Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

Senior Security GRC Manager - SOC 2 Compliance

extra holidays - extra parental leave
Remote: 
Hybrid
Contract: 
Full time
Salary: 
4 - 4K yearly
Experience: 
Senior (5-10 years)
Work from: 
Stockholm (SE)

Offer summary

Qualifications:

5+ years experience with SOC 2 compliance, Experience in security frameworks like SOC 2, ISO27001, Prior IT Audit experience in SOC 2, ITGC, SOX, CISA, CISM, CISSP certifications preferred, Experience with privacy frameworks such as GDPR.

Key responsabilities:

  • Lead the SOC 2 compliance program and projects
  • Design, implement, monitor, and maintain SOC 2 controls
  • Oversee all stages of SOC 2 audits for successful completion
  • Manage responses to customer security questionnaires
  • Identify and advise on information security risks
Spotify logo
Spotify Music XLarge https://www.lifeatspotify.com/
5001 - 10000 Employees
HQ: Stockholm
About Spotify
Our mission is to unlock the potential of human creativity—by giving a million creative artists the opportunity to live off their art and billions of fans the opportunity to enjoy and be inspired by it. Spotify transformed music listening forever when it launched in Sweden in 2008. Discover, manage and share over 70m tracks for free, or upgrade to Spotify Premium to access exclusive features including offline mode, improved sound quality, and an ad-free music listening experience. Today, Spotify is the most popular global audio streaming service with 365m users, including 165m subscribers across 178 markets. We are the largest driver of revenue to the music business today.
See more Spotify offers

Job description

Spotify is seeking a Senior Security Governance, Risk, and Compliance (GRC) Manager to join the Security Studio who will work closely with our engineering teams and audit functions. You’ll be focused on handling the execution of tasks for the Security GRC Program within Spotify, primarily in relation to driving SOC 2 compliance, but also to other compliance and information security frameworks. You will work on ensuring tasks deliver high-quality value and are completed in a timely fashion. Additionally, you will play an integral part in recommending process improvements and in helping to implement these updates. This role will require a deep understanding of SOC 2 compliance, information security practices, as well as experience in working with technology teams.

What You'll Do
  • Lead the SOC 2 compliance program and large-scale SOC 2 projects, identify dependencies, define success metrics and achievements, and ensure timely delivery
  • Design, implement, monitor and maintain SOC 2 controls, while collaborating and building relationships with internal and external business partners
  • Lead and handle all stages of SOC 2 audits, ensuring successful completion.
  • Resolve appropriate scope of SOC 2 audits, encompassing new and existing service offerings, their supporting infrastructure, and associated processes.
  • Lead and respond to customer security questionnaires while collaborating with internal teams, and drive questionnaire response automation
  • Identify, assess, and advise on information security risks, processes and controls to a variety of business partners

    • Who You Are
  • You have 5+ years of experience with SOC 2 compliance, including leading a SOC 2 compliance program, controls design, and implementation. Experience in the technology industry is preferred.
  • You have 5+ years of experience with security frameworks, e.g. SOC 2, ISO27001, NIST CSF, PCI-DSS, etc., security controls design and implementation, and security best practices
  • Prior IT Audit experience in areas of SOC 2, ITGC, SOX are preferred
  • CISA, CISM, CISSP or other related certifications are preferred but not required.
  • You have experience with privacy frameworks, such as GDPR or CCPA
  • You are a strong collaborator, with experience working on teams composed of both technical and non-technical members
  • You have a demonstrated ability to lead large projects, problem-solve, multitask, and have excellent organizational skills
  • You have excellent written and verbal communication skills, with experience presenting to key stakeholders and partnering with internal collaborators and external auditors
  • You thrive in a data-driven, fast-paced and innovative environment

    • Where You'll Be
  • For this role you will be in New York.

    • Required profile

    Experience

    Level of experience: Senior (5-10 years)
    Industry :
    Music
    Spoken language(s):
    English
    Check out the description to know which languages are mandatory.

    Hard Skills

    Project ManagementSOC 2 AuditingSecurity ControlsData-Driven Decision MakingSecurity StrategiesInformation Technology AuditsRisk AnalysisApplication Frameworks

    Other Skills

    • Multitasking
    • Organizational Skills
    • Collaboration
    • Verbal Communication Skills
    • Problem Solving
    Are you interested?

    Compliance Officer Related jobs

    See more Compliance Officer jobs
    Sign in or sign up with Google or LinkedIn