Third Party Risk Management (TPRM) Governance & Compliance Analyst - Remote Cyber Security Professional

Posted 2026-05-06
Remote, USA Full-time Immediate Start

About the Opportunity

Are you ready to join a dynamic team at the forefront of cybersecurity governance and compliance? arenaflex is seeking an experienced Third Party Risk Management (TPRM) Governance & Compliance Analyst to play a pivotal role in protecting our organization's digital landscape from emerging cyber threats. This is a fully remote position offering competitive compensation, flexible work arrangements, and the opportunity to work with a team of passionate cybersecurity professionals who are dedicated to safeguarding sensitive information and maintaining the highest standards of security excellence.

At arenaflex, we believe that effective third-party risk management is the cornerstone of modern enterprise security. As a TPRM Governance & Compliance Analyst, you will be responsible for guiding and executing critical governance activities while ensuring the seamless daily operations of our cybersecurity initiatives. This role offers the unique opportunity to work across multiple business units, collaborate with diverse stakeholders, and contribute directly to our organization's security posture and compliance framework.

Join arenaflex and become part of a team that values innovation, continuous learning, and the pursuit of excellence in cybersecurity. We offer a supportive work environment where your expertise will make a meaningful impact, and your career growth is our priority.

What You'll Do

As a key member of our Cybersecurity Governance, Risk, and Compliance (GRC) team, you will be responsible for managing and executing third-party risk management activities that protect arenaflex from potential cyber threats originating from our vendor ecosystem and internal operations.

Third Party Risk Management (TPRM) Responsibilities


  • Lead Third Party/Internal Risk Management Programs: Manage and support arenaflex's comprehensive third-party and internal risk management framework, conducting thorough cyber risk due diligence assessments on vendors, partners, and internal stakeholders.

  • Risk Assessment Validation: Validate incoming third-party and internal risk assessment requests, working closely with business stakeholders to confirm request details and define the scope of engagements accurately.

  • Stakeholder Coordination: Conduct kick-off meetings with business stakeholders and third parties to establish clear expectations, timelines, and requirements for risk assessments.

  • Questionnaire Management: Coordinate the distribution of due diligence questionnaires to internal stakeholders and third parties, review submissions for completeness, and identify potential risks arising from the design and operational effectiveness of security controls.

  • Documentation & Reporting: Document responses, associated findings, and remediation plans in arenaflex's risk management systems, ensuring comprehensive record-keeping and audit trails.

  • Report Development: Draft and review assessment reports, ensuring that business stakeholders provide timely reviews and approvals.

  • Stakeholder Liaison: Serve as a strong liaison to address queries related to risk control techniques and evaluations, communicating effectively with business units and third parties as required.

  • Continuous Monitoring: Perform ongoing monitoring of third parties through arenaflex's systems, tracking current and new findings and driving them to successful closure.

  • Process Improvement: Identify opportunities for improvement within arenaflex's systems and processes, contributing to continuous enhancement of the TPRM program.

  • Program Support: Work closely with Risk Leads and Supervisors to schedule and execute a wide range of supporting activities related to the risk management program.

Governance, Risk & Compliance (GRC) Responsibilities


  • Strategy Development: Lead and support the development of cybersecurity risk and compliance-related strategies to ensure appropriate treatment of cybersecurity risks in alignment with arenaflex's risk appetite.

  • Compliance Management: Maintain and document compliance with information security-related guidelines and processes through systematic planning, testing, remediating, tracking, and reporting on control reviews and risk assessments.

  • Training & Communications: Lead the development and delivery of compliance and risk education programs, along with ongoing communications that foster a culture of security and compliance throughout the organization.

  • Regulatory Awareness: Stay current with regulatory changes, new guidelines, technology developments, and internal policy modifications to proactively identify emerging risk areas.

  • Standards Maintenance: Lead activities to maintain and guide ISO 27001 certification and other relevant security standards, ensuring ongoing adherence to international best practices.

What We're Looking For

Essential Skills & Competencies


  • Outstanding Stakeholder Management: Proven ability to build strong relationships with business stakeholders at all levels, managing expectations and driving successful outcomes.

  • Information Security Expertise: Working understanding of information security best practices and requirements, including ISO 27001, SOC 2 requirements, SSAE 16/18 requirements, and other relevant frameworks.

  • Risk Management Experience: Hands-on experience in the management of risk, controls, and compliance within a complex organizational environment.

  • Risk Assessment Capabilities: Strong knowledge of risk assessment methodologies, both qualitative and quantitative approaches.

  • Analytical Excellence: Superior analytical and problem-solving abilities, with the capacity to evaluate complex scenarios and develop practical solutions.

  • Communication Skills: Excellent presentation, writing, and verbal communication skills, with the ability to convey technical concepts to non-technical audiences.

Personal Attributes


  • Interpersonal Effectiveness: Strong interpersonal skills with the ability to collaborate effectively across teams and departments.

  • Adaptability: Ability to navigate fast-paced environments and remain flexible with working hours to meet evolving business needs.

  • Communication Mastery: Excellent communication skills, both verbal and written, with attention to detail and clarity.

  • Change Agility: Ability to adapt quickly to changing conditions and drive quality outcomes in dynamic situations.

  • Professional Growth Mindset: Commitment to continuous learning and professional development in the rapidly evolving field of cybersecurity.

Education & Experience


  • Educational Background: Relevant Bachelor's/Master's degree from an accredited university or equivalent professional experience in cybersecurity, information technology, or related field.

  • Industry Experience: Minimum of 4 years of experience in third-party risk management, information security, and audit and compliance tracking, with at least 2-3 years specifically in TPRM or internal audit functions.

  • Preferred Background: Prior experience working with large enterprises and/or major professional services firms is highly desirable.

  • Professional Certifications (Preferred): One or more of the following certifications: CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), ISO27001 Lead Implementer/Auditor, or CISSP (Certified Information Systems Security Professional).

  • Technical Skills: Experience with AI/ML technologies in security applications is a plus.

Why Join arenaflex?

At arenaflex, we pride ourselves on fostering an inclusive, innovative, and growth-oriented workplace where every team member matters. When you join our cybersecurity team, you become part of a community dedicated to protecting our organization and its stakeholders from evolving digital threats.

Career Development & Growth

We invest heavily in the professional development of our team members. As part of arenaflex, you will have access to:


  • Comprehensive training programs and certifications support

  • Clear career progression pathways in cybersecurity and GRC

  • Exposure to cutting-edge security technologies and methodologies

  • Mentorship from industry veterans and thought leaders

  • Cross-functional collaboration opportunities across departments

Work-Life Balance & Flexibility

We understand that great work happens when you have the flexibility to balance your professional and personal life. Our remote work arrangement allows you to:


  • Work from the comfort of your home office

  • Maintain a schedule that supports your productivity peaks

  • Eliminate commute time and redirect it toward what matters most

  • Participate in virtual collaboration with teams across time zones

Compensation & Benefits

We offer a competitive compensation package that recognizes your expertise and contributions:


  • Annual salary of $80,000 (commensurate with experience)

  • Comprehensive health, dental, and vision insurance

  • 401(k) retirement plan with company matching

  • Paid time off and holidays

  • Professional development reimbursement

  • Wellness programs and employee assistance resources

Our Culture

arenaflex is more than just a workplace – it's a community of passionate cybersecurity professionals who share a common goal: creating a secure digital environment for our organization and our customers. We value collaboration, innovation, integrity, and the relentless pursuit of excellence. Our culture encourages open communication, creative problem-solving, and continuous improvement.

Join a team where your contributions are recognized, your voice is heard, and your career aspirations are supported. At arenaflex, we celebrate diversity and believe that different perspectives make us stronger.

Ready to Make an Impact?

If you're ready to take the next step in your cybersecurity career and contribute to a team that's making a real difference, we want to hear from you! This is your opportunity to join arenaflex as a TPRM Governance & Compliance Analyst and play a vital role in protecting our organization from cyber threats.

Apply now and become part of a team that values expertise, innovation, and commitment to excellence. Your skills and passion for cybersecurity are exactly what we need to continue our mission of delivering secure, reliable services to our stakeholders.

Don't miss this opportunity to grow your career with arenaflex – where your expertise truly matters!

We are an equal opportunity employer committed to diversity and inclusion. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Apply today and start your journey with arenaflex!

Apply Now

Similar Jobs

Recent Jobs

**Job Title:** arenaflex Remote Teen Customer Service Representative – Entry-Level Virtual Support Position (No Experience Required)
Experienced Learning & Development Program Manager – Call Center Training & Enablement
Part-Time Remote Data Entry Specialist – Flexible Schedule & Career Growth Opportunities
Remote Data Entry Specialist – Call Support & Customer Help Desk Agent ($32/Hour) – Work From Home Position
Work at Home Chat Operator – Entry Level / No Experience Needed | Remote Customer Support Specialist
Part-Time Remote Customer Service Representative – Flexible Work From Home Position
Experienced Remote Customer Service Agent – Inbound & Outbound Sales Support | Work From Home Opportunity in Florida
Data Entry Clerk – Remote Data Entry Specialist | arenaflex
Flexible Remote Data Entry Specialist – Part-Time & Full-Time Opportunities | Accurate Data Management Professional
Bilingual Customer Service Representative - Multi-Language Support Specialist (Russian, Spanish, Chinese & Additional Languages)

You May Also Like

**Experienced Amazon Chat Support Representative – Remote Customer Service Expert**
**Experienced Full Stack Data Entry Specialist – Remote Opportunity at arenaflex**
**Experienced Customer Service Representative – Apple Products Support – Work From Home Opportunity**
Senior Product Manager, Operations
**Experienced Customer Support Representative – Freshers Welcome to Join arenaflex's Customer Support Team**
**Experienced Entry-Level Data Entry and Chat Support Specialist – Remote Customer Service Representative**
**Experienced Entry Level Remote Customer Chat Support Specialist – Deliver Exceptional Customer Experience in a Fully Remote Environment**
**Experienced Live Chat Customer Support Representative – Remote Work Opportunity**
Legal Operations & Compliance Manager (FULLY REMOTE)
Manager of Peer Services; Evening (2PM - 10PM ET)
Back to Job Board