The point where experts and best companies meet
Monday Associate - Temporary months Italy, Abruzzo, Chieti 799201144
Share
As a GRC Specialist at monday.com, you will have the opportunity to make a significant impact on our global security operations. You will be part of a small, boutique team where your voice will be heard and respected. If you are a team player, a creative thinker, with a “can do” approach and have a keen interest in GRC frameworks, this role is for you!
As a GRC Specialist at monday.com, you will have the opportunity to make a significant impact on our global security operations. You will be part of a small, boutique team where your voice will be heard and respected. If you are a team player, a creative thinker, with a “can do” approach and have a keen interest in GRC frameworks, this role is for you!
- Compliance and certifications : manage security external audits (such as ISO 27001 and SOC 2, including evidence collection, stakeholder collaboration, and auditor reporting)
- Policies and procedures : Review and update, alongside exceptions management, and suggestion of corrective actions. Lead user access review cycles and security routines weeks across the organization
- Awareness and education : lead security awareness and training activities, including phishing campaigns, online tutorials, and global Security & Privacy Weeks operations
- 3rd party vendor assessment : conduct thorough vendor assessment processes for all risk levels, and for software, service providers, and external workforce
- Security customer-facing effort : answer Tier 3 security questionnaires, review legal contracts from a security perspective, and maintain our security internal knowledge base
- Serve as a go-to person for employees on security and compliance matters
- Perform other team-related duties as needed
- 2 years of professional experience in GRC, information security, compliance, or a similar position (preferably in a startup or a SaaS company)
- Strong understanding of security and privacy frameworks, such as ISO 27001, SOC 2, GDPR, HIPAA, and NIST
- Legal knowledge and understanding is an advantage
- Strong sense of ownership and responsibility
- Excellent project management and organizational skills, with the ability to handle multiple tasks simultaneously
- Technical orientation and ability to collaborate with various stakeholders
- High level of professionalism, detail-oriented, proactive, and motivated
- A 'can do' attitude, creativity, and problem-solving approach
- Excellent communication skills in Hebrew and English, both written and verbal
These jobs might be a good fit
