Remote Information Security Manager – Governance, Risk & Compliance (GRC) – Full‑Time, Data‑Driven Cybersecurity Role at arenaflex

About arenaflex – Pioneering Secure Digital Experiences

arenaflex is a global leader in financial services and digital innovation, empowering millions of customers worldwide to transact, travel, and thrive in an increasingly connected world. With a relentless focus on security, compliance, and operational excellence, arenaflex invests heavily in cutting‑edge technology and world‑class talent to stay ahead of evolving cyber threats. Our culture blends high performance with collaboration, encouraging every employee to bring curiosity, integrity, and a growth mindset to the table.

Position Overview

We are seeking a seasoned Information Security Manager to join our Governance, Risk & Compliance (GRC) team on a remote, full‑time basis. In this pivotal role, you will partner directly with the Chief Risk Officer (CRO) to design, implement, and continuously improve arenaflex’s enterprise‑wide risk management framework. You will lead data‑driven risk assessments, develop actionable insights, and ensure that our technology, network, and business continuity controls meet the highest standards of security and regulatory compliance.

Key Responsibilities

• Strategic Risk Oversight: Independently identify, assess, and communicate technology‑related risks across the organization, providing clear recommendations to senior leadership, risk committees, and board members.
• Data‑Driven Audits: Conduct comprehensive, data‑centric audits of technology processes, network security controls, and business continuity plans, leveraging large‑scale data analysis to uncover hidden risk patterns.
• Advanced Analytics: Perform exploratory data analysis on massive datasets using SQL, Python, and advanced analytics platforms to generate actionable intelligence on security incidents and emerging threats.
• Risk Metrics & Reporting: Design, maintain, and evolve key risk indicators (KRIs) and performance metrics that deliver real‑time visibility into risk trends and control effectiveness.
• Policy Development & Alignment: Support the creation of an integrated risk management program that aligns with existing initiatives such as Incident Response, Business Continuity, New Product Launches, and M&A activities.
• Regulatory & Standards Compliance: Stay current on applicable regulations, industry standards, and best practices, ensuring arenaflex’s controls remain compliant with frameworks such as ISO 27001, NIST, and others.
• Collaboration & Influence: Partner with cross‑functional stakeholders—including IT, Operations, Legal, and Business Units—to embed risk awareness into daily decision‑making and project delivery.
• Continuous Improvement: Lead workshops, risk forums, and training sessions to foster a culture of proactive risk identification and mitigation throughout the organization.

Essential Qualifications

• Minimum 5 years of hands‑on experience in risk management across at least one of the three lines of defense (operations, compliance, or internal audit).
• Proven ability to analyze large volumes of data, draw meaningful insights, and translate technical findings into strategic business recommendations.
• Strong knowledge of security, cloud architecture, data analytics, and incident response domains.
• Demonstrated expertise with at least one data mining or big‑data analytics tool (e.g., SQL, Python, R, or comparable platforms).
• Excellent analytical, problem‑solving, and critical‑thinking capabilities, with meticulous attention to detail.
• Outstanding verbal, written, and interpersonal communication skills, capable of influencing senior leaders and facilitating constructive dialogue.
• Self‑starter attitude with the ability to work independently in a remote environment while maintaining high productivity.
• Bachelor’s degree in Computer Science, Information Systems, Business Administration, or a related field.

Preferred Qualifications & Certifications

• Advanced degree (Master’s or MBA) in a relevant discipline.
• Professional certifications such as CISM, CISA, CRISC, CISSP, or equivalent security credentials.
• Cloud security certifications (e.g., CCSK, CCSP, or comparable).
• Familiarity with risk assessment methodologies and frameworks such as COSO, COBIT, FAIR, or NIST RMF.
• Experience with regulatory guidance specific to the financial services sector (e.g., OCC, FFIEC).
• Hands‑on experience with governance, risk, and compliance platforms and tools.

Core Skills & Competencies

• Technical Acumen: Deep understanding of network security, cloud environments, data protection, and emerging cyber‑threat vectors.
• Analytical Expertise: Ability to manipulate and interpret large datasets, develop predictive models, and present findings in a clear, business‑focused manner.
• Strategic Vision: Capacity to align risk initiatives with broader business objectives and drive enterprise‑wide risk culture.
• Collaboration: Strong partnership skills to work effectively with diverse teams across geography and function.
• Communication: Ability to translate complex technical concepts into concise executive‑level briefings and actionable recommendations.
• Adaptability: Comfort navigating a fast‑changing regulatory landscape and evolving threat environment.

Career Growth & Learning Opportunities

At arenaflex, your professional development is a priority. As an Information Security Manager, you will have access to:

• Mentorship from senior risk leaders and the CRO, providing direct exposure to executive decision‑making.
• Continuous learning programs, including sponsored certifications, workshops, and conferences focused on cybersecurity, risk management, and data analytics.
• Opportunities to lead high‑visibility projects such as enterprise‑wide risk assessments, cloud migration security reviews, and M&A due‑diligence engagements.
• A clear career path toward senior risk leadership roles, including Director of GRC, Chief Information Security Officer (CISO), or broader enterprise risk positions.

Work Environment & Culture at arenaflex

arenaflex embraces a flexible, remote‑first work model that empowers employees to balance personal commitments with professional ambition. Our culture is built on:

• Innovation: Encouraging creative problem‑solving and the adoption of emerging technologies.
• Integrity: Upholding the highest ethical standards in every interaction.
• Collaboration: Fostering inclusive teamwork across global offices and time zones.
• Well‑Being: Offering comprehensive wellness programs, mental‑health resources, and generous paid time off.

Compensation, Perks & Benefits

arenaflex offers a competitive compensation package that reflects the expertise and impact of this role. While exact figures will be discussed during the interview process, candidates can expect:

• A base salary aligned with market benchmarks for senior risk professionals.
• Performance‑based bonuses tied to risk mitigation outcomes and business objectives.
• Comprehensive health, dental, and vision coverage for you and your dependents.
• Retirement savings plans with company matching contributions.
• Generous paid parental leave, flexible work schedules, and a fully remote work setup.
• Professional development stipend, tuition reimbursement, and access to a vast library of online courses.
• Employee assistance programs, wellness challenges, and virtual social events to keep the community spirit alive.

How to Apply

If you are passionate about safeguarding digital assets, thrive in data‑intensive environments, and are eager to influence risk strategy at a global scale, we want to hear from you. Submit your resume and a compelling cover letter outlining your relevant experience and why you are the ideal fit for arenaflex’s GRC team.

Apply Now – Join arenaflex’s Security Leadership Team

Closing Statement

arenaflex is committed to building a diverse and inclusive workforce where every voice matters. We encourage applicants of all backgrounds to apply. Take the next step in your career and help us shape a secure, resilient future for millions of customers worldwide.