Information Security Compliance Lead

Position description:

This Information Security Compliance Lead will lead the implementation and improvement of administrative and technical controls of the company's Information Security Management System. This person should understand the risk management process in order to define action plans to mitigate risks, follow up the progress and measure the effectiveness. The role involves coordinating a regional team of InfoSec analysts, improving the internal processes and services delivered, creating engagement with different stakeholders within the business and managing internal, external compliance audits across the LATAM region and collaborating with peers in the other regions.

Key accountabilities:

• Lead the alignment to the global ISMS (based on ISO27001:2022) over the LATAM region.
• Integrate the compliance efforts in the region with the global roadmap.
• Efficiently coordinate and align regional teams to ensure seamless collaboration and achievement of objectives.
• Ensure timely completion of security compliance activities, meeting deadlines and milestones effectively.
• Follow up and report the compliance status of processes and technology in the region. 
• Identify and remediate risks related to information security in the technical environment, the relationships with third parties or any component of the company's operations.
• Understand about technical and administrative controls, particularly in the context of corporate solutions such as Identity Management, MDM, Data Encryption and Networking.
• Provide support during internal and external audits, including preparing documentation, responding to inquiries, and collaborating with cross-functional teams to address audit findings.
• Define comprehensive security objectives and participate in developing a strategic roadmap to guide the implementation of robust security measures and initiatives.

Minimum Qualifications:

• Bachelor's degree in Computer Science, Computer or Systems Engineering or equivalent.
• Minimum of 6 years of experience in related positions, encompassing people management responsibilities.
• Advanced English (written and spoken).
• Solid knowledge of information security, capable of offering guidance to technical domains and actively participating in technical discussions.
• Knowledge and experience implementing and maintaining the standard ISO 27001/2.
• Experience on InfoSec risk management.

Qualities:

• Excellent communication and social skills.
• Ability to confidently present findings to the management as well as to others with non-technical background.
• Ability to coordinate work within the teams and with other departments.
• Prioritization capabilities due to commitments and deadlines.
• Self-directed, resourceful, and a critical thinker with attention-to-detail and proactive problem-solving skills.
• Ready to learn new contents both from others or self-learned.
• Passionate about self-improvement and suggesting improvements to processes or activities.

Preferred Qualifications:

• +3 years of experience in Security Risk Management, Information Security, Security controls or Security/IT Consulting.
• Information Security certifications. (e.g. CISSP, CISM, CRISC, CISA, CompTIA Security+)
• Experience in leading and collaborating with global, geographically distributed teams, demonstrating cultural sensitivity, adaptability, and a flexible leadership approach.

About Media.Monks:

Media.Monks is the purely digital operating brand of S4Capital plc that connects 8,600+ digital natives across one global team. We are united by a mission to shift industries forward and pave the path towards ambitious outcomes so our clients and our people can realize their full potential for growth. Our unified model combines solutions in media, data, social, platforms, studio, experience, brand and technology services to help our clients continuously reinvent themselves throughout increasingly rapid cycles of disruption. Our efforts to shape culture, build innovative technologies and unlock the future of growth have earned recognition from numerous esteemed panels: we maintain a constant presence on Adweek’s Fastest Growing lists (2019-22), regular recognition at Cannes Lions, inclusion in AdExchanger’s Programmatic Power Players (2020-23), the title of Webby Production Company of the Year (2021-23), a record number of FWAs, and have earned a spot on Newsweek’s Top 100 Global Most Loved Workplaces 2023. Together, these achievements solidify our experience in digital innovation, excellence in craft, and commitment to personal growth.

While we continue to grow our teams, please be mindful of fraudulent job postings and recruiting activities that may use our company name and information. Please be mindful to protect your personal information, especially your national identification number, and bank account information during a recruiting process. While Media.Monks may reach out to potential candidates via LinkedIn, we will always ask applicants to apply through our website (https://media.monks.com/careers) and will never ask for payment or bank account information during the recruitment process.

Disclaimer: 

• Responsible for resourcing and implementing security controls for your teams processes and systems

• Responsible that all your personnel apply information security in accordance with the established information security policy