InfoSec & Compliance Lead

Overview

Monolith AI is seeking an InfoSec & Compliance Lead to own, run, and evolve our information security strategy and practices. This role balances technical expertise, regulatory and compliance knowledge, and the ability to influence and educate across the organization.

Responsibilities

• Information Security Ownership: Manage policies, controls, and frameworks; secure our cloud infrastructure.
• Compliance & Governance: Lead ISO27001 compliance, ensure GDPR adherence, and stay updated on emerging standards.
• Supplier & Vendor Security: Establish vendor risk management programs and monitor supplier security.
• Education & Culture: Build a security-first culture by educating employees and influencing senior leadership.
• Continuous Improvement: Recommend and implement security tools, automation, and monitoring improvements.

Requirements

• 4-7 years of experience in information security or compliance roles
• Hands-on ISO27001 compliance experience
• Strong GDPR knowledge across technical and business operations
• Solid understanding of cloud infrastructure security (AWS, Azure, or GCP)
• Experience with supplier/vendor risk management
• Excellent communication skills with an ability to educate and influence
• Proactive, analytical, and autonomous work style

Nice to Have

• ISO27001 Lead Implementer or Auditor certification
• Professional security certifications (e.g., CISSP, CISM, CCSK)
• Data protection certification (CIPP/E, CIPM)

What We Offer

Join a fast-growing AI scale-up where security and compliance shape the company future. Enjoy competitive compensation, flexible working, personal development support, and a chance to make a tangible impact on AI and cloud technologies.

Key Skills/Competency

• Information Security
• Compliance
• ISO27001
• GDPR
• Cloud Security
• Vendor Management
• Risk Management
• Policy Development
• Continuous Improvement
• Security Education