Senior Associate, Governance at Universal Music Group

Woodland Hills, California, United States

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Music, Entertainment, MediaIndustries

Requirements

Bachelor’s degree in Information Security, Information Systems, Cybersecurity, or related field
Minimum of 7 years of experience in IT Security Compliance or Risk Management, preferably within media/entertainment, digital content, or high-tech environments
Expertise in NIST CSF 2.0, NIST 800-53, and experience applying these frameworks in media industry settings
Proven success managing audit lifecycles, compliance exceptions, and enterprise-level security documentation
Familiarity with common media production technologies and cloud-based collaboration tools (e.g., Adobe Creative Cloud, Avid, AWS, Fr)

Responsibilities

Lead the design, implementation, and maintenance of security and cybersecurity policies and standards that safeguard high-value content, production workflows, artist collaboration tools, and digital distribution channels
Ensure all documentation aligns with NIST frameworks, regulatory requirements (e.g., GDPR, US SOX, and Euronext Amsterdam), and industry-specific best practices
Collaborate with security teams, content security, IT, cloud infrastructure teams, and affected business partners to ensure practical implementation across diverse environments
Serve as the central point of contact for security audit activity (internal/external), including third-party assessments from content protection agencies or industry consortia
Track and manage remediation of security findings across a broad spectrum of assets and environments
Develop and maintain executive-ready reports and dashboards on security posture, trend analysis, and control maturity
Own the exception and risk acceptance process, balancing agility for creative and production teams with enterprise risk tolerance
Evaluate requests with a clear understanding of media industry constraints while ensuring risk documentation is thorough and accountable
Identify and assess cybersecurity risks across UMG
Support enterprise risk management (ERM) efforts with cybersecurity expertise specific to media production lifecycles, IP leakage prevention, and regulatory compliance
Collaborate with security and IT operations teams to implement and test key controls, ensuring alignment with creative workflows
Mature the cybersecurity compliance program roadmap in a way that enables secure innovation across UMG
Drive adoption of compliance tooling and processes across distributed and vendor-supported production environments

Skills

NIST Cybersecurity Framework

GDPR

SOX

Euronext Amsterdam

security policies

cybersecurity compliance

audit management

policy management

IT risk management

information security

Universal Music Group

Global music recording, publishing, and distribution

About Universal Music Group

Universal Music Group (UMG) operates as a major player in the global music industry, engaging in recording, publishing, and distribution across over 60 countries. The company works with a wide range of clients, from famous artists like Elton John and Taylor Swift to new and independent musicians. UMG's operations include selling physical and digital music, streaming services, licensing music for various media, and organizing live performances. The company signs artists to contracts, produces their music, and manages their publishing rights, while also offering marketing and promotional services to help artists expand their reach. UMG generates revenue through multiple channels, including music sales, streaming subscriptions, licensing fees, live performances, and merchandise. This diverse approach allows UMG to maintain its leadership position in the music market by providing comprehensive support to artists and capitalizing on various revenue opportunities.

Santa Monica, CaliforniaHeadquarters

1934Year Founded

$3,890.9MTotal Funding

IPOCompany Stage

Consumer Goods, EntertainmentIndustries

10,001+Employees

Benefits

Competitive Salary

401k

Flexible PTO

Medical, dental, visiion insurance

Student Loan Repayment Assistance & Tuition Reimbursement

Well-Being Allowance

Risks

Legal battle with Drake over 'pay-for-play' could harm UMG's reputation.

Downtown Music acquisition may face regulatory scrutiny, delaying expansion plans.

AI partnership with Amazon may not fully address evolving AI content challenges.

Differentiation

UMG leads the music industry with a diverse global presence in 60+ countries.

UMG's artist-centric streaming model enhances engagement and revenue for musicians.

UMG's strategic partnerships, like with Amazon, bolster innovation and content protection.

Upsides

UMG's acquisition of Downtown Music boosts its independent music sector presence.

Partnership with KLAY Vision positions UMG as a leader in AI-driven music innovation.

Collaboration with WPP enhances UMG's marketing capabilities and global reach.

Land your dream remote job 3x faster with AI

Try Jobo Free