Senior GRC & Cybersecurity Data Entry Specialist – Remote (Part‑Time / Full‑Time) – $80,000 Annual Salary – arenaflex

About arenaflex – Shaping the Future of Secure Entertainment

arenaflex is a global leader in creating magical experiences that delight millions of fans every day. While our stories and characters capture imaginations worldwide, we also carry a deep responsibility to protect the digital assets, data, and intellectual property that power those experiences. Our cybersecurity and governance teams work behind the scenes to ensure that every piece of information is handled safely, compliantly, and with the same level of care we give to our creative content. As we continue to expand our digital footprint, we are looking for a seasoned GRC (Governance, Risk, and Compliance) professional to join our remote data‑entry crew and help keep arenaflex’s cyber‑risk program running like a well‑orchestrated show.

Role Overview – arenaflex Data Entry & GRC Specialist

In this remote position, you will serve as the primary liaison between business stakeholders and the internal risk‑management function. You will manage third‑party risk assessments, validate incoming risk requests, maintain compliance documentation, and ensure that all findings are tracked to closure. The role blends meticulous data‑entry expertise with a solid understanding of cybersecurity frameworks such as ISO 27001, SOC 2, and NIST. You will report directly to the Manager, Governance, Threat & Compliance and collaborate closely with cyber‑security analysts, legal counsel, and procurement teams.

Key Responsibilities

Third‑Party Risk Management (TPRM) Operations

• Administer arenaflex’s TPRM platform, ensuring that all third‑party risk assessment requests are logged, categorized, and routed to the appropriate business owners.
• Validate incoming risk assessment requests, confirming scope, deliverables, and timelines with stakeholders before initiating the assessment process.
• Coordinate the distribution of due‑diligence questionnaires to vendors and internal requestors; review completed questionnaires for completeness and accuracy.
• Upload questionnaire responses, findings, and remediation plans into the arenaflex risk‑management system, maintaining a clear audit trail.
• Draft and review risk‑assessment reports, ensuring that all required controls are addressed and that business stakeholders sign off on final deliverables.
• Act as the primary point of contact for any queries related to risk‑assessment methodology, providing timely clarification to both internal teams and external partners.
• Continuously monitor the status of open risk assessments, updating the system with new findings and driving issues to closure.
• Identify opportunities for process improvement within the TPRM workflow and propose enhancements to increase efficiency and data quality.

Governance, Threat & Compliance Leadership

• Support the development and execution of arenaflex’s cybersecurity risk and compliance strategy, aligning it with business objectives and regulatory expectations.
• Maintain comprehensive documentation of compliance activities, including policy updates, control testing results, remediation actions, and reporting metrics.
• Lead the creation and distribution of compliance awareness communications, ensuring that all employees understand their role in protecting arenaflex’s information assets.
• Stay current on evolving regulatory requirements (e.g., GDPR, CCPA, ISO 27001) and emerging industry standards, translating changes into actionable tasks for the risk‑management team.
• Assist in the preparation and execution of internal and external audits, providing evidence of control effectiveness and remediation progress.
• Collaborate with the ISO 27001 lead to maintain certification readiness, tracking audit findings and coordinating corrective actions.

Essential Qualifications

• Education: Bachelor’s degree in Information Security, Computer Science, Business Administration, or a related field, or equivalent professional experience.
• Experience: Minimum 4 years of hands‑on experience in third‑party risk management, data‑security, or audit & compliance functions. At least 2‑3 years must be directly related to TPRM or internal audit activities.
• Technical Knowledge: Demonstrated understanding of ISO 27001, SOC 2, SSAE 16/18, and other relevant security frameworks.
• Certifications (preferred): CISA, CRISC, ISO 27001 Lead Implementer, CISSP, or equivalent credentials.
• Analytical Skills: Ability to conduct qualitative and quantitative risk assessments, interpret complex data sets, and present findings in a clear, actionable format.
• Communication: Excellent written and verbal communication skills; experience delivering presentations to senior leadership and external partners.
• Organizational Ability: Proven track record of managing multiple concurrent risk‑assessment projects while meeting strict deadlines.

Preferred Qualifications & Additional Skills

• Experience working in a large, matrixed organization or a major professional services firm.
• Familiarity with AI/ML concepts as they relate to risk analytics and automated compliance monitoring.
• Hands‑on experience with GRC platforms such as RSA Archer, ServiceNow GRC, or similar tools.
• Strong stakeholder‑management capabilities, with the ability to influence cross‑functional teams without direct authority.
• Demonstrated ability to thrive in a fast‑paced, remote work environment, adapting quickly to shifting priorities.

Core Skills & Competencies

• Detail‑Oriented Data Entry: Precise and accurate entry of risk‑assessment data, ensuring integrity of the arenaflex risk repository.
• Risk‑Thinking Mindset: Ability to anticipate potential security threats and recommend proactive mitigation strategies.
• Problem‑Solving: Strong analytical mindset to dissect complex compliance issues and develop practical solutions.
• Presentation & Reporting: Craft compelling risk‑assessment summaries and executive dashboards that drive informed decision‑making.
• Collaboration: Work effectively with legal, procurement, IT, and business units to align risk objectives with operational goals.
• Continuous Learning: Commitment to staying up‑to‑date with industry trends, regulatory changes, and emerging security technologies.

Career Growth & Learning Opportunities

arenaflex invests heavily in the professional development of its employees. As a Data Entry & GRC Specialist, you will have access to:

• Mentorship from senior cybersecurity leaders and GRC architects.
• Sponsored certifications (CISA, CRISC, CISSP, ISO 27001) and tuition reimbursement for advanced degrees.
• Internal training programs covering cloud security, privacy law, and risk‑analytics tools.
• Opportunities to transition into senior risk‑management, compliance‑lead, or cyber‑policy roles as you demonstrate expertise.
• Cross‑functional project assignments that broaden your exposure to product development, data‑privacy, and incident‑response teams.

Work Environment & Culture at arenaflex

Our remote workforce is built on trust, flexibility, and a shared passion for protecting the magic that our brand creates. Key cultural pillars include:

• Innovation: We encourage creative problem‑solving and welcome ideas that improve security processes.
• Collaboration: Even though you’ll be working from home, you’ll be part of a vibrant, global community that meets regularly via video, chat, and virtual coffee breaks.
• Inclusivity: arenaflex celebrates diverse perspectives and provides an environment where every voice is heard.
• Work‑Life Balance: Flexible scheduling, generous paid time off, and a results‑oriented culture allow you to manage personal commitments while delivering high‑impact work.
• Recognition: Employees are recognized through quarterly awards, peer‑nominated accolades, and a transparent performance‑feedback system.

Compensation, Perks & Benefits

arenaflex offers a competitive total‑reward package that includes:

• Base salary of $80,000 per year (adjustable based on experience and location).
• Performance‑based bonuses tied to risk‑mitigation milestones.
• Comprehensive health, dental, and vision coverage.
• 401(k) plan with company match.
• Paid parental leave, generous vacation policy, and sick days.
• Remote‑work stipend for home‑office equipment and internet expenses.
• Access to wellness programs, virtual fitness classes, and mental‑health resources.
• Employee discount on arenaflex merchandise and theme‑park tickets.

How to Apply

If you are ready to bring your GRC expertise to a world‑class entertainment brand and help safeguard the data that powers unforgettable experiences, we want to hear from you. Submit your resume, a concise cover letter highlighting your relevant risk‑management achievements, and any supporting certifications through the link below.

Apply Now – Join arenaflex’s Remote GRC Team

Closing Statement

arenaflex believes that great talent thrives when given purpose, autonomy, and the tools to succeed. By joining our remote cybersecurity crew, you will play a pivotal role in protecting the digital kingdom that delights audiences worldwide. Take the next step in your career—apply today and become a guardian of the magic.