Governance, Risk, and Compliance (GRC) Manager

Groupon is a marketplace where customers discover new experiences and services everyday and local businesses thrive. To date we have worked with over a million merchant partners worldwide, connecting over 16 million customers with deals across various categories. In a world often dominated by e-commerce giants, we stand out as one of the few platforms uniquely committed to helping local businesses succeed on a performance basis.

Groupon is on a radical journey to transform our business with relentless pursuit of results. Even with thousands of employees spread across multiple continents, we still maintain a culture that inspires innovation, rewards risk-taking and celebrates success. The impact here can be immediate due to our scale and the speed of our transformation. We're a "best of both worlds" kind of company. We're big enough to have the resources and scale, but small enough that a single person has a surprising amount of autonomy and can make a meaningful impact.

As a Governance, Risk, and Compliance (GRC) Manager, you will play a pivotal role in developing and overseeing the company's GRC strategy, ensuring that risk management, compliance, and audit activities align with organizational goals. You'll be responsible for leading a dynamic team to implement best practices, manage risk effectively, and ensure compliance with industry standards and regulations. Your expertise will directly impact the security and integrity of our platform, fostering a culture of compliance throughout the company.

Key Responsibilities:

• Lead a team of 4 GRC professionals, providing guidance, mentorship, and oversight to ensure the effective execution of GRC programs.
• Develop, implement, and maintain governance, risk management, and compliance frameworks to ensure adherence to regulatory requirements, including PCI-DSS, GDPR, SOX, and ISO 27001.
• Conduct risk assessments to identify vulnerabilities and develop risk mitigation plans in collaboration with cross-functional teams.
• Manage audits, ensuring that the company is fully prepared for internal and external assessments and that findings are addressed in a timely manner.
• Work closely with stakeholders, including Legal, IT Security, and Internal Audit, to ensure alignment between GRC initiatives and business objectives.
• Lead the development and execution of Business Continuity and Disaster Recovery (BCDR) strategies to ensure the organization’s resilience.
• Regularly report on the company’s risk and compliance posture to senior management and key stakeholders.
• Foster a company-wide culture of compliance through training, awareness programs, and strategic initiatives.

Qualifications:

• Bachelor's degree in Law, Business Administration, Finance, or a related field (relevant certifications in GRC such as CRISC, CISA, CISM, or CISSP are highly desirable).
• Proven experience leading GRC initiatives, managing compliance programs, and conducting audits in complex organizations.
• Strong understanding of relevant regulatory frameworks and industry standards, including PCI-DSS, SOX, GDPR, and ISO 27001.
• Experience using GRC software such as OneTrust, MetricStream, or ServiceNow to manage risk, compliance, and audit activities.
• Strong leadership and team management skills with the ability to mentor and develop junior team members.
• Excellent communication skills, with the ability to present complex GRC concepts to both technical and non-technical stakeholders.
• Strong project management skills with the ability to oversee multiple initiatives and ensure their completion on time.

Preferred Qualifications:

• Previous experience in eCommerce or similar fast-paced, technology-driven industries.
• Familiarity with cloud compliance tools (e.g., AWS Config, Azure Policy, Google Cloud Security Command Center).
• Ability to manage a variety of projects simultaneously, ensuring that all deadlines are met with high-quality results.

What We Offer:

• The opportunity to shape the future of our GRC strategy in a rapidly evolving industry.
• A collaborative environment where your expertise will have a direct impact on the company's success.
• Competitive salary, including performance-based bonuses, and opportunities for career advancement.
• A dynamic work environment with a focus on continuous learning and professional growth.

Join us and lead the charge in enhancing our GRC framework to meet the growing challenges of the modern business landscape!

Groupon’s purpose is to build strong communities through thriving small businesses. To learn more about the world’s largest local e-commerce marketplace, click here. You can also find out more about us in the latest Groupon news as well as learning about our DEI approach. If all of this sounds like something that’s a great fit for you, then click apply and join us on a mission to become the ultimate destination for local experiences and services.

Beware of Recruitment Fraud: Groupon follows a merit-based recruitment process without charging job seekers any fees. We've noticed an increase in recruitment fraud, including fake job postings and fraudulent interviews and job offers aimed at stealing personal information or money. Be cautious of individuals falsely representing Groupon's Talent Acquisition team with fake job offers. If you encounter any suspicious job offers or interview calls demanding money, recognize these as scams. Groupon is not responsible for losses from such dealings. For legitimate job openings (and a sneak peek into life at Groupon), always check our official career website at grouponcareers.com.