At Oda, we develop affordable grocery services to make the logistics of living surprisingly easy. First we built Norway’s leading online grocery store and now, partnered with Mathem in Sweden, we’re on our way to becoming the world’s most effective grocery system, delivering to thousands of Scandinavian doorsteps every week.

As part of our team, you’ll work with smart, passionate colleagues who bring their whole selves to work every day. It’s a fast-moving, collaborative environment where everyone is welcome and everyone’s opinion matters. Whether you're shaping the future of online retail, tackling complex logistical problems, or making everyday life better for our customers, your work will have a real impact. Read on to find out what part you could play in our story.

Lastly we are entering the space of becoming a logistics systems provider to serve other online grocery players meaning we are commercializing our hardware blueprint, our proprietary smart software and our ways of working into Oda systems - our new brand and business area!

We’re looking for a GRC Specialist to join Oda!

What you’ll be doing in this role is to spearhead cross-functional initiatives that mitigate risk and ensure compliance, while actively accelerating secure AI adoption. You won’t be a gatekeeper, you’ll be an enabler who helps Oda move fast and secure the future of grocery.

Your main responsibilities will include

• Enable Secure AI Adoption: Work with all parts of the organization to understand their needs and risk profiles, helping business units navigate rules and regulations without adding unnecessary friction.

• Drive GRC: Lead our information security risk management, governance, and regulatory compliance work. You’ll be our lead on implementing and maintaining frameworks like SOC 2, ISO 27001, NIS2, and the EU AI Act.

• Own the ISMS: Maintain and develop our Information Security Management System (ISMS) together with the rest of the security team.

• Build Literacy & Training: Design and run AI and data literacy programs across Oda, ensuring non-technical teams are trained in the secure usage of data and AI (including obligations under the EU AI Act).

• Adapt Procurement for Speed: Maintain and develop our system acquisition processes to fit a new way of working with AI tools, moving away from slow enterprise buying toward high-speed rollouts.

• Mitigate New Risk Vectors: Help us proactively handle new challenges, from the secure use of People data and financial secrets to securing local AI agents running on laptops.

To thrive in this role, You are a pragmatic problem-solver who is comfortable with shifting priorities in a dynamic everyday environment. Instead of saying "no," your instinct is always to find a path to "yes, with guardrails".

You have a genuine interest in technology and security, possess strong systems-thinking skills, and always look for ways to solve root causes without adding unnecessary complexity. As a self-motivated professional, you take complete ownership of tasks from start to end, and you love actively learning new things, and sharing that knowledge with those around you.

What you’ll need to succeed

We know that talent comes in many forms. While these are the core skills we're looking for, we value diverse perspectives and encourage you to apply even if you don't check every single box.

• GRC or AI Enablement Experience: Prior experience with information security Governance, Risk, and Compliance (GRC) work, and/or hands-on experience with AI enablement.

• Project/Program Management: A proven track record within IT or technical project/program management, with experience translating business goals into scalable, cost-efficient solutions.

• Strong Communication: The ability to translate complex regulatory requirements and technical nuances into understandable insights for non-technical stakeholders.

• Framework Familiarity: Experience working with frameworks like SOC 2, ISO 27001, NIS2, or the EU AI Act.

• Tech-Curious Mindset: You don't need a traditional engineering background, but you should be completely comfortable staying current on cybersecurity trends and adapting to modern developer workflows.

What would be nice to have

• Familiar with building AI agents or enabling AI tools in a fast-paced environment.

• Comfortable with modern AI-assisted workflows, like using Claude Code or similar tools to submit a PR if needed.

You value innovation and enjoy working in an AI-integrated environment where we constantly iterate on what’s possible.

What we offer

We want everyone at Oda to have a great experience at work, no matter the role. That’s why our perks are pretty similar across the board—because we’re all in this together.

• A chance to make a real impact as an AI Governance & Information Security Specialist in a fast-moving company with a product people love, while shaking up the grocery industry.

• Teammates who aim high and have each other’s backs. We care about people, and that means supporting each other every step of the way.

• A flat structure where we team up across disciplines to solve exciting challenges. Big ideas come from everywhere!

• A transparent way of working. We use Slack to stay in the loop, less email, fewer meetings, more getting things done.

• A buzzing office at Tøyen, with lunch made by amazing chefs.

• A collaborative approach, we tackle exciting tech and product challenges together, across different fields.

• A chance to shape the future of grocery shopping while building a company that’s here to stay.

Practical Information

• Application deadline: 10.06.26

• Percentage: 100% FTE

• Location: Tøyen, Oslo

We can’t wait to hear from you! ⭐️