Remote IT Security Analyst – Data Risk Management, Controls & Compliance – arenaflex – $25/hr – Full‑Time

About arenaflex – Pioneering Secure Aviation Solutions

arenaflex is a global leader in the aviation industry, delivering safe, reliable, and innovative travel experiences to millions of passengers every day. Our mission is to protect the digital backbone that powers flight operations, reservation systems, and customer interactions. As a forward‑thinking organization, arenaflex invests heavily in cutting‑edge technology, robust risk‑management frameworks, and a culture that values integrity, collaboration, and continuous improvement. Joining arenaflex means becoming part of a team that not only safeguards critical data but also drives transformational change across the entire airline ecosystem.

Position Overview – Remote IT Security Analyst

arenaflex is seeking a highly motivated Remote IT Security Analyst to serve as a second‑line defender within our Data Security Management (DSM) team. In this role, you will assess, measure, and communicate risk across the enterprise, develop and enforce IT controls, and partner with cross‑functional stakeholders to ensure compliance with industry regulations such as SOX, PCI‑DSS, and other legal requirements. This is a full‑time, remote position offering a competitive hourly rate of $25, flexible work hours, and the opportunity to make a tangible impact on the security posture of a world‑class airline.

Key Responsibilities

• Risk Assessment & Reporting: Conduct comprehensive risk assessments for applications, infrastructure, and data environments; quantify risk exposure and present findings to senior leadership.
• Control Design & Implementation: Collaborate with IT portfolio owners (Infrastructure, Engineering, Application Development, and Cloud Services) to design, document, and implement effective security controls that mitigate identified risks.
• Compliance Management: Ensure ongoing compliance with SOX, PCI‑DSS, GDPR, and other regulatory frameworks by performing control testing, gap analysis, and remediation tracking.
• Stakeholder Engagement: Build strong relationships with internal partners—including Legal, Audit, and Business Units—to align security initiatives with business objectives.
• Training & Enablement: Develop and deliver training programs for IT teams on risk concepts, control effectiveness, and best practices for secure development.
• Continuous Monitoring: Perform periodic control effectiveness testing, identify control deficiencies, and work with owners to remediate gaps promptly.
• Documentation & Knowledge Sharing: Produce clear, concise documentation of control designs, testing procedures, and risk mitigation strategies for internal and external audits.
• Incident Preparedness: Contribute to the development of incident response playbooks and support the execution of tabletop exercises to enhance organizational readiness.
• Innovation & Improvement: Stay abreast of emerging threats, industry trends, and new security technologies; recommend enhancements to existing controls and processes.
• Ad‑hoc Projects: Lead or support special security initiatives, such as third‑party risk assessments, cloud security reviews, and data privacy impact analyses.

Essential Qualifications

• Bachelor’s degree in Computer Science, Information Security, Information Systems, or a related field.
• Minimum of 2 years of hands‑on experience in an IT environment with a focus on risk and control frameworks.
• Strong knowledge of risk management standards and security frameworks such as NIST, ISO 27001, and COSO.
• Demonstrated ability to communicate complex technical concepts to both technical and non‑technical audiences.
• Proven track record of developing, testing, and maintaining IT controls in a regulated environment.
• Experience working with compliance requirements (SOX, PCI‑DSS, GDPR) and performing control testing.
• Excellent analytical skills, attention to detail, and the ability to manage multiple priorities in a fast‑paced setting.
• Self‑starter attitude with the ability to work independently while collaborating effectively with remote teams.
• Commitment to upholding the highest standards of integrity, confidentiality, and professionalism.

Preferred Qualifications & Certifications

• Professional certifications such as CISA, CISM, CISSP, or CRISC.
• Hands‑on experience with security tools and platforms (e.g., RSA Archer, ServiceNow GRC, Splunk, or similar).
• Background in data security domains such as incident response, identity & access management, penetration testing, or e‑discovery.
• Experience in cloud security (AWS, Azure, GCP) and associated risk frameworks.
• Advanced degree (MS) in Cybersecurity, Information Assurance, or a related discipline.
• Familiarity with agile development methodologies and the ability to embed security controls within DevOps pipelines.

Core Skills & Competencies

• Risk Analysis: Ability to assess technical and business risks, prioritize remediation efforts, and articulate risk appetite.
• Communication: Strong written and verbal communication skills; capable of producing clear documentation and delivering effective presentations.
• Collaboration: Proven teamwork skills, with a focus on building trust across diverse functional groups.
• Problem Solving: Innovative mindset for identifying root causes and designing sustainable security solutions.
• Adaptability: Flexibility to adjust priorities based on emerging threats and evolving business needs.
• Ethical Judgment: Commitment to safeguarding personal and corporate data, with a proactive approach to privacy.

Career Development & Learning Opportunities

arenaflex invests heavily in the professional growth of its employees. As a Remote IT Security Analyst, you will have access to:

• Structured mentorship programs pairing you with senior security leaders.
• Funding for industry certifications and advanced training courses.
• Opportunities to work on cross‑functional projects that broaden your expertise beyond traditional security roles.
• Regular knowledge‑sharing sessions, webinars, and internal conferences focused on emerging cyber‑threats and best practices.
• A clear career path that can lead to senior security architect, risk manager, or governance, risk, and compliance (GRC) leadership positions.

Work Environment & Culture at arenaflex

arenaflex fosters a culture built on five core values: Care, Integrity, Flexibility, Employee Development, and Collaboration. Our remote workforce enjoys:

• A supportive, inclusive environment that celebrates diverse perspectives.
• Flexible work schedules that empower you to balance professional responsibilities with personal commitments.
• Regular virtual team‑building activities, wellness challenges, and community outreach programs.
• Access to a global network of peers, enabling you to share ideas and learn from industry experts worldwide.

Compensation, Perks & Benefits

arenaflex offers a competitive compensation package that reflects your expertise and contributions:

• Hourly Rate: $25 per hour, paid bi‑weekly.
• Retirement Savings: 401(k) plan with company match up to 9% of eligible compensation.
• Paid Time Off: Generous vacation, holidays, sick leave, parental leave, and paid time off for personal matters.
• Health & Wellness: Comprehensive medical, dental, vision, short‑ and long‑term disability, and life insurance coverage.
• Family Support: Fertility assistance, surrogacy support, lactation resources, and backup childcare services.
• Well‑Being Programs: Access to employee assistance programs, financial counseling, mental‑health resources, and wellness challenges.
• Travel Benefits: Employee and eligible family flight privileges, plus discounts on airline tickets worldwide.
• Learning & Development: Tuition reimbursement, online learning platforms, and internal certification pathways.
• Recognition Programs: Awards and incentives through the “Continuous Together” platform for outstanding performance.
• Additional Perks: Access to over 500 exclusive offers, including car rentals, hotel stays, insurance discounts, and legal services through arenaflex Perks.

Why Join arenaflex?

Working at arenaflex means you will be part of a mission‑driven organization that places security at the heart of its operations. You will have the autonomy to innovate, the resources to grow, and the support of a collaborative community that values your contributions. If you thrive in a dynamic environment, enjoy tackling complex security challenges, and are eager to make a lasting impact on a global airline, arenaflex is the perfect place for you.

How to Apply

Ready to take the next step in your security career? Submit your application today and become a key player in protecting the future of aviation.

Apply!