Senior GRC & Cybersecurity Data Entry Specialist – Remote (Part‑/Full‑Time) – $80,000 Annual Salary – arenaflex

About arenaflex arenaflex is a global leader in entertainment and digital experiences, delivering magical moments to millions of fans worldwide. With a legacy of storytelling excellence and a forward‑thinking approach to technology, arenaflex blends creativity with cutting‑edge cybersecurity practices to protect its vast ecosystem of digital assets, customer data, and intellectual property. As the company continues to expand its virtual presence, the need for meticulous governance, risk, and compliance (GRC) professionals who can manage data entry and risk‑assessment workflows from anywhere has never been greater. Join arenaflex’s dynamic Cybersecurity Team and become a guardian of the magic. Why This Role Matters In today’s hyper‑connected world, every piece of data is a potential entry point for threats. As a Senior GRC & Cybersecurity Data Entry Specialist at arenaflex, you will be the backbone of the organization’s risk‑management processes. Your work will ensure that third‑party risk assessments, internal compliance questionnaires, and security control documentation are captured accurately, reviewed promptly, and escalated appropriately. By maintaining the integrity of these critical data flows, you help safeguard arenaflex’s brand, its customers, and its future innovations.

Key Responsibilities

• Third‑Party Risk Management (TPRM) Data Coordination: Receive, validate, and log incoming third‑party risk assessment requests, collaborating with business stakeholders to define scope and deliverables.
• Questionnaire Administration: Distribute, collect, and review due‑diligence questionnaires for internal and external partners, ensuring completeness and compliance with arenaflex’s security standards.
• Findings Documentation: Record assessment findings, remediation plans, and status updates in arenaflex’s risk‑management platform, maintaining a clear audit trail.
• Compliance Reporting: Draft and review compliance reports, working with stakeholders to finalize critiques and secure sign‑off from relevant business owners.
• Stakeholder Liaison: Serve as the primary point of contact for queries related to risk assessments, providing timely clarification and guidance.
• Continuous Monitoring: Track the lifecycle of third‑party engagements, updating risk registers, and ensuring that open findings are closed in a timely manner.
• Process Improvement: Identify opportunities to streamline data‑entry workflows, propose enhancements to arenaflex’s risk‑management tools, and collaborate with the GRC lead on implementation.
• Regulatory Alignment: Assist in maintaining compliance with ISO 27001, SOC 2, SSAE 18, and other relevant frameworks by ensuring accurate data capture and reporting.
• Education & Communication: Contribute to the development of internal compliance communications, training materials, and awareness campaigns.
• Collaboration with Cybersecurity Teams: Work closely with threat‑intelligence, security‑operations, and audit teams to align data‑entry activities with broader security initiatives.

Essential Qualifications

• Bachelor’s degree in Information Security, Computer Science, Business Administration, or a related field, or equivalent professional experience.
• Minimum of 4 years of experience in third‑party risk management, data governance, or compliance tracking, with at least 2‑3 years focused on TPRM or internal audit processes.
• Demonstrated expertise in ISO 27001, SOC 2, SSAE 18, or similar security standards.
• Professional certifications such as CISA, CRISC, ISO 27001 Lead Implementer, CISSP, or equivalent are highly preferred.
• Strong analytical skills with the ability to interpret qualitative and quantitative risk data.
• Exceptional written and verbal communication abilities, capable of translating technical concepts for non‑technical audiences.
• Proven stakeholder‑management experience, including the ability to influence and negotiate with internal business units and external vendors.
• Proficiency with GRC platforms (e.g., RSA Archer, ServiceNow GRC, MetricStream) and Microsoft Office Suite, especially Excel and PowerPoint.
• Self‑motivated, detail‑oriented, and comfortable working in a remote environment with flexible hours.

Preferred Qualifications & Skills

• Experience working in a large, multinational entertainment or media organization.
• Exposure to AI/ML concepts and their application in risk‑assessment automation.
• Knowledge of data‑privacy regulations such as GDPR, CCPA, and CPRA.
• Ability to design and

Apply To This Job