Response frequency

Owe Strömbäck

Information security and GRC specialist who delivers sustainable results
I am a successful IT GRC specialist and Information Security professional with the objective to deliver customized business solutions and assessments to fulfil business, legal and regulatory requirements in relation to Cybersecurity, Privacy (GDPR), and Information Security (ISO 27001).

The framework I have developed and processes for implementation and execution have proven to be efficient, reusable and highly appreciated by multiple customers and colleagues.

For me the customer and my colleagues are always in focus, being available, deliver qualitative and sustainable results.


Länsförsäkringar AB
Projektledare samt Intern kontroll ansvarig för ITGC samt GRC
Jan 2019 - Feb 2020
100 %
Intern kontroll ansvarig (ny roll) IT-säkerhet inom LFAB koncernen (huvudkontor) i konsultroll som Projektledare. Uppbyggnad av relaterad Risk & Kontroll struktur samt införande på alla enheter (objekt, processer samt applikationer) och effektiv efterlevnad . Från Ax till Limpa avseende ITGC GRC.
GRC ITGC Projekt ledare Intern kontroll IKA IKFR Risk Kontroll IT säkerhet Efterlevnad

Sentor MSS AB
Information Security and Service Delivery manager
Mar 2016 - Dec 2019
100 %
Service Delivery manager for Compliance services which covers Security and Privacy (GDPR), Risk management and the Operational management of the compliance team and delivered result from this service. Main product was ISO27001 certification, including privacy, at fixed price.
SDM ISO27001 GDPR Awareness Compliance GRC Consultancy Management Product development Information security
Quality Assurance and/or Lead implementor
Mar 2018 - Pågående
Stockholm, Umeå, Lycksele
100 %
Delivery of an ISMS based on ISO27001 for certification
QA SDM ISO27001 Awareness training Risk SoA
Quality Assurance and consultant
Mar 2018 - Dec 2019
100 %
Delivery of an ISMS based on ISO27001 for certification
QA SDM Risk Compliance Consultancy SoA
Sentor MSS AB
GDPR advisor
Mar 2018 - May 2018
100 %
Assess the current status of their processing of personal information and existing policies / processes. Result was a GAP analysis and priority list.
GDPR DPIA RoP Assessment GAP
Lead implementor, Information security and GDPR specialist
Feb 2018 - May 2018
100 %
GDPR GAP assessment, Records of Processing and Data Protection Impact analysis, Risk workshop to create ISO27001 Statement of Applicability (SoA) and Risk Treatment Plan (RTP).
GDPR ROP DPIA SOA RTP ISMS DPO Information security
Quality assurance, Risk management and advisor
Aug 2017 - Sep 2018
100 %
Delivery of an ISMS based on ISO27001 for compliance
QA SDM Risk SoA Policy ISMS
Quality assurance, Advisor and information security consultant
Sep 2016 - Pågående
100 %
Delivery of an ISMS based on ISO27001 for certification and GDPR compliance
QA ISO27001 project management GDPR ROP DPIA SOA Risk management

Ikano Bank
Compliance (IT) Manager
Aug 2013 - Mar 2016
100 %
Make sure that IT is compliant with the applicable laws, regulations, internal policies and guidelines. Within IT we try to work across functional teams to secure clear IT processes, effective IT controls to support business requirement, continuity and recovery. In addition, I work with measurements including key risk indicators (KRIs) and key performance indicators (KPIs) to ensure performance and deliveries of the IT organization related to IT compliance. I also work closely with the compliance and risk, as well as audit functions, to support the establishment of the risk and control culture within the IT organisation. By this the GRC aspects of information security and GDPR are sufficiently in-place, continuously improved and monitored.
Compliance Risk management Audit Internal Control RTP GRC

ISMS from start to end

Personality traits

Hus och trädgård
Förvandla nedgångna hus och trädgårdar till något fint att vara stolt över
Hälsa och Mat
Träning av kropp (och själ) samt älskar att laga och äta god mat
Världen och vi som bor där
Arbetat i nästan hela världen och nöjet att arbete över gränser och kulturer


Business schools
Information management and leadership
ISO CISO Privacy PM Compliance Regulations Finance Risk Governance ITGC


Audit management
Compliance management
Internal control
ISO27001 and ISMS
IT Management
Program and project management
Risk Management


Compliance management
Information Security
Internal Control
Lead implementor
Project management
Quality Assurance
Risk Management
Service Delivery management




Full time
Right now


Business driven
High capacity
No Stress
High workload
Team player

Primary contact

Create an account or login to view contact information.
This feature is only available logged in.