Please note that we will never request payment or bank account information at any stage of the recruitment process. As we continue to grow our teams, we urge you to be cautious of fraudulent job postings or recruitment activities that misuse our company name and information. Please protect your personal information during any recruitment process. While Monks may contact potential candidates via LinkedIn, all applications must be submitted through our official website (monks.com/careers).
Job Brief
This position is intended to be involved in the implementation and improvement of administrative and technical controls of the company's Information Security Management System. This person should understand the risk assessment process to detect new threats, contribute in the action plan development and promote the progress of control implementation and evolution. The position will cover compliance activities, third parties risk assessments, management of clients requirements, internal awareness and technical controls evaluation.
Key accountabilities:
- Contribute with the implementation of the global ISMS (based on ISO27001) over the region.
- Evaluate the compliance status of processes and technology implementations and plan actions to align to the security framework.
- Identify risk related to information security in the technical environment, the relationships with third parties or any component of the company's context.
- Understand about technical and administrative controls in the different areas: networking, operations, access management, SSDLC, cloud security, end-point protection, physical security, third party risk assessment, organisation security and legal compliance.
- Act as a point of contact for third parties questions regarding information security.
- Analyse clients requirements regarding information security and evaluate their accuracy. Follow up the actions needed to comply with those requirements.
- Identify security threats and risks over processes, conducts, technology and context which may affect the information confidentiality, integrity or availability..
- Assist in the definition and construction of security measures to lower the risks identified.
- Solve low complex issues independently with minimum supervision and escalate more complex issues to accurate staff.
- Contribute in the development of awareness material and the process of delivery and measurement.
- Perform routine activities to ensure compliance with security frameworks and legislation.
- Investigate on technologies that could improve the security baseline and the compliance (e.g. DLP, end-point protection, network security, security and vulnerabilities assessment).
Minimum Qualifications:
- Bachelor's degree in Computer Science, Computer or Systems Engineering or equivalent.
- Minimum of 5 years of experience in related positions.
- Solid knowledge of security on networking, cloud, infrastructure configuration, end-point protection and SDLC.
- Knowledge of the standards ISO 27001/2, SOC2, NIST-800.
Qualities:
- Good communication and social skills.
- Ability to confidently present findings to those with either a technical or non-technical background.
- Self-directed, resourceful, and a critical thinker with attention-to-detail and proactive problem-solving skills.
- Ability to self-organise and plan activities with commitment towards results.
- Ready to learn new contents both from others or self-learned.
- Looking forward to self-improvement and suggesting improvements to processes or activities.
Preferred Qualifications:
- +2 year of experience in Security Risk Management, Information Security, Security controls or Security/IT Audit
- Information Security Certification (e.g. CISSP, Comptia Sec, CISM, CRISC, etc)
#LI-CM1
About Monks
Monks is the global, purely digital, unitary operating brand of S4Capital plc. With a legacy of innovation and specialized expertise, Monks combines an extraordinary range of global marketing and technology services to accelerate business possibilities and redefine how brands and businesses interact with the world. Its integration of systems and workflows delivers unfettered content production, scaled experiences, enterprise-grade technology and data science fueled by AI—managed by the industry’s best and most diverse digital talent—to help the world’s trailblazing companies outmaneuver and outpace their competition.
Monks was named a Contender in The Forrester Wave™: Global Marketing Services. It has remained a constant presence on Adweek’s Fastest Growing lists (2019-23), ranks among Cannes Lions' Top 10 Creative Companies (2022-23) and is the only partner to have been placed in AdExchanger’s Programmatic Power Players list every year (2020-24). In addition to being named Adweek’s first AI Agency of the Year (2023), Monks has been recognized by Business Intelligence in its 2024 Excellence in Artificial Intelligence Awards program in three categories: the Individual category, Organizational Winner in AI Strategic Planning and AI Product for its service Monks.Flow. Monks has also garnered the title of Webby Production Company of the Year (2021-24), won a record number of FWAs and has earned a spot on Newsweek’s Top 100 Global Most Loved Workplaces 2023.
We are an equal-opportunity employer committed to building a respectful and empowering work environment for all people to freely express themselves amongst colleagues who embrace diversity in all respects. Including fresh voices and unique points of view in all aspects of our business not only creates an environment where we can all grow and thrive but also increases our potential to produce work that better represents—and resonates with—the world around us.