**Experienced Full Stack Cybersecurity Specialist – Governance, Risk, and Compliance (GRC) Professional**

Join arenaflex, a leading innovator in the field of cybersecurity, as a highly skilled and experienced Full Stack Cybersecurity Specialist – Governance, Risk, and Compliance (GRC) Professional. This exciting opportunity will allow you to contribute to the development and implementation of cutting-edge cybersecurity solutions, while working in a dynamic and collaborative environment. **About arenaflex** arenaflex is a forward-thinking organization that is dedicated to protecting its customers' sensitive information and assets from cyber threats. Our team of experts is passionate about staying ahead of the curve, and we are committed to delivering innovative solutions that meet the evolving needs of our customers. As a GRC Professional, you will play a critical role in helping us achieve our mission of providing world-class cybersecurity services. **Key Responsibilities** As a Full Stack Cybersecurity Specialist – GRC Professional, you will be responsible for: * Assisting the arenaflex Cybersecurity Team in the development and implementation of GRC-related activities, ensuring the effective execution of various tasks and projects. * Collaborating with the arenaflex Governance, Threat, and Compliance Team to manage internal safety compliance requirements and implement regulations, tactics, and frameworks. * Validating incoming risk assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement. * Coordinating the distribution of due diligence questionnaires to internal stakeholders and third-party vendors, reviewing submitted questionnaires for completeness, and identifying potential risks. * Filing responses, associated findings, and remediation plans in the arenaflex systems. * Drafting and reviewing reviews for the checks performed, ensuring respective business stakeholders finalize critiques. * Serving as a strong liaison to ensure any queries are responded to concerning the risk control technique and evaluation to the business or third parties as required. * Conducting continuous tracking of third-party vendors via arenaflex systems for current/new findings and ensuring any findings are brought to closure. * Identifying opportunities for improvement within the arenaflex systems and strategies. * Working closely with the Chance Lead/Supervisor to time-table and execute a range of different supporting activities related to the risk management program. **Governance, Threat, and Compliance** As a GRC Professional, you will also be responsible for: * Leading and assisting the improvement of cybersecurity risk and compliance-related strategies to ensure the treatment of cybersecurity risk consistent with the arenaflex threat appetite. * Maintaining and documenting compliance towards information security-related guidelines and processes through planning, checking out, remediating, tracking, and reporting on manipulate critiques and threat checks. * Leading the development and shipping of compliance and risk education and ongoing communications that assist power tradition of protection and compliance. * Retaining abreast of regulatory changes, new guidelines, technology, and internal policy modifications to further identify new key risk areas. * Leading the team to preserve and guide ISO 27001 certification. **Competencies & Attributes for Fulfillment** To be successful in this role, you will need to possess: * A strong understanding of and competencies in GRC, cybersecurity, and risk management. * Outstanding stakeholder management skills. * A working understanding of information security-related quality practices and requirements, including ISO 27001, SOC 2, SSAE 16/18, and others. * Experience in the control of risk, controls, and compliance. * Expertise in risk evaluation methodologies – qualitative/quantitative. * Super analytical and problem-solving abilities. * Super presentation making and delivery abilities. **Personal Attributes** As a GRC Professional, you will also need to possess: * Robust interpersonal skills. * Ability to navigate rapid-paced environments and be flexible with working hours. * Fantastic communication skills, both verbal and written. * Adaptability to converting conditions and power high-quality change. **Preferred Qualifications & Experience** * Applicable Bachelor's/Grasp's degree from an accepted university or equivalent experience. * 4 years of experience throughout third-party risk control, records security, and audit & compliance tracking (minimum of 2-3 years in TPRM/Internal Audit). * Preferred experience with a large company and/or large four accounting company. * One or greater credentials – CISA, CRISC, ISO27001 L./LI, CISSP. * Experience in AI/ML is a plus. **About arenaflex Careers** At arenaflex, we are passionate about creating a workplace that is inclusive, supportive, and empowering. We believe that our employees are our greatest asset, and we are committed to providing them with the resources and opportunities they need to succeed. **Why Join arenaflex?** * Competitive salary and benefits package. * Opportunity to work with a leading innovator in the field of cybersecurity. * Collaborative and dynamic work environment. * Professional development and growth opportunities. * Flexible working hours and remote work options. **How to Apply** If you are a motivated and experienced GRC Professional looking for a new challenge, please submit your application, including your resume and a cover letter, to [insert contact information]. We look forward to hearing from you!