Skip to main content

One Trust GRC SME

Contract Type: Contract

Posted Date: March 11, 2026

ECCO Select is a talent acquisition and consulting company specializing in people, process and technology solutions. We provide the talent behind the technology enabling our clients to achieve their goals. For more information about ECCO Select, visit us at www.eccoselect.com.

Position Title:     OneTrust GRC Systems Engineer

Location Information  

Houston, TX

Position Responsibilities:

As a OneTrust GRC Systems Engineer, you will serve as the technical owner and administrator for our Governance, Risk, and Compliance (GRC) platforms, with a primary focus on OneTrust. You will play a key role in configuring, integrating, and managing GRC system lifecycles to support IT General Controls, Data Privacy, Cookie Compliance, and IT Risk Management across IT and OT environments. Leveraging your skills, you will quickly assess the current landscape, identify issues, and devise actionable remediation plans. You will also support enhancement of critical risk assessment processes and champion seamless system integrations.

 

Essential Skills, Experience

Key Responsibilities Include:

  • Configuration & Maintenance:
    • Configure, maintain, and enhance GRC platform settings, data models, and workflow designs, adapting to evolving compliance and risk needs.
    • Develop and support API integrations between OneTrust and related systems (e.g., identity management, ServiceNow CMDB, ticketing platforms).
    • Create, update, and maintain dashboards, reports, and analytics tools for real-time visibility on compliance, control health, risk posture, and remediation efforts.
    • Document system configurations, data flows, and integration logic for transparency, audit readiness, and change management.
  • Governance & Release Management:
    • Manage platform releases, review vendor release notes, assess their impact, and coordinate system changes in accordance with IT change and release management practices.
  • Cross-Functional Coordination:
    • Collaborate with IT, cybersecurity, Center of Excellence (COE), GRC program owners, audit, IT operations, OT teams, and vendors for issue resolution, platform enhancement, and roadmap planning.
    • Work with stakeholders to triage and prioritize bugs, enhancements, and initiatives to align GRC systems with organizational governance strategies.
    • Act as liaison for managing access requests, permissions, and troubleshooting for end-users.
  • System Monitoring & Optimization:
    • Monitor system performance, integration reliability, and data accuracy; identify improvement opportunities for automation and workflows.
    • Track enhancement and defect resolution, ensuring timely documentation and execution.
    • Assess and deploy new GRC capabilities or vendor releases for alignment with business requirements.
  • Risk Assessment Process Enhancement:
    • Support risk assessment process improvements, including identification of inherent risk, control assignment, evidence collection, remediation, residual risk scoring, and real-time dashboard delivery.
    • Update and manage asset records as related to risk management processes.
  • Integration Projects:
    • Lead the ServiceNow CMDB to OneTrust integration, involving asset creation/update, triggering IT Risk Management (ITRM) assessments, generating and applying control templates, and automating implementation, evidence collection, remediation issues, risk scoring, and SNOW ticket creation.
    • Develop and maintain custom dashboards and ensure seamless system integrations.

Core Skills & Competencies:

  • Proven hands-on experience with OneTrust GRC platform (required).
  • Expertise in configuring systems, administering user roles, managing data, and customizing workflows.
  • API development & integration experience including:
    • Proficiency with FreeMarker (FTL), specifically for OneTrust Logic (required).
    • Preferred experience with RESTful APIs, JavaScript (middleware/webhooks), Python or PowerShell (automation), and JSON.
  • Solid understanding of ITSM and ITIL-aligned processes (change, release, incident, configuration).
  • Working knowledge of key governance frameworks (e.g., NIST CSF, COBIT 2019, ISO 27001) and GRC best practices.
  • Strong analytical skills—able to use visualization tools such as Power BI or Tableau to convey insights and track metrics.
  • Clear, precise documentation and reporting capabilities; skilled at troubleshooting and explaining complex topics to both technical and non-technical stakeholders.
  • Excellent communication and collaboration proficiency across technical, operational, and governance teams.

Ability to Achieve:

  • Operate and optimize stable, secure, high-performing GRC platforms for support of compliance, audit, and cybersecurity requirements.
  • Streamline automation of IT General Controls, risk management, and key workflows.
  • Drive data-driven improvements and actionable insights from GRC platforms.
  • Contribute to increased IT/OT governance maturity through scalable technology solutions.

ECCO Select is committed to hiring and retaining a diverse workforce. Our policy is to provide equal opportunity to all people without regard to race, color, religion, national origin, ancestry, marital status, veteran status, age, disability, pregnancy, genetic information, citizenship status, sex, sexual orientation, gender identity or any other legally protected category. Veterans of our United States Uniformed Services are specifically encouraged to apply for ECCO Select opportunities.

Equal Employment Opportunity is The Law
This Organization Participates in E-Verify