Senior Security GRC Manager
SOC 2 Compliance

Link copied to clipboard.

• Product

• Security

Location

• Stockholm

Job type

Permanent

What You'll Do

• Lead the SOC 2 compliance program and large-scale SOC 2 projects, identify dependencies, define success metrics and achievements, and ensure timely delivery
• Design, implement, monitor and maintain SOC 2 controls, while collaborating and building relationships with internal and external business partners
• Lead and handle all stages of SOC 2 audits, ensuring successful completion.
• Resolve appropriate scope of SOC 2 audits, encompassing new and existing service offerings, their supporting infrastructure, and associated processes.
• Lead and respond to customer security questionnaires while collaborating with internal teams, and drive questionnaire response automation
• Identify, assess, and advise on information security risks, processes and controls to a variety of business partners

Who You Are

• You have 5+ years of experience with SOC 2 compliance, including leading a SOC 2 compliance program, controls design, and implementation. Experience in the technology industry is preferred.
• You have 5+ years of experience with security frameworks, e.g. SOC 2, ISO27001, NIST CSF, PCI-DSS, etc., security controls design and implementation, and security best practices
• Prior IT Audit experience in areas of SOC 2, ITGC, SOX are preferred
• CISA, CISM, CISSP or other related certifications are preferred but not required.
• You have experience with privacy frameworks, such as GDPR or CCPA
• You are a strong collaborator, with experience working on teams composed of both technical and non-technical members
• You have a demonstrated ability to lead large projects, problem-solve, multitask, and have excellent organizational skills
• You have excellent written and verbal communication skills, with experience presenting to key stakeholders and partnering with internal collaborators and external auditors
• You thrive in a data-driven, fast-paced and innovative environment

Where You'll Be

• For this role you will be in Stockholm.

Our global benefits

Extensive learning opportunities, through our dedicated team, GreenHouse.

Flexible share incentives letting you choose how you share in our success.

Global parental leave, six months off - fully paid - for all new parents.

All The Feels, our employee assistance program and self-care hub.

Flexible public holidays, swap days off according to your values and beliefs.

Learn about life at Spotify

You are welcome at Spotify for who you are, no matter where you come from, what you look like, or what’s playing in your headphones. Our platform is for everyone, and so is our workplace. The more voices we have represented and amplified in our business, the more we will all thrive, contribute, and be forward-thinking! So bring us your personal experience, your perspectives, and your background. It’s in our differences that we will find the power to keep revolutionizing the way the world listens.

Spotify transformed music listening forever when we launched in 2008. Our mission is to unlock the potential of human creativity by giving a million creative artists the opportunity to live off their art and billions of fans the chance to enjoy and be passionate about these creators. Everything we do is driven by our love for music and podcasting. Today, we are the world’s most popular audio streaming subscription service with a community of more than 500 million users.