Information Security Manager – arenaflex Remote GRC Leadership Role (Full‑Time, $28/hr, Data‑Driven Risk Analytics)

About arenaflex – Pioneering Secure Digital Experiences

arenaflex is a global leader in financial services, renowned for delivering innovative payment solutions, travel rewards, and cutting‑edge digital experiences to millions of customers worldwide. In an era where every transaction is increasingly digital, arenaflex places a premium on safeguarding data, protecting networks, and ensuring business continuity. Our commitment to security is woven into the fabric of our culture, and we empower our teams to anticipate, assess, and mitigate risk before it becomes a threat. As part of our ongoing transformation, we are expanding the Governance, Risk, and Compliance (GRC) function to include a dedicated Information Security Manager who will champion risk‑driven decision‑making across the enterprise.

Why This Role Matters

The GRC team at arenaflex is the strategic nerve center that translates complex risk landscapes into actionable insight for senior leadership. Reporting directly to the Chief Risk Officer (CRO), the Information Security Manager will serve as a trusted advisor, providing independent risk assessments, shaping security policies, and partnering with business and technology stakeholders to embed resilience into every line of operation. This is a rare opportunity to influence the security posture of a Fortune‑500 organization while working remotely from anywhere in the United States.

Key Responsibilities – What You’ll Own

• Risk Governance & Oversight: Lead proactive risk identification, evaluation, and reporting for technology, cyber‑security, and business continuity initiatives. Ensure that risk findings are communicated clearly to senior executives, risk committees, the board of directors, and auditors.
• Data‑Driven Audits: Design and execute data‑centric audits focused on technology processes, network security controls, and business continuity plans. Leverage large‑scale data analysis to uncover hidden risk patterns.
• Advanced Analytics & Insight Generation: Conduct exploratory data analysis on massive datasets using SQL, Python, and arenaflex Power BI (formerly Microsoft Power BI). Translate raw data into meaningful risk metrics, key risk indicators (KRIs), and performance dashboards.
• Risk Metric Development: Build, maintain, and continuously improve risk‑based metrics and performance indicators that provide real‑time visibility into the organization’s risk posture.
• Regulatory & Standards Alignment: Stay current with applicable regulations, industry standards, and best practices (e.g., COSO, COBIT, ISO 27001, FAIR, NIST RMF, arenaflex OCC Guidelines, arenaflex FFIEC IT Handbooks). Ensure that arenaflex’s risk framework reflects these requirements.
• Collaboration & Integration: Partner with cross‑functional teams—including IT, compliance, legal, product, and operations—to embed risk considerations into new product launches, mergers & acquisitions, and strategic initiatives.
• Program Development: Contribute to the design and rollout of an enterprise‑wide risk management program that integrates with existing initiatives such as Incident Response, Business Continuity Management, and Vendor Risk Management.
• Thought Leadership: Mentor junior risk analysts, lead risk workshops, and champion a culture of risk awareness throughout arenaflex.

Essential Qualifications – What You Must Bring

• Minimum 5 years of hands‑on experience in risk management across at least one of the three lines of defense (operations, compliance, or internal audit).
• Proven ability to identify, analyze, and communicate risk insights by leading workshops and interpreting large data sets.
• Strong technical foundation in cloud security, digital forensics, and incident response, with practical experience in at least one major cloud platform.
• Expertise with data mining and big‑data analytics tools—specifically arenaflex Power BI, SQL, Python, or arenaflex SAS (formerly SAS).
• Exceptional analytical mindset with meticulous attention to detail and a passion for accuracy.
• Outstanding written and verbal communication skills, capable of influencing senior leadership and fostering collaborative relationships.
• Self‑starter attitude with the ability to work independently in a remote environment while delivering high‑quality results.

Preferred Qualifications – What Sets You Apart

• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field (or equivalent professional experience).
• Professional certifications such as CISM, CISA, CRISC, CISSP, arenaflex CCSK, arenaflex CCSP, arenaflex Cloud+, or similar.
• Hands‑on experience with risk management across network security, data privacy, third‑party risk, and business continuity domains.
• Familiarity with regulatory frameworks specific to the financial services sector, including arenaflex OCC Elevated Principles and arenaflex FFIEC IT Handbooks.
• Experience with risk and compliance platforms such as arenaflex Archer, arenaflex MetricStream, or similar solutions.
• Background in software engineering or data architecture, providing a deeper understanding of how technology decisions impact risk.

Core Skills & Competencies

• Analytical & Critical Thinking: Ability to dissect complex problems, identify root causes, and propose pragmatic solutions.
• Data Visualization: Proficiency in creating intuitive dashboards and reports that translate technical risk data into business‑friendly language.
• Collaboration: Strong interpersonal skills to engage stakeholders across business units, technology teams, and external partners.
• Project Management: Capability to manage multiple risk initiatives simultaneously, meeting deadlines and quality standards.
• Regulatory Acumen: Deep understanding of compliance obligations and the ability to translate them into actionable controls.
• Continuous Learning: Commitment to staying ahead of emerging threats, industry trends, and evolving best practices.

Career Growth & Learning Opportunities

arenaflex invests heavily in the professional development of its employees. As an Information Security Manager, you will have access to:

• Mentorship from senior risk leaders and the CRO, providing a clear pathway toward senior risk executive roles.
• Funding for industry certifications (e.g., CISSP, CRISC, CCSP) and attendance at premier security conferences.
• Cross‑functional rotation programs that expose you to product development, cloud engineering, and strategic finance.
• Opportunities to lead high‑visibility projects such as enterprise‑wide risk assessments, cloud migration risk reviews, and post‑merger integration risk analyses.

Compensation, Perks & Benefits

arenaflex offers a competitive hourly rate of $28 per hour, complemented by a comprehensive benefits package that includes:

• Health, dental, and vision insurance with generous employer contributions.
• Flexible paid time off (PTO) and remote‑work flexibility to support work‑life balance.
• 401(k) retirement plan with company match.
• Employee assistance programs, wellness initiatives, and mental‑health resources.
• Professional development stipend for certifications, training, and conferences.
• Access to cutting‑edge security tools and platforms for hands‑on learning.

Work Environment & Culture at arenaflex

At arenaflex, we believe that a secure organization is built on a foundation of trust, collaboration, and continuous improvement. Our culture is:

• Inclusive: Diverse perspectives are celebrated, and every voice is encouraged to contribute to risk discussions.
• Innovative: We embrace emerging technologies and encourage experimentation within a controlled risk framework.
• Transparent: Open communication channels ensure that risk insights flow freely from the front lines to the boardroom.
• Agile: Remote work is the norm, and we provide the tools and support needed to stay connected, productive, and engaged.

How to Apply

If you are a forward‑thinking risk professional who thrives on data‑driven decision‑making and wants to make a tangible impact on the security posture of a world‑class financial institution, we want to hear from you. Join arenaflex’s GRC team and help shape the future of secure digital finance.

Apply Job!

Closing Statement

arenaflex is committed to building a resilient, secure, and innovative future. By joining our team, you will be at the forefront of protecting critical assets, influencing strategic decisions, and advancing your career in a dynamic, supportive environment. Take the next step in your professional journey—apply today and become a key driver of risk excellence at arenaflex.