Job description
Innovid is the leading independent omnichannel ad tech platform, empowering marketers to create, deliver, measure, and optimize ad-supported experiences that people love. In 2025, Innovid and Flashtalking merged to create a transparent, scalable alternative to big-tech, walled-gardens, and point solutions across CTV, digital, linear, and social channels. As part of Mediaocean, Innovid is tied into the industry’s core ad infrastructure for omnichannel planning, buying, and billing. We are proud to lead the industry with our innovation, intelligence, and independence as the company best-suited to power the future of advertising.
The Information Security Analyst supports the organisation’s security operations, governance, and risk management activities, ensuring the confidentiality, integrity, and availability of information assets. This role requires a technically capable individual with a solid understanding of security operations and GRC fundamentals and exposure to modern cloud environments.
The Impact You’ll Make:
- Monitor, investigate, and respond to security alerts and incidents, escalating significant incidents to senior analysts or management.
- Perform vulnerability assessments, assist with remediation tracking, and support continuous improvement of the organisation’s security posture.
- Maintain and improve operational security controls, including endpoint protection, access reviews, log monitoring, and cloud configuration checks to strengthen overall security posture.
- Support the maintenance and operation of the Information Security Management System (ISMS) in alignment with ISO 27001 and related frameworks.
- Assist with internal and external audits, including evidence gathering, control testing, and follow-up actions.
- Contribute to Governance, Risk and Compliance (GRC) activities such as policy management, risk assessments, and awareness initiatives.
- Support responses to client and partner security questionnaires, RFIs, and RFPs.
- Maintain accurate documentation, metrics, and reports to support operational and compliance objectives.
What You’ll Bring to Us:
- Foundational to intermediate knowledge of information security concepts, incident response, and vulnerability management.
- Advanced Level of English (written and verbal)
- Working knowledge of security platforms including SIEM, SOAR, EDR, and vulnerability management tools.
- Familiarity with cloud platforms (e.g. AWS, Azure) and common security controls within these environments.
- Awareness of ISO 27001, SOC2 or similar security frameworks.
- Strong analytical, communication, and documentation skills with attention to detail.
- Ability to collaborate effectively across both technical and business teams.
What We’ll Offer You:
- Unlimited Vacations
- Monthly Inflation updates
- Lunch card
- OSDE 410 as medical assurance
- English lessons
- Gym coverage
- Internet coverage
- Stock Units (RSUs)
- Unlimited Coaching Sessions
- Learning & Development - Tools and Training
- Hybrid & flexible working model - nice offices in Palermo with endless snacks & beverages
- High visibility roles with a tremendous amount of growth potential
- Global team and cross-company collaboration unlike anywhere else!
