Job Description
Join arenaflex, a dynamic and innovative organization, as a seasoned Full Stack Cybersecurity Specialist – Governance, Risk, and Compliance (GRC) Professional. This exciting opportunity allows you to contribute to the enchanting world of arenaflex from the comfort of your own home, working in a remote, part-time or full-time capacity. With a competitive annual salary of $80,000, you'll have the chance to grow your career while making a significant impact on arenaflex's cybersecurity landscape. About arenaflex arenaflex is a leading organization in the industry, renowned for its commitment to innovation, customer satisfaction, and employee well-being.
Our team of experts is dedicated to formulating and implementing techniques and recommendations to help the organization align with its commercial enterprise dreams while dealing with dangers correctly and meeting industry guidelines and standards. We work on slicing-edge technology and towards new innovations in the area of cybersecurity to at ease the magic. Reporting to As a Full Stack Cybersecurity Specialist – GRC Professional, you will report directly to the Manager (Governance, Threat, and Compliance), Cyber and Statistics Safety.
Key Responsibilities - Third Party Risk Management (TPRM) Software: Assist arenaflex's global third-party risk management method for wearing out cyber danger-related due diligence exams. - Validate Incoming Third-Party/Internal Risk Assessment Requests: Work with business stakeholders to confirm the details of the request and the scope of the engagement. - Behavior Kick-Off Periods: Coordinate with business stakeholders and related third-party for conducting the TPA. - Coordinate Due Diligence Questionnaires: Distribute due diligence questionnaires to internal stakeholders/third-party, review submitted questionnaires for completeness, and decide dangers springing up from the contemporary design and operational effectiveness of the internal/third-party's security controls.
- File Responses and Associated Findings: File responses, associated findings, and remediation plans in the arenaflex systems. - Draft/Review Reviews: Draft/review reviews for the checks performed and ensure respective business stakeholders finalize critiques. - Liaison: Be a sturdy liaison to ensure any queries are spoken back concerning the risk control technique and evaluation to the business or third events as required. - Continuous Tracking: Carry out continuous tracking of the third-party via arenaflex systems for current/new findings and music any findings to closure.
- Opportunities of Improvement: Perceive opportunities of improvement inside the arenaflex systems and strategies. - Collaboration: Paintings intensely with chance lead/supervisor to time table and execute a spread of different assisting activities related to the chance management program. Governance, Threat, and Compliance - Lead and Help the Improvement: Lead and help the improvement of cybersecurity hazard and compliance-related strategies to ensure treatment of cybersecurity chance consistent with the agency's threat urge for food.
- Maintain and Document Compliance: Maintain and document compliance towards information safety-associated guidelines and processes through planning, checking out, remediating, tracking, and reporting on manipulate critiques and threat checks. - Lead Development and Shipping: Lead development and shipping of compliance and danger education and ongoing communications that assist power tradition of protection and compliance. - Regulatory Changes: Retaining abreast of regulatory changes, new guidelines, technology, and internal policy modifications on the way to further pick out new key chance regions.
- ISO 27001 Popular: Lead the team to preserve and guide ISO 27001 popular. Competencies & Attributes for Fulfillment - Understanding and Competencies: Outstanding stakeholder management, working understanding of information security-related high-quality practices and requirements consisting of ISO 2700x, SOC 2 necessities, SSAE 16/18 requirements, and many others. - Experience in the Control of Hazard: Experience in the control of hazard, controls, and compliance. - Expertise of Hazard Evaluation Methodologies: Expertise of hazard evaluation methodologies – qualitative/quantitative.
- Analytical and Problem-Solving Abilities: Super analytical and problem-solving abilities. - Presentation Making and Delivery Abilities: Super presentation making and delivery abilities. Personal Attributes - Robust Interpersonal Abilities: Ability to navigate rapid-paced surroundings and be bendy with working hours. - Fantastic Communication Abilities: Fantastic communication abilities, both verbal and written. - Adapt Speedy to Converting Conditions: Adapt speedy to converting conditions and power high-quality change.
Preferred Training & Experience - Applicable Bachelor's/Grasp's Diploma: Applicable bachelor's/grasp's diploma from an accepted university or equivalent experience. - 4 Years of Enjoy: 4 years of enjoy throughout third-party risk control, records security, and audit & compliance tracking (minimum of 2-3 years in TPRM/internal audit). - Preferred Revel In: Preferred revel in with a massive company and/or large four accounting company. - One or Greater Credentials: One or greater credentials – CISA, CRISC, ISO27001 L./LI, CISSP.
- Experience in AI/ML: Experience in AI/ML is a plus. About arenaflex
Careers We're excited to learn more about you! Please take a few minutes to answer the following questions: 1. Tell me about yourself: Provide a brief precis of your professional heritage, capabilities, and reviews. Focus on applicable info and your enthusiasm for the function. 2. Why do you want to paintings for this organization?: Speak the agency's values, project, or popularity that align along with your profession desires. Point out precise elements of the business enterprise that attracted you.
3. What's your best electricity?: Spotlight a applicable energy, including problem-fixing, management, or a technical skill. Support your solution with an example. 4. What's your greatest weakness?: Talk a weak point, but emphasize how you're operating to improve it. For instance, "i am operating on improving my time management abilities." 5. Tell me approximately a hard situation you've got confronted at paintings and the way you handled it: Use the superstar approach (state of affairs, venture, movement, result) to provide an in-depth response, showcasing your hassle-fixing talents.
6. Why need to we hire you for this role?: Spotlight your relevant qualifications, stories, and how they make you the excellent match for the position. Mention your enthusiasm for the organization and the job. 7. In which do you notice yourself in 5 years?: Share your career aspirations and how they align with the organization's boom. This demonstrates long-term commitment. 8. What do you understand about our merchandise/services?: Research the employer's services and point out specific services or products.
Explain how you accept as true with they gain customers. 9. How do you handle running below stress?: Describe your capacity to stay calm, prioritize tasks, and talk correctly in excessive-stress situations. Provide an example. 10. Tell me approximately a time you labored in a group: Describe a a hit team challenge. Emphasize your collaboration, conversation, and trouble-solving abilities. 11. What is your chosen paintings style or work environment?: Share your alternatives, but be adaptable. Point out that you may paintings correctly in different settings.
12. Do you have got any questions for us?: Usually have questions organized. Ask about the organization's tradition, crew dynamics, expectancies, or upcoming initiatives. It demonstrates your hobby. If you're excited about this opportunity, please click the link below to apply: For more such jobs, please click here: