IT Security Risk Analyst – Information Security Governance & Compliance | $25/Hour

About arenaflex

Welcome to arenaflex, a globally recognized leader in the aviation industry with a proud legacy of connecting people and cultures across the world. As one of the most trusted names in air travel, we pride ourselves on our commitment to safety, innovation, and exceptional customer experiences. Our success is built on the dedication of thousands of professionals who work tirelessly behind the scenes to ensure every journey is safe, comfortable, and reliable. At arenaflex, we believe that great teams are the foundation of great achievements, and we're constantly seeking talented individuals who share our passion for excellence and our drive to continually raise the bar.

The Information Security group at arenaflex is at the forefront of protecting our digital infrastructure and ensuring the highest standards of data protection across all operations. As we continue to expand our digital capabilities and embrace new technologies, the need for robust security governance and risk management has never been more critical. We are looking for a talented IT Security Risk Analyst to join our Information Security Governance team and help us navigate the complex landscape of cybersecurity threats, regulatory compliance, and risk management in the modern aviation industry.

Position Overview

Are you someone who rises to challenges with enthusiasm and a smile? Do you see risk management not just as a job, but as a passion that drives meaningful change? If the answer is yes, then you might be exactly who we're looking for. As an IT Security Risk Analyst within our Information Security Governance and Compliance team, you will serve as a critical second line of defense, responsible for managing and monitoring information security and technology risks across the organization.

This role offers an exciting opportunity to work at the intersection of technology, security, and business strategy. You will collaborate with various IT portfolios including Systems and Reliability, Engineering, and Channel Technology, while also partnering with key functional areas such as Legal, Insurance, and Corporate Audit. Additionally, you will engage with external auditors to ensure continuous compliance with industry standards and regulatory requirements.

At arenaflex, we are committed to transforming our approach to information security from a compliance-focused mindset to a risk-driven one. This transformation presents a unique opportunity for you to drive significant change within a well-established, respected organization that is leading the aviation industry into the future. You'll be part of a team that values innovation, collaboration, and the courage to implement groundbreaking security practices that protect our company, our customers, and our stakeholders.

Key Responsibilities

As an IT Security Risk Analyst at arenaflex, your primary responsibility will be to assess, measure, and communicate risk across vendor relationships, internal controls, and cybersecurity domains. You will play a pivotal role in establishing and communicating key risk indicators and key performance indicators that inform strategic decision-making throughout the organization.

• Risk Assessment and Communication: Evaluate and analyze information security risks across various business units and technology platforms. Communicate risk findings clearly to stakeholders at all levels of the organization, translating technical concepts into business-relevant language that drives informed decision-making.


• Control Framework Development: Engage and interview key partners to design and develop IT controls that mitigate risk to acceptable levels. Document controls comprehensively, including control descriptions, process steps, and testing criteria that demonstrate effectiveness and compliance.


• Compliance Management: Partner with Information Security, Information Technology, and Internal Audit teams to ensure compliance with SOX, PCI, and other regulatory and legal requirements. Maintain thorough documentation of compliance activities and be prepared for internal and external audits.


• Control Testing and Validation: Periodically test control effectiveness and work collaboratively with IT partners to close gaps in control effectiveness. Provide actionable insights and recommendations for improving control processes and reducing residual risk.


• Risk Reporting: Deliver IT controls and risk data to enable comprehensive reporting on control gaps and control effectiveness. Create dashboards, reports, and presentations that communicate risk posture and security metrics to executive leadership.


• Technology Risk Evaluation: Assess organizational impact and understand risks associated with introducing new technologies or processes. Evaluate the security implications of proposed changes and provide guidance on risk mitigation strategies.


• Training and Education: Train and educate IT partners on IT risk, controls, and control effectiveness testing methodologies. Foster a culture of security awareness and risk-conscious decision-making throughout the organization.


• Continuous Improvement: Proactively identify opportunities to enhance risk management processes, tools, and methodologies. Stay current with industry best practices and emerging threats to ensure arenaflex maintains a robust security posture.

Essential Qualifications

To succeed in this role, you must possess a strong foundation in risk and security frameworks and demonstrate the ability to communicate effectively with diverse stakeholders. We're looking for self-starters who thrive in independent environments while maintaining strong collaboration skills.

• Educational Background: Bachelor's degree in Cybersecurity, Computer Science, Mathematics, Engineering, Information Systems, or a related field is required.


• Framework Expertise: Strong knowledge of risk and security frameworks including NIST, ISO, and COSO is essential. You should understand how to apply these frameworks in practical, business contexts.


• Communication Skills: Excellent listening skills with the ability to convey ideas effectively. You must be capable of preparing clear, concise documentation that meets professional standards.


• Proactive Mindset: Natural proactive approach to work with customer satisfaction as a primary objective. You should anticipate issues before they arise and take initiative to address them.


• Attention to Detail: Strong attention to detail combined with the ability to multitask effectively in a fast-paced environment.


• Governance Experience: Experience working in a governance environment using a risk and controls mindset. Understanding of control design and operational effectiveness is crucial.


• Technical Background: Minimum 2 years of experience across IT domains such as application development, systems, technical support and operations, or business continuity.


• Adaptability: Ability to shift priorities dynamically based on emerging risks to the organization. You must be comfortable navigating ambiguity and changing requirements.


• Safety Focus: Consistently prioritizes the safety and security of self, others, and sensitive personal data. This value is fundamental to everything we do at arenaflex.


• Inclusivity: Embraces diverse individuals, thinking styles, and perspectives. We believe that diverse teams make better decisions and drive innovation.

Preferred Qualifications

While the following qualifications are not required, they will give you a competitive edge in this role:

• Industry Certifications: Key industry certifications such as CISA (Certified Information Systems Auditor), CISM (Certified Information Security Manager), CISSP (Certified Information Systems Security Professional), or equivalent credentials.


• Security Domain Experience: Experience across various Information Security domains including governance and compliance, incident response, identity and access management, penetration testing, or e-discovery and forensics.


• Advanced Technical Skills: Experience with RSA Archer or similar governance, risk management, and compliance (GRC) platforms.


• Transformation Leadership: A track record of leading transformative change initiatives that have delivered measurable improvements in security posture or risk management capabilities.


• Advanced Education: BS/MS in Cybersecurity, Computer Science, Mathematics, Engineering, Information Services, or equivalent advanced degree.

Skills and Competencies Required for Success

Beyond formal qualifications, success in this role requires a unique blend of technical expertise, business acumen, and interpersonal skills. You must be able to bridge the gap between technical security concepts and business objectives, translating complex security requirements into actionable recommendations that stakeholders can understand and support.

Critical thinking and analytical skills are essential, as you will be responsible for evaluating risks, analyzing control effectiveness, and developing recommendations that balance security requirements with business needs. You must be comfortable making decisions under uncertainty and communicating the rationale behind your recommendations to both technical and non-technical audiences.

Strong project management abilities will help you juggle multiple initiatives simultaneously and meet deadlines in a dynamic environment. You should be comfortable working independently while also collaborating effectively with cross-functional teams. Your ability to build relationships and influence stakeholders will be key to driving adoption of security controls and risk management practices throughout the organization.

Career Growth Opportunities

At arenaflex, we are deeply committed to the professional development and career growth of our employees. This position offers exceptional opportunities for career advancement within the Information Security domain and beyond. As you build expertise in risk management and security governance, you'll be positioned for roles of increasing responsibility such as Senior Security Analyst, Security Compliance Manager, or IT Risk Manager.

We offer comprehensive career development programs designed to help you achieve your long-term career goals. Through mentorship programs, internal training opportunities, and exposure to diverse projects, you'll gain the skills and experience needed to advance your career. Additionally, our culture of internal mobility means that talented individuals have the opportunity to explore different roles and departments as they grow professionally.

The aviation industry presents unique and exciting challenges in information security, from protecting critical infrastructure to ensuring compliance with international regulations. Joining arenaflex means you'll gain invaluable experience in a dynamic, fast-paced environment that will accelerate your professional growth and open doors to future opportunities.

Work Environment and Culture

At arenaflex, our culture is built on a shared commitment to living our values – Care, Integrity, Resilience, Servant Leadership, and Collaboration – every day, in everything we do. We believe that our people are our greatest asset, and we strive to create an environment where every employee can thrive, grow, and make a meaningful impact.

We champion diversity and inclusion, recognizing that diverse perspectives drive innovation and better decision-making. Our Business Resource Groups connect employees with common interests to promote inclusion and provide perspective. These communities offer opportunities for networking, professional development, and community engagement that enrich the employee experience.

Our commitment to sustainability and reducing our carbon footprint extends throughout the organization. We participate in global partnerships focused on environmental responsibility and community service. When you join arenaflex, you become part of something bigger than yourself – a team committed to making a positive difference in the world.

Compensation and Benefits

We recognize that our employees deserve competitive compensation and comprehensive benefits that support their well-being. In addition to the hourly rate of $25, arenaflex offers an industry-leading total rewards package that includes:

• Competitive Compensation: Industry-competitive pay with performance incentives and profit sharing programs that reward your contributions to our success.


• Retirement Benefits: 401(k) plan with generous company contributions up to 9% to help you save for the future.


• Paid Time Off: Comprehensive paid time off including vacation, holidays, personal days, maternity leave, and parental leave to support work-life balance.


• Health and Wellness: Complete health benefits including medical, dental, vision, short-term and long-term disability, and life insurance to protect you and your family.


• Family Support: Family care assistance through fertility support, surrogacy and adoption assistance, lactation support, sponsored backup care, and programs that support family members in all life stages.


• Employee Assistance Program: Access to comprehensive wellness programs supporting physical, emotional, social, and financial well-being, including free financial education and extensive resources supporting mental health.


• Travel Benefits: Domestic and international space-available flight benefits for employees and eligible family members, allowing you to explore the world.


• Perks and Discounts: Access to over 500 discounts and voluntary benefits through Deltaperks, including car and hotel rentals, auto, home, and pet insurance, legal services, and childcare.


• Recognition Programs: Recognition rewards and grants through our platform celebrating achievements and contributions.

Join Our Team

If you're ready to take the next step in your career and make a meaningful impact at a globally respected organization, we encourage you to apply for this exciting opportunity. At arenaflex, you'll find more than just a job – you'll find a community of dedicated professionals who are passionate about what they do and committed to excellence.

We looking forward to receiving your application and learning how your skills and experience can contribute to our mission of delivering safe, reliable, and exceptional air travel experiences to millions of customers around the world. Apply today and take the first step toward an exciting career with arenaflex!