Chief Information Security Officer
Groupon is a marketplace where customers discover new experiences and services everyday and local businesses thrive. To date we have worked with over a million merchant partners worldwide, connecting over 16 million customers with deals across various categories. In a world often dominated by e-commerce giants, we stand out as one of the few platforms uniquely committed to helping local businesses succeed on a performance basis.
Groupon is on a radical journey to transform our business with relentless pursuit of results. Even with thousands of employees spread across multiple continents, we still maintain a culture that inspires innovation, rewards risk-taking and celebrates success. The impact here can be immediate due to our scale and the speed of our transformation. We're a "best of both worlds" kind of company. We're big enough to have the resources and scale, but small enough that a single person has a surprising amount of autonomy and can make a meaningful impact.
Role Overview
As the CISO, you will be responsible for the overall security posture of Groupon’s cloud ecosystem, ensuring compliance, mitigating threats, and building a resilient security infrastructure. You will lead security efforts across the organization, working closely with IT, InfoSec, and business teams to drive strategic initiatives and ensure the safety of our employees, consumers, and merchants.
Key Responsibilities
Strategic Leadership
- Develop and execute a comprehensive information security strategy aligned with Groupon’s business objectives and regulatory requirements (PCI, SOC 2, GDPR, etc.).
- Provide guidance on secure system architecture, ensuring the adoption of tools and processes that complement each other within the GCP cloud ecosystem.
Security Framework & Compliance
- Establish benchmarks and implement security protocols to align with business and regulatory objectives.
- Ensure compliance with industry standards, including CICD practices, and promote the use of tools like SonarQube for security checks.
- Manage network segmentation by platform, product, or funnel to isolate potential threats.
Threat Monitoring & Risk Mitigation
- Introduce and oversee threat monitoring systems targeting key fraud areas:
- Consumer and Merchant account takeovers.
- Checkout vulnerabilities and ongoing threat detection.
- Proactively address vulnerabilities, ensuring the highest level of security across Groupon's infrastructure.
Incident Response & Disaster Recovery
- Develop and own the Disaster Recovery Plan, ensuring it is regularly tested and updated.
- Create and manage a robust Incident Response Plan, with cross-functional testing to ensure readiness for any security events.
Execution & Collaboration
- Collaborate with IT and InfoSec teams to implement security supervision and operational processes.
- Lead cross-departmental initiatives to embed security into Groupon’s product lifecycle and business processes.
Team Development & Leadership
- Build and lead a high-performing security team capable of meeting Groupon’s evolving security needs.
- Foster a culture of security awareness across the organisation, providing training and guidance to employees and stakeholders.
Key Qualifications
- 10+ years of experience in Information Security, including leadership roles.
- Expertise in regulatory frameworks (PCI DSS, SOC 2, GDPR) and cloud security, particularly in GCP.
- Demonstrated success in implementing and managing threat monitoring systems, disaster recovery, and incident response plans.
- Proven ability to manage network segmentation and integrate security measures into CICD processes using open-source tools like SonarQube.
- Strong leadership and communication skills, with experience leading security strategies at a senior level in a global organization.
- Deep understanding of fraud prevention and vulnerability management.
- Collaborative mindset with the ability to engage with technical and non-technical teams effectively.
What We Offer
- An opportunity to lead security efforts at a global marketplace with millions of users.
- A collaborative and performance-driven culture that values innovation and impact.
- Competitive salary and benefits package.
- Flexible work environment with global exposure and cross-functional collaboration.
Join Groupon as our Chief Information Security Officer (CISO) to lead the charge in safeguarding our digital landscape, driving compliance, and ensuring a secure future for our business, employees, and customers.
Apply Today and Make an Impact!
Groupon’s purpose is to build strong communities through thriving small businesses. To learn more about the world’s largest local e-commerce marketplace, click here. You can also find out more about us in the latest Groupon news as well as learning about our DEI approach. If all of this sounds like something that’s a great fit for you, then click apply and join us on a mission to become the ultimate destination for local experiences and services.
Beware of Recruitment Fraud: Groupon follows a merit-based recruitment process without charging job seekers any fees. We've noticed an increase in recruitment fraud, including fake job postings and fraudulent interviews and job offers aimed at stealing personal information or money. Be cautious of individuals falsely representing Groupon's Talent Acquisition team with fake job offers. If you encounter any suspicious job offers or interview calls demanding money, recognize these as scams. Groupon is not responsible for losses from such dealings. For legitimate job openings (and a sneak peek into life at Groupon), always check our official career website at grouponcareers.com.
Apply for this job
*
indicates a required field