Job Description
At arenaflex, we're committed to fostering a culture of innovation, collaboration, and risk management excellence. As a leading player in the private sector, we're constantly pushing the boundaries of what's possible in the world of finance and technology. Our Global Risk and Compliance (GRC) team is at the forefront of this effort, working tirelessly to ensure that our organization operates with the highest level of integrity and security. We're now seeking an exceptional Information Security Manager to join our second-line risk management crew within the GRC team.
This is an extraordinary opportunity to work with a talented group of professionals who are dedicated to building and implementing a comprehensive information security program that protects our organization's assets and reputation. About the Role As an Information Security Manager at arenaflex, you'll be responsible for providing independent, proactive risk management and oversight of information security, network security, and business continuity management risks across our organization. You'll work closely with key stakeholders across lines of business and lines of defense to ensure that risks are identified, assessed, and mitigated effectively.
Key Responsibilities * Conduct independent, data-driven risk assessments and audits focused on information security processes, network security controls, and business continuity management risks. * Lead exploratory data analysis on large datasets using SQL, Python, and Excel to develop actionable insights on network security and information-related risks. * Develop and maintain data-driven key risk indicators (KRIs) and key performance indicators (KPIs) that provide real-time visibility into risk and performance trends.
* Stay up-to-date with relevant regulations, standards, and industry best practices to ensure that our information security program remains compliant and effective. * Collaborate with the GRC team to develop and implement a comprehensive information security risk management program that integrates with other risk management programs, including IT risk self-assessments, business continuity management, new product approvals, mergers and acquisitions, and more. Essential Qualifications * Bachelor's degree in a relevant field, such as computer science, data systems, or a related field.
* 5+ years of experience in risk management across any of the three lines of defense. * Proven ability to identify risks, analyze issues, and develop actionable insights through data-driven analysis and stakeholder engagement. * Strong knowledge of frameworks, cloud security, digital intelligence, and digital incident response. * Excellent analytical and problem-solving skills, with high attention to detail and accuracy. * Strong understanding of at least one data mining or large data analytics tool (e.g., bolthires Excel, SQL, SAS, Python, R).
Preferred Qualifications * Master's degree in a relevant field, such as computer science, data systems, or a related field. * Experience in risk management across network security, data innovation, outsourcing, business continuity management. * Industry certifications (e.g., CISM, CISA, CRISC, CISSP). * Cloud security certifications (e.g., CCSK, CompTIA Cloud, CCSP, Purple Security). * Understanding of risk assessment methodologies, frameworks, and industry standards (e.g., COSO, COBIT, ISO 27001, FAIR or NIST RMF).
* Familiarity with relevant regulations and guidelines (e.g., OCC Enhanced Principles, FFIEC IT booklets). What We Offer * Competitive salary and benefits package. * Opportunity to work with a talented team of professionals in a dynamic and fast-paced environment. * Collaborative and inclusive work culture that values diversity, equity, and inclusion. * Professional development and growth opportunities, including training, mentorship, and career advancement. * Flexible work arrangements, including remote work options.
If you're a motivated and experienced risk management professional looking for a new challenge, we encourage you to apply for this exciting opportunity. Please submit your resume, cover letter, and any relevant certifications or documentation to [arenaflex careers page]. We can't wait to hear from you! About arenaflex arenaflex is a leading player in the private sector, committed to innovation, collaboration, and risk management excellence. Our Global Risk and Compliance (GRC) team is at the forefront of this effort, working tirelessly to ensure that our organization operates with the highest level of integrity and security.
We're proud to be a diverse and inclusive workplace, dedicated to fostering a culture of excellence and innovation. Equal Employment Opportunity arenaflex is an equal employment opportunity employer, committed to diversity, equity, and inclusion. We welcome applications from qualified candidates of all backgrounds, experiences, and perspectives.