Groupon is a marketplace where customers discover new experiences and services everyday and local businesses thrive. To date we have worked with over a million merchant partners worldwide, connecting over 16 million customers with deals across various categories. In a world often dominated by e-commerce giants, we stand out as one of the few platforms uniquely committed to helping local businesses succeed on a performance basis.
Groupon is on a radical journey to transform our business with relentless pursuit of results. Even with thousands of employees spread across multiple continents, we still maintain a culture that inspires innovation, rewards risk-taking and celebrates success. The impact here can be immediate due to our scale and the speed of our transformation. We're a "best of both worlds" kind of company. We're big enough to have the resources and scale, but small enough that a single person has a surprising amount of autonomy and can make a meaningful impact.
As a Governance, Risk, and Compliance (GRC) Manager, you will play a pivotal role in developing and overseeing the company's GRC strategy, ensuring that risk management, compliance, and audit activities align with organizational goals. You'll be responsible for leading a dynamic team to implement best practices, manage risk effectively, and ensure compliance with industry standards and regulations. Your expertise will directly impact the security and integrity of our platform, fostering a culture of compliance throughout the company.
Key Responsibilities:
* Lead a team of 4 GRC professionals, providing guidance, mentorship, and oversight to ensure the effective execution of GRC programs.
* Develop, implement, and maintain governance, risk management, and compliance frameworks to ensure adherence to regulatory requirements, including PCI-DSS, GDPR, SOX, and ISO 27001.
* Conduct risk assessments to identify vulnerabilities and develop risk mitigation plans in collaboration with cross-functional teams.
* Manage audits, ensuring that the company is fully prepared for internal and external assessments and that findings are addressed in a timely manner.
* Work closely with stakeholders, including Legal, IT Security, and Internal Audit, to ensure alignment between GRC initiatives and business objectives.
* Lead the development and execution of Business Continuity and Disaster Recovery (BCDR) strategies to ensure the organization's resilience.
* Regularly report on the company's risk and compliance posture to senior management and key stakeholders.
* Foster a company-wide culture of compliance through training, awareness programs, and strategic initiatives.
Qualifications:
* Bachelor's degree - advantage: in Computer Science, Cybersecurity, Information Systems, or a related field.
* Master's degree or MBA with a focus on Information Security or Risk Management is preferred but not mandatory (relevant certifications in GRC such as CRISC, CISA, CISM, or CISSP are highly desirable).
* Proven experience leading GRC initiatives, managing compliance programs, and conducting audits in complex organizations.
* Strong understanding of relevant regulatory frameworks and industry standards, including PCI-DSS, SOX, GDPR, and ISO 27001.
* Experience using GRC software such as OneTrust, MetricStream, or ServiceNow to manage risk, compliance, and audit activities.
* Strong leadership and team management skills with the ability to mentor and develop junior team members.
* Excellent communication skills, with the ability to present complex GRC concepts to both technical and non-technical stakeholders.
* Strong project management skills with the ability to oversee multiple initiatives and ensure their completion on time.
Preferred Qualifications:
* Previous experience in eCommerce or similar fast-paced, technology-driven industries.
* Familiarity with cloud compliance tools (e.g., AWS Config, Azure Policy, Google Cloud Security Command Center).
* Ability to manage a variety of projects simultaneously, ensuring that all deadlines are met with high-quality results.
What We Offer:
* The opportunity to shape the future of our GRC strategy in a rapidly evolving industry.
* A collaborative environment where your expertise will have a direct impact on the company's success.
* Competitive salary, including performance-based bonuses, and opportunities for career advancement.
* A dynamic work environment with a focus on continuous learning and professional growth.
Join us and lead the charge in enhancing our GRC framework to meet the growing challenges of the modern business landscape! #J-18808-Ljbffr