compliance programs (ISO 27001 SOC 2 HIPAA DORA) ensuring a continuous state of readiness and certification maintenance.
  • Act as the main point of contact for Nitros external compliance vendor managing communications audits evidence requests and ongoing improvement initiatives.
  • Implement and champion Nitros always-on compliance strategy - embedding compliance automation and continuous control monitoring across their systems.
  • Maintain the internal GRC calendar and ensure all compliance activities are completed on schedule.
  • Develop maintain and refine security policies procedures and standards ensuring alignment with frameworks and practical applicability.
  • Report on compliance status control effectiveness and risks to management and stakeholders.
Security Oversight Across Nitros Applications and Platforms
  • Provide security governance and oversight for Nitros portfolio of applications platforms and integrations - including Salesforce Atlassian (Jira/Confluence) Microsoft 365 AWS and other critical SaaS systems.
  • Partner with system owners to ensure security configurations access controls and audit logs meet Nitros standards and compliance requirements.
  • Conduct periodic reviews of key systems to verify proper implementation of controls (e.g. MFA enforcement data retention access management logging).
  • Ensure consistent risk assessment and control validation across both internally managed and third-party services.
  • Collaborate with IT and Engineering teams to remediate control gaps and strengthen system-level governance.
  • Develop and maintain an inventory of systems and integrations tracking ownership classification and control coverage.
Customer and Sales Support
  • Partner with Sales and Customer Success to respond to security questionnaires RFPs and due diligence requests from customers and prospects.
  • Maintain and continuously improve Nitros Trust and Security documentation ensuring it reflects the current certifications and controls.
  • Support customer security reviews by clearly articulating Nitros security and compliance posture.
Risk Management and Continuous Improvement
  • Coordinate risk assessments across platforms and business processes; ensure identified risks are tracked and mitigated.
  • Manage and evolve Nitros vendor risk management program assessing third-party partners and integrations.
  • Identify opportunities to streamline and automate compliance activities through tools integrations and data-driven reporting.
  • Collaborate closely with Security Operations to align compliance controls with operational monitoring and incident response capabilities.
  • Stay current on emerging security and regulatory trends helping Nitro anticipate and adapt to new requirements.
Requirements:
  • 35 years of experience in Information Security GRC or Security Assurance roles.
  • Hands-on experience managing compliance frameworks such as ISO 27001 SOC 2 HIPAA or DORA.
  • Proven experience liaising with external auditors or compliance vendors.
  • Strong understanding of security governance risk management and control frameworks (e.g. ISO NIST COBIT).
  • Demonstrated experience with SaaS and enterprise platforms (e.g. Salesforce Atlassian Microsoft 365 AWS Azure or similar).
  • Excellent communication coordination and stakeholder management skills.
  • Strong analytical and organizational skills with attention to detail.
  • Experience developing or maintaining security policies control documentation and audit evidence.
Nice to have:
  • Certifications such as CISA CISM CISSP ISO 27001 Lead Implementer/Auditor or equivalent.
  • Familiarity with data protection and privacy regulations (GDPR CCPA).
  • Experience in third-party risk management or vendor assurance programs.
  • A mindset for continuous improvement and process automation in compliance operations.
  • Prior experience in a SaaS or cloud-first organization with complex integrations.
Want to know more Get in touch with us

Required Experience:

IC

Nitro Software is currently hiring a Security Analyst (GRC) to join their amazing teamAbout the company: Nitro is a global SaaS leader for seamless digital document workflows Nitro offers a suite of solutions for PDF eSigning identity verification and analytics supported by a best-in-class customer ...
View more view more
Apply Now

About Company

Damia Group
Company Logo

The best tech recruitment agency in Portugal! We find & deliver the best tech talent with a focus on amazing recruitment experiences.

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click

AI AutoApply

AI Resume Builder

Create an ATS-ready CV in minutes

AI Resume Builder

AI Cover Letter

Write a personalized letter instantly

AI Cover Letter

Related Jobs

Functional Analyst (French Speaker) | BPCE-SI

Natixis In Portugal

profile Lisbon

Purple Team Security Engineer (SIEM & Detection)

Inetum

profile Lisbon

IT Business Analyst (French Speaker) | BPCE-SI

Natixis In Portugal

profile Lisbon

Junior Security Risk Officer (French Speaker) | SG

Natixis In Portugal

profile Porto

Pension Brokerage Analyst

Wtw

profile Lisbon

Sr. Software Engineer, Backend

Renesas Electronics

profile Lisbon

Software Engineer — Hardware Integration & Systems Development | Deep-Tech Startup in Personalized Medicine

Ilof

profile Porto

Distribution Analyst

Edp

profile Lisbon
  1. Home
  2. Jobs In Portugal
  3. Jobs In Porto
  4. Nitro Software Security Analyst GRC