Security Risk and Compliance Analyst

AutoStore AS • oslo, oslo • Posted July 09, 2026

About the Role

The Security Risk and Compliance Analyst is the operational engine of AutoStore’s Technology Risk and Compliance function, turning frameworks and policies into working processes, maintaining the evidence base for assurance activities, and keeping the compliance position current and visible.

Responsibilities

  • Maintain control documentation, ownership records, and evidence in line with the framework owned by the SRCP.
  • Support the assurance and testing cycle, coordinating with control owners and flagging gaps or discrepancies to the SRCP or CISO.
  • Coordinate IT General Controls (ITGC) and Internal Control over Financial Reporting (ICFR) requirements, maintaining documentation of scope, testing schedules, and results.
  • Act as the primary operational interface for cybersecurity audit activities, tracking findings to closure.
  • Manage the risk exception and control deviation process – intake, documentation, approval tracking, expiry m...