Junior/Mid Information Security Specialist

Company Description

SmartRecruiters is a values-driven, global-minded, and well-funded tech employer on a mission to connect people to jobs at scale. As a global leader in enterprise recruitment software, SmartRecruiters offers a cloud-based global Hiring Success platform that allows teams to attract, select, and hire the best talent. 4,000 companies worldwide rely on SmartRecruiters to achieve hiring success—including brands like Bosch, LinkedIn, Skechers, and Visa—using recruitment marketing, CRM, AI, ATS, and a marketplace of 600+ connected vendors all within one scalable platform.

We are proud to offer a collaborative, diverse, and a remote-first work environment, as well as competitive salaries and generous equity. We believe in promotion from within, so high performance can lead to upward mobility. Needless to say, we make sure you’re taken care of. Our inclusive office environment welcomes and respects all.

SmartRecruiters enables Hiring Without Boundaries™ by freeing talent acquisition teams from legacy applicant tracking software. SmartRecruiters’ next-generation platform serves as the hiring operating system for 4,000 customers like Bosch, LinkedIn, Skechers, and Visa. Companies with business-critical hiring needs turn to SmartRecruiters for best-of-breed functionality, world-class support, and a robust ecosystem of third-party applications and service providers.

Job Description

The Information Security Specialist supports the company's efforts to maintain a robust and effective information security posture. This role assists with ensuring compliance across various regulatory frameworks, collaborates with key stakeholders, and contributes to the ongoing improvement of our Information Security Management System (ISMS).

Responsibilities:

• Support the development and maintenance of a complex regulatory compliance program spanning multiple areas of IT security
• Assist in managing stakeholder relationships, expectations, and communication regarding IT risk management and compliance initiatives
• Support the team in managing internal and external projects
• Conduct and document activities such as meeting schedules, minutes, and reports
• Collaborate with teams in maintaining the SOC-2 compliance framework
• Support ISO 27001 audit preparation, stakeholder coordination, and post-audit improvement initiatives
• Assist with aspects of the Internal Audit Program
• Participate in User Access Reviews and collaborate with stakeholders on continuous improvement
• Assist with Internal Control Testing procedures
• Contribute to the administration and maintenance of the ISMS tool used at SmartRecruiters
• Support vendor review processes and contribute to the third-party risk management program
• Demonstrate initiative by offering ideas and automation solutions to enhance ISMS processes

Qualifications

• Project Management Experience: proven experience in managing IT or information security-related projects. This could include tasks like planning, resource allocation, timeline management, and reporting
• Communication Skills: ability to effectively communicate technical concepts to stakeholders at various levels
• Experience in internal and external audits
• Knowledge of ISO 27001, SOC 2 Type II, TISAX

Additional Information

SmartRecruiters is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.