Experienced Information Security Manager – Technology Risk Oversight, Cybersecurity Governance & Business Continuity Management (Full-Time Position)

Join arenaflex as an Information Security Manager

Are you ready to step into a pivotal role where your expertise in technology risk management can shape the future of a global financial institution? arenaflex is seeking a talented and driven Information Security Manager to join our prestigious Governance, Risk, and Compliance (GRC) team. This is not just another job—it's an opportunity to be at the forefront of cybersecurity innovation, working alongside some of the industry's most brilliant minds to protect arenaflex and its millions of customers worldwide.

In today's rapidly evolving digital landscape, technology risk management has become a board-level priority. Cyberattacks are no longer a question of "if" but "when," and organizations like arenaflex are leading the charge in building robust defense mechanisms and proactive risk oversight frameworks. As part of our GRC team, you will play a critical role in ensuring that arenaflex operates safely, securely, and in full compliance with regulatory expectations across all our global operations.

About arenaflex

arenaflex is a globally recognized leader in financial services, known for our commitment to excellence, innovation, and customer satisfaction. With a rich history spanning decades, we have consistently adapted to the changing landscape of technology and finance, emerging stronger and more resilient with each challenge. Our culture is built on integrity, collaboration, and a relentless pursuit of perfection. We believe that our greatest asset is our people, and we invest heavily in their growth, development, and well-being.

At arenaflex, diversity is celebrated, and inclusion is foundational to who we are. We bring together professionals from various backgrounds, cultures, and perspectives, fostering an environment where creativity thrives and innovation knows no bounds. When you join arenaflex, you're not just accepting a job—you're becoming part of a legacy.

The Opportunity: Information Security Manager

This individual contributor role is a crucial part of our second-line technology risk oversight function within the GRC group, reporting directly to the Chief Risk Officer (CRO). This is an exceptional opportunity to work with a team of diverse and accomplished professionals who are responsible for building the technology risk management program and providing independent risk oversight across technology, cybersecurity, and business continuity management domains.

As an Information Security Manager at arenaflex, you will be tasked with independently assessing and reporting on risks while providing a holistic view of the organization's total risk exposure. The risks identified by our team are reported to Senior Management, Risk Management Committees, the Board of Directors, and regulatory authorities. This position requires someone who can effectively collaborate with key stakeholders across lines of business and lines of defense to ensure risks are managed effectively and efficiently in accordance with company policies and applicable regulatory requirements.

Key Responsibilities

Your day-to-day responsibilities as an Information Security Manager will be dynamic, challenging, and incredibly rewarding. Here's what you can expect:

• Lead Independent Risk Oversight: Conduct independent, proactive risk management and oversight of technology, cybersecurity, and business continuity management risks generated within business processes or arising from the use of technology.


• Data-Driven Reviews: Perform information-driven reviews focused on technology processes, cybersecurity controls, and business continuity management risks, leveraging your analytical expertise to uncover hidden vulnerabilities and opportunities for improvement.


• Exploratory Data Analysis: Conduct exploratory data analysis on large sets of structured data using SQL, Python, and Excel to develop meaningful insights on cybersecurity and technology-related data.


• Risk Indicator Development: Create and enhance data-driven key risk indicators and key performance indicators that provide real-time insights into risk and performance trends, enabling proactive decision-making.


• Process Learning and Assessment: Learn technology, cybersecurity, and business continuity management processes at arenaflex, demonstrating a strong willingness to present an effective valid challenge to existing practices.


• Regulatory Awareness: Stay proficient in relevant regulations, guidelines, and industry standards, ensuring arenaflex remains ahead of compliance requirements.


• Program Development: Support the design of independent technology risk oversight program that defines the engagement and integration with various risk management programs, including Process Risk Self Assessments, Business Continuity Management, New Product Approval, Mergers and Acquisitions, and more.


• Stakeholder Collaboration: Work closely with cross-functional teams to ensure comprehensive risk coverage and effective risk mitigation strategies.


• Reporting and Communication: Prepare and present risk reports to senior leadership, ensuring clarity, accuracy, and actionable recommendations.

Essential Qualifications

To succeed in this role, you must bring a combination of education, experience, and personal attributes that align with arenaflex's high standards:

• Educational Background: A Bachelor's degree is required. Preferred educational backgrounds include Computer Science, Information Systems, or a related field.


• Experience: A minimum of 5 years of experience in risk management across any of the three lines of defense (first line, second line, or third line).


• Risk Identification Skills: Proven ability to identify risks, analyze issues, and derive meaningful insights about risk trends by conducting interviews and analyzing large volumes of data.


• Technical Knowledge: Strong knowledge of system, cloud security, cyber intelligence, and cyber incident response areas.


• Analytical Excellence: Excellent analytical skills with high attention to detail and accuracy.


• Data Analytics Proficiency: Strong knowledge of at least one data mining or big data analytical tools (such as Microsoft Excel: Pivot Tables, SQL, SAS, Python, or R).


• Critical Thinking: Brilliant critical thinking and problem-solving skills that enable you to approach challenges from unique angles.


• Self-Motivation: Required self-starter who can work with minimal supervision and take ownership of deliverables.


• Communication Skills: Excellent verbal, written, and interpersonal skills that allow you to influence and engage stakeholders at all levels.


• Intellectual Curiosity: Ability to challenge conventional thinking by actively engaging in constructive dialogue.

Preferred Qualifications

While not strictly required, the following qualifications will give you a competitive edge:

• Advanced educational background in Computer Science or Information Systems.


• Experience in risk management across cybersecurity, information technology, third-party, and business continuity management domains.


• Industry certifications such as CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), or CISSP (Certified Information Systems Security Professional).


• Cloud security certifications such as CCSK (Certificate of Cloud Security Knowledge), CompTIA Cloud+, CCSP (Certified Cloud Security Professional), or Azure Security certifications.


• Understanding of risk assessment methodologies, techniques, and industry standards such as COSO, COBIT, ISO 27001, FAIR, or NIST RMF.


• Knowledge of relevant policies and regulations such as OCC Elevated Standards or FFIEC IT booklets.


• Experience with Governance, Risk, and Compliance tools.

Skills and Competencies

Beyond your qualifications, we are looking for individuals who embody certain core competencies that are essential for success at arenaflex:

• Strategic Thinking: The ability to see the big picture while managing intricate details.


• Adaptability: Comfortable working in a fast-paced, dynamic environment where change is constant.


• Collaborative Mindset: Natural inclination to work collaboratively across teams and departments.


• Ethical Judgment: Unwavering commitment to integrity and ethical decision-making.


• Continuous Learning: Passion for staying current with emerging trends, technologies, and best practices in cybersecurity and risk management.


• Resilience: Ability to remain composed under pressure and effectively manage challenging situations.

Career Growth and Learning Opportunities

At arenaflex, we believe in investing in our people. When you join our team, you gain access to a world of growth opportunities:

• Professional Development: Comprehensive training programs, certifications, and workshops to enhance your skills and knowledge.


• Career Advancement: Clear pathways for career progression, with the potential to move into senior leadership roles within the GRC function or other areas of the organization.


• Mentorship: Access to experienced mentors who will guide you throughout your career journey at arenaflex.


• Cross-Functional Exposure: Opportunities to work with different business units, gaining a broad understanding of the organization.


• Industry Recognition: Exposure to industry-leading practices and thought leadership.

Work Environment and Culture

arenaflex fosters a supportive and inclusive work environment where every employee is valued and empowered to succeed. We offer:

• Flexible Work Arrangements: We understand the importance of work-life balance and offer flexible scheduling options.


• Collaborative Culture: A team-oriented atmosphere where diverse perspectives are welcomed and celebrated.


• State-of-the-Art Facilities: Access to modern offices equipped with the latest technology and amenities.


• Wellness Programs: Comprehensive health and wellness initiatives to support your physical and mental well-being.


• Community Involvement: Opportunities to participate in corporate social responsibility initiatives and give back to the community.

Compensation and Benefits

arenaflex is committed to providing competitive compensation and comprehensive benefits:

• Competitive Salary: $28 per hour (commensurate with experience and qualifications).


• Health Benefits: Full medical, dental, and vision coverage for you and your family.


• Retirement Plans: 401(k) with company match to help you save for the future.


• Paid Time Off: Generous vacation, sick leave, and personal days.


• Holiday Pay: Observe major holidays with paid time off.


• Professional Development Budget: Annual allocation for training, certifications, and continuing education.


• Employee Assistance Program: Confidential support for personal and professional challenges.


• Life Insurance: Coverage to protect your loved ones.


• Disability Insurance: Income protection in case of disability.

Location

This position is based in New York, USA, with potential for remote work arrangements in accordance with arenaflex's flexible work policies.

Join Our Team Today

If you are ready to take the next step in your career and make a meaningful impact at a globally respected organization, we encourage you to apply for this exciting opportunity. At arenaflex, you will find more than a job—you will find a career, a community, and a future.

We are looking for passionate, dedicated, and talented individuals who are eager to contribute to our mission of delivering exceptional financial services while maintaining the highest standards of security and compliance. Your skills, expertise, and drive are exactly what we need to continue our legacy of excellence.

Don't miss this chance to grow with a leader in the industry. Apply now and become part of the arenaflex family, where your contributions matter and your potential is limitless.

arenaflex is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.