About the role
<div class="content-intro"><p><span style="font-size: 10pt;">Please note that we will never request payment or bank account information at any stage of the recruitment process. As we continue to grow our teams, we urge you to be cautious of fraudulent job postings or recruitment activities that misuse our company name and information. Please protect your personal information during any recruitment process. While Monks may contact potential candidates via LinkedIn, all applications must be submitted through our official website (<a class="c-link c-link--focus-visible" href="http://monks.com/careers" target="_blank" data-stringify-link="http://monks.com/careers" data-sk="tooltip_parent">monks.com/careers</a>).</span></p></div><h2><strong>About the Role</strong></h2> <p>As an Information Security Analyst, your core responsibility will be safeguarding customer and company data, protecting the company's reputation, and making vital decisions that are integral to shaping the state-of-the-art security posture for the business's future success. This person should detect new threats, understand the risk assessment process, contribute to the action plan development, and promote the progress of mitigation implementation and evolution. The position will cover security assessment activities, technical controls evaluation, risk assessments, management of clients' requirements, and internal awareness. As a valuable member of our global Infosec Team, you will have the opportunity to collaborate with colleagues across the globe, fostering a dynamic and diverse work environment. Your role will involve working closely with stakeholders from various departments, forging strong partnerships to ensure the collective success of our information security initiatives.</p> <p>&nbsp;</p> <h3><strong>Responsibilities:</strong></h3> <ul> <li>Assess and track security posture across platforms and systems, following up on remediation tasks to close gaps efficiently.</li> <li>Collaborate with stakeholders across technology, legal, and business units to integrate security requirements into projects, services, and vendor relationships.</li> <li>Perform regular assessments of technical environments to ensure compliance with internal policies and external standards.</li> <li>Identify and document risks associated with third-party vendors, cloud infrastructure, access management, and system configurations.</li> <li>Evaluate and recommend technologies that enhance our security and compliance posture (e.g., DLP, EDR, network segmentation, cloud security tools).</li> <li>Collaborate with the alignment to the global Information Security Management System (ISMS), based on ISO/IEC 27001:2022 and best practices from w