Risk and Controls Program Manager

Spotify is seeking a Technology Risk and Controls Program Manager to lead critical risk and control initiatives within our Financial Engineering team. This role is crucial for ensuring the team's operations are secure, compliant, and scalable as Spotify continues to grow and diversify its business.

In this role, you will partner with Product and Engineering leads within our R&D organization as well as Finance teams to design and manage our controls framework while supporting the Spotify audit cycle.

You will be instrumental in ensuring the effectiveness of our Engineering (IT) control environment, with a focus on Internal Controls over Financial Reporting (ICFR) and Sarbanes-Oxley (SOX) requirements.

• Partner with engineering, business, and internal audit teams to drive efforts related to Spotify’s global Internal Controls over Financial Reporting (ICFR) and Sarbanes-Oxley (SOX) requirements.
• Liaise and translate risk and controls between the business process and IT General Controls (ITGC) environments across a complex systems landscape that follows an agile development approach.
• Collaborate with process and control owners to maintain an effective Engineering (IT) control environment, including recommendations for the design, implementation, and remediation of ITGCs and IT application controls.
• Provide training and support for system control owners and their teams to ensure effective operation of ITGCs and associated business process controls.
• Enable the efficient execution of our SOX compliance program and schedule by serving as the primary liaison between external audit and the R&D Engineering teams you support.
• Provide thought leadership and risk and compliance support as our businesses, processes and technology evolve.
• Support major business and technology projects by providing risk analysis and control impact assessments while assisting in the implementation of any associated control or process changes.
• Monitor industry and regulatory (SEC, PCAOB) developments and develop recommendations for policy, process, technology, and internal control improvements.

• Bachelor’s degree in Accounting, Finance, Management Information Systems, or equivalent.
• 5+ years of experience in public accounting, risk and controls/IT compliance, Internal Audit, or an equivalent role.
• CPA/CISA or other relevant certification is strongly preferred.
• Big 4 experience is preferred.
• Knowledge of and experience working with software engineering teams and standard engineering methodologies, including Agile and CI/CD.
• Ability to work independently to plan, complete, and deliver on projects in an assigned organizational area.
• Excellent stakeholder management skills (i.e., expectation setting, education, prioritization, etc.).
• Experience with control environments related to financial SaaS systems, NetSuite or other similar cloud ERP is a plus.
• Experience working with multinational organizations and teams distributed across multiple time zones is a plus.

• We offer you the flexibility to work where you work best! For this role, you can be within the Americas region as long as we have a work location.
• This team operates within the Eastern Time Zone for collaboration.

The United States base range for this position is $119,210-$170,300, plus equity. The benefits available for this position include health insurance, six month paid parental leave, 401(k) retirement plan, monthly meal allowance, 23 paid days off, 13 paid flexible holidays, paid sick leave. These ranges may be modified in the future.