Information Security Analyst

Please note that we will never request payment or bank account information at any stage of the recruitment process. As we continue to grow our teams, we urge you to be cautious of fraudulent job postings or recruitment activities that misuse our company name and information. Please protect your personal information during any recruitment process. While Monks may contact potential candidates via LinkedIn, all applications must be submitted through our official website (monks.com / careers).

This position involves implementing and improving administrative and technical controls of the company's Information Security Management System. The ideal candidate should understand the risk assessment process to detect threats, contribute to action plan development, and promote the progress of control implementation and evolution. Responsibilities include compliance activities, third-party risk assessments, managing client requirements, internal awareness, and evaluating technical controls.

1. Contribute to the implementation of the global ISMS (based on ISO27001) in the region.
2. Evaluate process and technology compliance, and plan actions to align with the security framework.
3. Identify information security risks related to the technical environment, third-party relationships, or other company components.
4. Understand controls in networking, operations, access management, SSDLC, cloud security, end-point protection, physical security, third-party risk assessment, organizational security, and legal compliance.
5. Serve as a point of contact for third-party questions regarding information security.
6. Analyze client security requirements and evaluate their accuracy; follow up on necessary actions.
7. Identify security threats and risks affecting confidentiality, integrity, or availability of information.
8. Assist in defining and implementing security measures to mitigate identified risks.
9. Resolve simple issues independently; escalate complex issues appropriately.
10. Contribute to developing awareness materials and their delivery and measurement.
11. Perform routine compliance activities with security frameworks and legislation.
12. Investigate technologies to improve security baseline and compliance, such as DLP, endpoint protection, network security, vulnerability assessments.

• Bachelor's degree in Computer Science, Systems Engineering, or equivalent.
• At least 5 years of relevant experience.
• Solid knowledge of networking security, cloud, infrastructure, endpoint protection, and SDLC.
• Knowledge of ISO 27001/2, SOC2, NIST-800 standards.

• Good communication and social skills.
• Ability to present findings confidently to technical and non-technical audiences.
• Self-directed, resourceful, critical thinker with attention to detail and proactive problem-solving skills.
• Organized, committed, eager to learn and improve processes.

• Two years of experience in Security Risk Management, Information Security, or Security/IT Audit.
• Security certifications such as CISSP, CompTIA Sec, CISM, CRISC, etc.

Monks is a digital, global marketing and technology services brand of S4Capital plc, recognized for innovation and expertise. It offers a broad range of services to accelerate business growth and transform brand interactions. Monks has received numerous industry recognitions, including being named an AI Agency of the Year and ranking among top creative companies and workplaces.

We are an equal-opportunity employer committed to diversity and inclusion, fostering a respectful environment where all voices are valued and can thrive.