Experienced Full Stack Cybersecurity Specialist – Governance, Risk, and Compliance (GRC) Professional

Join arenaflex, a leading innovator in the field of cybersecurity, as a highly skilled and experienced Full Stack Cybersecurity Specialist – Governance, Risk, and Compliance (GRC) Professional. As a key member of our Cybersecurity team, you will play a vital role in guiding GRC-related activities and ensuring the smooth execution of various tasks within the team. If you are passionate about cybersecurity, have a strong understanding of GRC principles, and are looking for a challenging and rewarding role, we encourage you to apply.

About arenaflex

arenaflex is a cutting-edge technology company that specializes in developing innovative solutions for the cybersecurity industry. Our team of experts is dedicated to providing top-notch security services to our clients, and we are committed to staying ahead of the curve in terms of technology and best practices. As a GRC Professional at arenaflex, you will be part of a dynamic and collaborative team that is passionate about making a difference in the world of cybersecurity.

Key Responsibilities

As a Full Stack Cybersecurity Specialist – GRC Professional, you will be responsible for the following key duties:

• Third-Party Risk Management (TPRM) Software: Assist in the implementation and management of TPRM software to ensure the effective identification, assessment, and mitigation of risks associated with third-party vendors.
• Help the arenaflex Global Third-Party Risk Method for conducting cyber risk-related due diligence exams: Validate incoming third-party risk assessment requests, work with business stakeholders to confirm the details of the request and the scope of the engagement, and coordinate the distribution of due diligence questionnaires to internal stakeholders/third-party vendors.
• Coordinate the distribution of due diligence questionnaires to internal stakeholders/third-party vendors, review submitted questionnaires for completeness, and identify risks arising from the current design and operational effectiveness of internal/third-party vendors' security controls.
• File responses, associated findings, and remediation plans in the arenaflex systems: Draft/review reviews for the checks performed and ensure respective business stakeholders finalize reviews.
• Be a strong liaison to ensure any queries are responded to concerning the risk control technique and evaluation to the business or third parties as required.
• Conduct continuous tracking of third-party vendors via arenaflex systems for current/new findings and report any findings to closure.
• Identify opportunities for improvement within the arenaflex systems and strategies.
• Work intensely with Chance Lead/Supervisor to time-table and execute a range of different assisting activities related to the risk management program.

Governance, Threat, and Compliance

* Lead and assist the improvement of cybersecurity risk and compliance-related strategies to ensure treatment of cybersecurity risk consistent with the arenaflex threat appetite.

• Maintain and document compliance towards information security-related guidelines and processes through planning, checking out, remediating, tracking, and reporting on manipulate critiques and threat checks.
• Lead development and shipping of compliance and danger education and ongoing communications that assist power tradition of protection and compliance.
• Retaining abreast of regulatory changes, new guidelines, technology, and internal policy modifications to further pick out new key risk areas.
• Lead the team to preserve and guide ISO 27001 popular.

Competencies & Attributes for Fulfillment

* Understanding and competencies: Outstanding stakeholder management, working understanding of information security-related high-quality practices and requirements, including ISO 2700x, SOC 2 requirements, SSAE 16/18 requirements, and many others.

• Experience in the control of risk, controls, and compliance.
• Expertise of risk evaluation methodologies – qualitative/quantitative.
• Super analytical and problem-solving abilities.
• Super presentation making and delivery abilities.

Personal ATTRIBUTES

* Robust interpersonal abilities

• Ability to navigate rapid-paced surroundings and be bendy with working hours.
• Fantastic communication abilities, both verbal and written.
• Adapt speedily to converting conditions and power high-quality change.

Preferred Training & Experience

* Applicable Bachelor's/Master's diploma from an accepted university or equivalent experience.

• 4 years of enjoy throughout third-party risk control, records security, and audit & compliance tracking (minimum of 2-3 years in TPRM/internal audit).
• Preferred revel in with a massive company and/or large four accounting company.
• One or greater credentials – CISA, CRISC, ISO27001 L./LI, CISSP.
• Experience in AI/ML is a plus.

Why Join arenaflex?

* Competitive salary and benefits package

• Opportunity to work with a leading innovator in the field of cybersecurity
• Collaborative and dynamic work environment
• Professional development and growth opportunities
• Flexible working hours and remote work options
• Access to cutting-edge technology and tools
• Recognition and rewards for outstanding performance

How to Apply

If you are a motivated and experienced cybersecurity professional looking for a new challenge, please submit your application, including your resume and a cover letter, to [insert contact information]. We look forward to hearing from you!

About the Interview Process

Our interview process typically consists of a phone or video interview with a member of our recruitment team, followed by a series of technical and behavioral interviews with our cybersecurity experts. We also offer the opportunity to meet with our team members and learn more about our company culture.

What to Expect in the Interview

* Technical questions related to cybersecurity, GRC, and risk management

• Behavioral questions to assess your problem-solving skills, communication abilities, and experience working with stakeholders
• Opportunities to ask questions and learn more about our company culture and team

Tips for a Successful Interview

* Research our company and the role thoroughly

• Review your resume and be prepared to talk about your experience and qualifications
• Practice your responses to common interview questions
• Ask thoughtful and relevant questions during the interview
• Show enthusiasm and passion for the role and our company

We look forward to hearing from you and learning more about your qualifications and experience! Apply for this job