This Information Security Compliance Lead will lead the implementation and improvement of administrative and technical controls of the company's Information Security Management System. This person should understand the risk management process in order to define action plans to mitigate risks, follow up the progress and measure the effectiveness. The position will coordinate and manage internal and external compliance audits.
Key accountabilities: Lead the alignment to the global ISMS (based on ISO27001) over the region.Integrate the compliance efforts in the region with the global roadmap.Follow up and report the compliance status of processes and technology in the region.Identify risk related to information security in the technical environment, the relationships with third parties or any component of the company's operations.Define security measures to lower the risks identified.Understand about technical and administrative controls in the different areas: networking, operations, access management, SSDLC, cloud security, end-point protection, physical security, third party risk assessment, organization security and legal compliance.Coordinate the information security assessments with 3rd parties (clients, suppliers).Facilitate the awareness process in terms of delivery and measurement.Coordinate and reply to internal and external audits related to information security.Investigate on technologies that could improve the security baseline and the compliance (e.g. DLP, end-point protection, network security, security and vulnerabilities assessment).Minimum Qualifications: Bachelor's degree in Computer Science, Computer or Systems Engineering or equivalent.Minimum of 6 years of experience in related positions.Solid knowledge of security on networking, cloud, infrastructure configuration, end-point protection and SDLC.Knowledge and experience implementing and maintaining the standard ISO 27001/2.Experience on InfoSec risk management.Qualities: Excellent communication and social skills.Ability to confidently present findings to the C-level as well as to others with non-technical background.Ability to coordinate work within the team and with other departments.Prioritization capabilities due to commitments and deadlines.Self-directed, resourceful, and a critical thinker with attention-to-detail and proactive problem-solving skills.Ready to learn new contents both from others or self-learned.Passionate about self-improvement and suggesting improvements to processes or activities.Preferred Qualifications: +3 year of experience in Security Risk Management, Information Security, Security controls or Security/IT AuditInformation Security Certification (e.g. CISSP, Comptia Sec, CISM, CRISC, etc)Cloud computing certifications on AWS or GCPQualities to be tested by recruitment: Discretion: should have a mindset oriented to data protection and should be discrete by default.Curiosity: should not stay comfortable with the information provided but instead try to see beyond in order to find new opportunities for improvement and innovation.Self-organized: should be capable of organize different kinds of tasks and assignments and ask for priority guidance if necessary.Work under pressure in case of deadlines.#LI-MR1
#LI-HYBRID
About Monks Monks is the global, purely digital, unitary operating brand of S4Capital plc. With a legacy of innovation and specialized expertise, Monks combines an extraordinary range of global marketing and technology services to accelerate business possibilities and redefine how brands and businesses interact with the world. Its integration of systems and workflows delivers unfettered content production, scaled experiences, enterprise-grade technology and data science fueled by AI—managed by the industry's best and most diverse digital talent—to help the world's trailblazing companies outmaneuver and outpace their competition.
Monks was named a Contender in The Forrester Wave: Global Marketing Services. It has remained a constant presence on Adweek's Fastest Growing lists (2019-23), ranks among Cannes Lions' Top 10 Creative Companies (2022-23) and is the only partner to have been placed in AdExchanger's Programmatic Power Players list every year (2020-24). In addition to being named Adweek's first AI Agency of the Year (2023), Monks has been recognized by Business Intelligence in its 2024 Excellence in Artificial Intelligence Awards program in three categories: the Individual category, Organizational Winner in AI Strategic Planning and AI Product for its service Monks.Flow. Monks has also garnered the title of Webby Production Company of the Year (2021-24), won a record number of FWAs and has earned a spot on Newsweek's Top 100 Global Most Loved Workplaces 2023.
We are an equal-opportunity employer committed to building a respectful and empowering work environment for all people to freely express themselves amongst colleagues who embrace diversity in all respects. Including fresh voices and unique points of view in all aspects of our business not only creates an environment where we can all grow and thrive but also increases our potential to produce work that better represents—and resonates with—the world around us.
While we continue to grow our teams, please be mindful of fraudulent job postings and recruiting activities that may use our company name and information. Please be mindful to protect your personal information, especially your national identification number, and bank account information during a recruiting process. While Monks may reach out to potential candidates via LinkedIn, we will always ask applicants to apply through our website (https://monks.com/careers) and will never ask for payment or bank account information during the recruitment process.
#J-18808-Ljbffr