Lead Group GRC manager

<p><strong>Want to help shape how a growing tech company works with governance, risk, and security?</strong></p><p><br>Evidi is strengthening our foundations and looking for a <strong>Lead Group GRC Manager</strong> to build and evolve our group‑wide GRC framework across the Nordics — and beyond.</p><p>This is a rare chance to create a modern GRC function in a fast‑moving environment where your work truly matters. If you enjoy turning complex processes into something practical and valuable, you’ll fit right in.</p><p>In this role, you’ll have real influence: you’ll develop our GRC framework, help the organisation make better decisions, and support secure, sustainable growth. Your work will shape how Evidi operates as we enter our next chapter.</p><h5><strong>What you’ll be working on</strong></h5><p><strong>GRC</strong></p><ul><li><p>Improve and maintain Evidi’s GRC framework, policies, controls, and routines</p></li><li><p>Lead GRC initiatives across entities, including integrations and new regulatory requirements</p></li><li><p>Ensure compliance and recertification (ISO 27001/9001, GDPR, NIS2, DSA, AI Act)</p></li><li><p>Manage key governance routines like risk assessments, reporting, and awareness</p></li></ul><p><strong>Information Security</strong></p><ul><li><p>Develop the ISMS in line with the CISO’s strategy</p></li><li><p>Strengthen core security areas such as incident response, vulnerabilities, IAM, architecture, and continuity</p></li><li><p>Support strong security governance, risk visibility, and culture</p></li></ul><p><strong>Audit, Risk &amp; Supplier Management</strong></p><ul><li><p>Act as Group Lead Auditor for internal and supplier audits</p></li><li><p>Lead risk and assurance processes, mitigation follow‑up, and reporting</p></li><li><p>Strengthen supplier governance and third‑party risk management</p></li></ul><h5><strong>Who you are</strong></h5><ul><li><p>Bachelor’s degree in IT/computer science or equivalent experience</p></li><li><p>ISO 27001 Lead Implementer/Auditor certification (nice to have)</p></li><li><p>Strong background in information security, ISO standards, audits, risk, and compliance</p></li><li><p>Familiar with GDPR, NIS2, AI Act, DSA, and governance frameworks</p></li><li><p>Great communicator who enjoys coordinating across teams</p></li><li><p>Experience with Microsoft environments or international setups is a plus</p></li></ul><p></p><p><strong>If you’re excited by the idea of building something meaningful and helping a company grow safely and smartly — we’d love to hear from you.</strong></p><div><div><p></p></div><div><div><div><div><div><p></p></div></div></div></div></div></div><p><strong>Why Work with us?</strong></p><ul><li><p>Work on impactful product development with modern tech and great autonomy.</p></li><li><p>Collaborate with a skilled, friendly team in a supportive environment.</p></li><li><p>Flexible work arrangements – We’re a geographically distributed team, and we support remote and hybrid work styles. You can be located in Norway or countries within the European Union /&nbsp;European Economic Area.</p></li><li><p>Opportunity for skills development and personal development</p></li><li><p>Great freedom and opportunity to influence your own working life</p></li><li><p>We care.</p></li><li><p>Good pension and insurance schemes</p></li></ul><p><strong style="border:0px solid rgb(238, 239, 242);font-weight:600;color:inherit;"><br></strong><strong>We are Evidi</strong></p><p>Our values and attitudes create competitiveness and opportunities. We dare to demand challenges. We love to solve problems. We exceed expectations. We do more than others, and deliver to many of Norway's most ambitious businesses. We are happy to share the solutions. We contribute with everything from strategy and consulting, to development, integration and management of critical IT solutions.</p><p><strong>More than just tech people</st