📍 Barcelona office. Open to hybrid and remote work in CET time zones
🕒 Full-time
Alinia’s MissionWe are an early-stage AI startup on a mission to help organizations deploy generative AI applications safely, responsibly, and at scale. If you’re excited about building foundational infrastructure for enterprise-grade GenAI, and thrive in fast-moving, high-ownership environments, we’d love to hear from you. Our platform and API ensure organizations can deploy LLMs in a secure, controlled, and auditable way. We’re creating the most trustworthy foundation for AI in the enterprise — where governance, alignment, and compliance are built-in from day one.
About the Role As Security & Governance Lead at Alinia AI, you will play a foundational role in shaping the company’s internal security, governance, and compliance practices as we scale our AI Auditing & Compliance platform for AI Agents in regulated industries.
We are building critical safety and governance infrastructure for AI agents used in f inance and other highly regulated environments. In this role, you will be responsible for ensuring that Alinia operates with a strong, auditable, and scalable security and compliance posture, while supporting enterprise customer procurement, SLAs, and trust requirements.
This is a hands-on, high-impact role for someone who thrives in a fast-paced startup, can operate autonomously, and wants to define how security and governance should be built in an AI-first company.
Responsibilities Security, Governance & Compliance Operations ● Own and maintain Alinia’s internal security and compliance posture.
● Manage Vanta as the central compliance and evidence management platform.
● Review, update, and maintain all security, privacy, and governance policies.
● Produce and maintain up-to-date risk assessments, security reports, and compliance processes.
● Centralise and document Alinia’s technical stack, data flows, and security controls.
● Create internal guides, playbooks, and training materials related to security and governance.
Certifications & External Assurance ● Own and manage existing certifications and frameworks, including SOC 2 and GDPR.
● Plan and coordinate annual vendor reviews, third-party risk assessments, and penetration tests.
● Define and execute Alinia’s 12‑month security and compliance roadmap, including:
○ EU AI Act
○ ISO/IEC 42001
○ ISO 27001
Customer Procurement & SLA Management ● Own security and compliance procurement processes with enterprise customers.
● Act as procurement owner for security, privacy, and governance-related requests.
● Lead responses to customer security questionnaires, audits, and vendor risk assessments.
● Own SLA management and act as project manager for customer-related security and compliance queries.
● Partner closely with Sales, Product, and Engineering to unblock deals and maintain customer trust.
Requirements ● 6+ years of experience in security, governance, risk, or compliance roles, ideally in a SaaS or cloud-native environment and AI-native projects.
● Hands-on experience managing security and compliance programmes (not purely advisory).
● Proven experience with security certifications (SOC2, ISOs) and GDPR in an operational context.
● Experience using compliance automation platforms such as Vanta, Drata, or Secureframe.
● Strong understanding of cloud security, SaaS architectures, and vendor risk management.
● Ability to translate regulatory and compliance requirements into practical, scalable processes.
● Clear written and verbal communicator in Spanish and English, comfortable working cross-functionally.
● Based in Spain.
Nice-to-Have ● Experience with ISO 27001 and/or ISO/IEC 42001 certifications.
● Familiarity with EU AI Act requirements or AI governance frameworks.
● Background in regulated industries such as financial services, military or health.
● Experience supporting enterprise procurement and security reviews.
● Previous experience in early-stage or high-growth startups.
Why Join Alinia ● Build and own the security and governance foundation of a fast-growing AI governance company.
● Work on problems at the intersection of AI, regulation, and enterprise software.
● Early, high-impact role with direct influence on customer trust and revenue.
● Collaborate closely with founders and leadership on strategic compliance initiatives.
● Competitive compensation and meaningful equity.
● Growth potential and leadership path.
