(Senior) Information Security Analyst - Join the Fight Against Financial Crime!
Hawk is revolutionizing anti-money laundering (AML) and fraud detection with our cutting-edge AI-powered technology. We empower banks and payment providers globally to identify more crime, reduce false positives, and stay ahead of sophisticated threats. Join us in making a real impact in the global fight against financial crime!
We offer a culture built on trust, collaboration, and a shared passion for innovation. As a Hawk team member, you'll have the opportunity to grow professionally and contribute to a mission that matters.
Your Mission: Become a Security Champion
As a (Senior) Information Security Analyst, you'll be a critical player in maintaining the trust of our customers, supporting our sales efforts, and ensuring we adhere to the highest security standards, including ISO 27001. You will be the technical and communication bridge between our customers, auditors, internal teams, and our security toolset.
From managing security inquiries and RFPs to strengthening our ISMS and fortifying endpoint and access security, you'll play a vital role in safeguarding Hawk's platform, data, and operations.
If you possess a blend of deep technical capability, exceptional communication skills, and strong security fundamentals, and can confidently interact with both technical and non-technical stakeholders, we want to hear from you! Fluent German is essential, as this role involves regular interaction with German-speaking clients.
What You'll Do: Key Responsibilities
Customer & Pre-Sales Security Support
Respond to security questionnaires, RFPs, and due-diligence requests in collaboration with Sales and Pre-Sales.
Participate in customer calls to articulate Hawk's security posture and address technical, compliance, and infrastructure-related questions.
Represent Hawk's security capabilities with confidence and clarity to regulated financial institutions.
ISMS & Compliance (ISO 27001)
Support the ongoing operation and improvement of Hawk's ISMS, ensuring alignment with ISO 27001 controls and underlying processes.
Assist in internal audits, evidence gathering, and risk assessments.
Contribute to certification readiness by driving documentation, process adherence, and corrective actions.
Security Tooling & IT Security Operations
Provide operational support for core IT & security tools, including JumpCloud (SSO/IdP), MDM, endpoint policies, and access management workflows.
Support the roadmap toward centralized, secure workstation management — monitoring, controlling, and updating all endpoints across macOS, Windows, and Linux.
Assist in evaluating and managing security-related 3rd party SaaS tools used across the business.
Platform & 3rd-Party Security Oversight
Monitor the security posture of Hawk's corporate tools, infrastructure, and integrations.
Support vendor assessments and due diligence for security-related tools.
Collaborate with Engineering, IT, and InfoSec to strengthen platform and enterprise security baselines.
Cross-Functional Collaboration & Stakeholder Communication
Work closely with Information Security, IT, Engineering, Sales, Customer Success, and Procurement teams.
Translate complex technical and security concepts into clear explanations for both technical and non-technical audiences.
Contribute to internal security awareness, documentation, and operational processes.
What You Bring to the Table: Your Profile
Technical Experience & Skills:
5+ years of hands-on experience in Information Security, IT Security, or System Administration within a B2B tech or SaaS environment.
Strong technical competence across multiple operating systems (macOS, Windows, Linux) including admin-level experience.
Experience with identity and access management tools (e.g., JumpCloud, Okta), MDM solutions, and enterprise security platforms.
Solid understanding of IT security fundamentals, including authentication, endpoint security, encryption, and network basics.
Familiarity with ISO 27001 or ISMS operations; experience supporting audits or certification maintenance.
Basic security certifications (e.g., CompTIA Security+, CEH) are highly desirable.
Communication & Stakeholder Management:
Fluent German and English — mandatory due to regular customer-facing security discussions.
Ability to articulate complex technical issues clearly to diverse audiences (engineers, customers, auditors, leadership).
Strong documentation skills with attention to accuracy and clarity.
Bonus Points:
Experience supporting security RFPs, due-diligence calls, or regulated financial customers.
Exposure to 3rd-party risk management or SaaS security tooling.
A proactive, structured, and collaborative approach.
Ability to balance multiple priorities and operate effectively in a fast-paced environment.
Ready to make a difference? Apply now and help us protect the world from financial crime!