Senior GRC & Cybersecurity Data Entry Specialist – Remote (Full‑/Part‑Time) – $80,000 Annual Salary – Join arenaflex

About arenaflex

arenaflex is a global leader in entertainment‑driven technology, blending magical storytelling with cutting‑edge digital experiences. With a portfolio that spans streaming platforms, immersive attractions, and interactive media, arenaflex constantly pushes the boundaries of what’s possible in the digital age. Our commitment to innovation is matched by an unwavering focus on security, compliance, and risk management—ensuring that every pixel of wonder is delivered safely and responsibly.

As part of arenaflex’s expanding Cybersecurity & Governance, Risk, and Compliance (GRC) team, you will help protect the data, systems, and creative assets that power our worldwide audience. This role is fully remote, offering the flexibility to work from anywhere while collaborating with a diverse, high‑performing team of security specialists, auditors, and business stakeholders.

Role Overview

We are seeking an experienced GRC professional to serve as a Data Entry Specialist focused on third‑party risk management (TPRM), internal compliance, and security documentation. In this role you will act as the primary conduit for gathering, validating, and maintaining risk‑related data across arenaflex’s global operations. Your meticulous attention to detail and strong stakeholder‑management skills will ensure that risk assessments, due‑diligence questionnaires, and remediation plans are accurately captured, tracked, and reported.

This position reports to the Manager, Governance, Threat & Compliance and works closely with the Cybersecurity Operations, Legal, Procurement, and Business Units to align risk activities with arenaflex’s strategic objectives.

Key Responsibilities

Data Collection & Validation

• Receive, review, and validate incoming third‑party risk assessment requests from internal business owners.
• Collaborate with stakeholders to clarify scope, requirements, and timelines for each risk engagement.
• Coordinate the distribution of due‑diligence questionnaires to vendors, partners, and internal teams; ensure completeness and accuracy of responses.
• Upload and maintain all risk‑related documentation—including questionnaires, findings, remediation plans, and final approvals—in arenaflex’s secure GRC platform.

Risk Tracking & Reporting

• Maintain a continuous tracking log of open, in‑progress, and closed risk items, updating status in real time.
• Generate periodic risk dashboards and executive summaries for senior leadership, highlighting trends, emerging threats, and remediation progress.
• Identify gaps or inconsistencies in risk data and proactively recommend corrective actions.
• Assist in the preparation of audit evidence packages for internal and external auditors (e.g., ISO 27001, SOC 2, SSAE 18).

Compliance & Governance Support

• Support the development and maintenance of arenaflex’s information security policies, standards, and procedures.
• Help drive the implementation of ISO 27001, ISO 27002, and other relevant frameworks across the organization.
• Stay current on regulatory changes (e.g., GDPR, CCPA, PCI‑DSS) and communicate impacts to relevant business units.
• Lead the creation and distribution of security awareness and compliance communications to foster a culture of risk‑aware behavior.

Process Improvement & Collaboration

• Identify opportunities to streamline data entry workflows, reduce manual effort, and improve data quality.
• Partner with the GRC technology team to enhance system functionalities, reporting capabilities, and user experience.
• Act as a trusted liaison between risk owners, legal counsel, and technical teams to resolve queries and drive timely closure of risk items.
• Participate in cross‑functional risk workshops, tabletop exercises, and incident response drills.

Essential Qualifications

• Education: Bachelor’s degree in Information Security, Computer Science, Business Administration, or a related field, or equivalent professional experience.
• Experience: Minimum 4 years of hands‑on experience in third‑party risk management, security compliance, or audit tracking, with at least 2 years focused on data entry and documentation within a GRC environment.
• Technical Knowledge: Strong understanding of ISO 27001/27002, SOC 2, SSAE 18, and related compliance frameworks.
• Analytical Skills: Ability to interpret complex risk data, perform qualitative and quantitative assessments, and translate findings into clear, actionable recommendations.
• Communication: Excellent written and verbal communication skills; proven ability to craft concise reports and deliver presentations to senior stakeholders.
• Stakeholder Management: Demonstrated success in building relationships with internal business units, vendors, and external auditors.
• Attention to Detail: Meticulous record‑keeping and data‑entry accuracy, with a track record of maintaining high‑quality documentation.

Preferred Qualifications

• Professional certifications such as CISA, CRISC, CISSP, ISO 27001 Lead Implementer, or equivalent.
• Experience working in a large, matrixed organization or a major professional services firm.
• Familiarity with AI/ML concepts and their impact on risk assessment processes.
• Hands‑on experience with GRC tools (e.g., RSA Archer, ServiceNow GRC, MetricStream) and data‑visualization platforms.
• Knowledge of privacy regulations (GDPR, CCPA) and data‑protection best practices.

Core Skills & Competencies

• Risk Assessment Methodologies: Proficiency in both qualitative and quantitative risk evaluation techniques.
• Project Management: Ability to manage multiple risk engagements simultaneously, meet deadlines, and prioritize tasks in a fast‑paced environment.
• Problem‑Solving: Strong analytical mindset with a proactive approach to identifying root causes and implementing sustainable solutions.
• Presentation Skills: Confidence presenting findings to executives, auditors, and cross‑functional teams.
• Adaptability: Comfortable navigating changing priorities, shifting timelines, and evolving regulatory landscapes.
• Collaboration: Team‑oriented attitude with a willingness to share knowledge and mentor junior colleagues.

Career Development & Learning Opportunities

arenaflex invests heavily in the growth of its people. As a member of our GRC team you will have access to:

• Continuous learning subscriptions (e.g., Coursera, Pluralsight) and budget for certifications.
• Mentorship programs pairing you with senior security leaders and industry experts.
• Opportunities to work on high‑visibility projects that influence global risk strategy.
• Regular internal workshops on emerging threats, compliance updates, and technology trends.
• Clear career pathways from specialist roles to senior analyst, GRC manager, and director‑level positions.

Culture & Work Environment

At arenaflex, we celebrate creativity, curiosity, and collaboration. Our remote‑first policy empowers you to design a work‑life balance that suits you, while our inclusive culture ensures every voice is heard. Key cultural pillars include:

• Innovation: We encourage experimentation and reward ideas that drive security forward.
• Integrity: Ethical behavior and transparency are non‑negotiable in everything we do.
• Diversity & Inclusion: A diverse workforce fuels better decision‑making and richer storytelling.
• Well‑Being: Comprehensive mental‑health resources, flexible schedules, and wellness stipends support your overall health.
• Community: Virtual coffee chats, team‑building events, and volunteer initiatives keep us connected.

Compensation, Perks & Benefits

arenaflex offers a competitive total rewards package, including:

• Base salary of $80,000 per year (commensurate with experience).
• Performance‑based bonuses and annual salary reviews.
• Health, dental, and vision insurance with generous employer contributions.
• 401(k) plan with company match.
• Paid time off, holidays, and sick leave.
• Remote‑work stipend for home‑office equipment and internet costs.
• Professional development budget and paid certification exam fees.
• Employee assistance program, wellness challenges, and mental‑health days.

How to Apply

If you are passionate about safeguarding the digital experiences that delight millions worldwide, and you thrive in a remote, collaborative environment, we want to hear from you. Please submit your resume, a cover letter highlighting your relevant GRC experience, and any supporting certifications through the application portal.

We review applications on a rolling basis and will contact qualified candidates for the next steps, which include a virtual interview, a technical assessment, and a cultural fit discussion.

Join arenaflex – Make an Impact

At arenaflex, your work directly contributes to the safety and reliability of the magical experiences our audiences cherish. By ensuring robust risk management and compliance, you help us deliver wonder responsibly, today and tomorrow. Take the next step in your career and become part of a team that blends imagination with security excellence.

Apply now and start your journey with arenaflex!