Risk Analyst

| Chicago

 

Groupon’s Information Security team is seeking an experienced Risk Analyst to assist in analyzing Groupon’s risk environment relative to third parties and internal services and assisting in recommending measures to safeguard valuable information assets and document key information and capabilities of third parties.

 

This involves an understanding of Groupon’s business requirements and a thorough
understanding of regulatory requirements (such as GDPR,PCI) for both outsourced providers and internally developed solutions and how best to meet those requirements. The Analyst must possess a detailed knowledge of our operations, as well as vendor assessment expertise with the goal of determining whether the third party entity has an acceptable information security program which aligns with Groupon’s cyber risk appetite.

 

The successful candidate will also be required to review and assess legal contracts as it pertains to the service providers security posture. The candidate should be able to understand legal terms and definitions and articulate potential security concerns to the Legal teams. The individual will also play a significant role in enhancing and implementing procedures to assess and risk rate the third-party information security program.

 

Responsibilities
● Working directly with key business leaders to facilitate risk analysis, identifying
acceptable levels of risk and establish roles and responsibilities for both service
providers and internally developed solutions
● Maintaining and monitoring enterprise risk exception process to identify areas of non-compliance
● Assist in reviewing contracts, security addendums, policies, and data processing
agreements and comment on potential concerns or issues
● Interact with internal and external partners as needed to provide guidance on
implementing proper controls to mitigate any risk
● Work with Procurement and Legal during the initial review of third party service providers to ensure proper diligence is performed
● Advise the business on managing risk and review materials to identify and quantify third party exposures.
● Assessing cloud technologies such as Software as a Service (SaaS) hosted
applications, Platform as a Service (PaaS), and Infrastructure as a Service deployments (IaaS)
● Assist in the development of both third party due diligence policies and standards and internally developed solutions which set the vendor requirements based on risk.

● Review current risk data to determine exceptions, trends or other changes in risk relative to the firm’s risk appetite and escalate as deemed appropriate.

 

Qualifications:
● Minimum of 5 years of experience in an IT Risk, Third Party Vendor Assessment or
Information Security organization with an understanding of Audit, Security and Risk.
● Prior experience providing and negotiating information security provisions within third-party agreements.
● Strong understanding of security standards such as NIST and ISO
● Strong knowledge of PCI, SOX 404, GDPR, and other regulations/standards
● Maintain an understanding of security best practices such as encryption standards, networking security, cloud security, and web security, etc.
● Prior experience conducting information security due diligence of third-party suppliers
● Possesses ability to clearly summarize complex problems and tailor messaging for intended audiences.
● Actively engages with other departments and teams to ensures that activities achieve the appropriate result for information security

Groupon provides a global marketplace where people can buy just about anything, anywhere, anytime. We’re enabling real-time commerce across an expanding range of categories including local businesses, travel destinations, consumer products, and live or lively events. At the same time, we are providing advertising options and tools that merchants can use to grow and manage their businesses. Culturally, we believe that great people make great companies and that starting with the customer and working backward moves us forward. Community matters to us on an internal, local and global scale—it’s fundamental to our company’s growth and to the well-being of the world at large. We also value self-awareness, candor, lunch and WiFi. If we match with you, please apply to join us.

Read Full Job Description
Apply now
loading ...
Emailed

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • C#Languages
    • C++Languages
    • JavaLanguages
    • JavascriptLanguages
    • PerlLanguages
    • PythonLanguages
    • RubyLanguages
    • FluxLibraries
    • jQueryLibraries
    • ReactLibraries
    • ReduxLibraries
    • DjangoFrameworks
    • Ember.jsFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • Ruby on RailsFrameworks
    • AccessDatabases
    • HiveDatabases
    • MongoDBDatabases
    • MySQLDatabases
    • PostgreSQLDatabases
    • RedisDatabases
    • TeradataDatabases
    • IllustratorDesign
    • PhotoshopDesign
    • BasecampManagement
    • JIRAManagement
    • SalesforceCRM

Location

Our headquarters is nestled alongside the Chicago River in the bustling River North neighborhood, close to both blue and brown line CTA trains.
600 W. Chicago Ave Suite 400, Chicago, IL 60654

An Insider's view of Groupon

How would you describe the company’s work-life balance?

Groupon provides an environment where I can strive for maximum work-life effectiveness, room for growth, and there is always something new to do. I enjoy spending lots of time at work because I love what I do; the hours are not burdensome, Groupon fits me. I define success in my own terms & Groupon provides us with the flexibility to be successful.

Milan

Senior Manager of Operations

What kinds of technical challenges do you and your team face?

We are working on arriving at the optimal attribution models across different areas of our business. For example, the attribution of a purchase to a specific experience — a home page feature, an email, a push notification — likely has a different window of time where we can reasonably say a specific purchase is a result of a specific experience.

Kristi

Data Scientist

How has your career grown since starting at the company?

Here at Groupon, what you do matters. I got my start at Groupon as an intern and have had the opportunity in the past (almost) 5 years to build out a global volunteer program that has engaged over 5,000 employees in over 63,000 hours of service supporting the work of close to 650 nonprofit organizations.

Alicia

Program Manager, Employee & Community Engagement

What projects are you most excited about?

Recently, we committed to having 100% of our job descriptions reviewed for gender balance by the end of 2018. Also for 2018, work will continue with our Employee Resource Groups, who play a pivotal part in the attraction and selection of diverse top talent, and themselves can be developed and promoted into company leaders.

Carlos

Head of Diversity Recruitment

What are Groupon Perks + Benefits

Health Insurance & Wellness Benefits
Dental Benefits
Vision Benefits
Health Insurance Benefits
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Vacation & Time Off Benefits
Unlimited Vacation Policy
Paid Volunteer Time
Perks & Discounts
Casual Dress
Commuter Benefits
Game Room
Recreational Clubs

Additional Perks + Benefits

Fitness benefits. Free office shuttles. Paid parental and family leave. Comprehensive sales training program. Sense of joy. Onsite cafes. Unlimited Routine Time Off (RTO). Flexible spending accounts. Life & AD&D insurance. 401(k). Disability coverage.

More Jobs at Groupon80 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
HR
Legal
Marketing
Operations
Product
Project Mgmt
Sales
Content
Data + Analytics
new
Chicago
Operations
new
Chicago
Data + Analytics
new
Chicago
Operations
new
Chicago
Marketing
new
Chicago
Operations
new
Chicago
Operations
new
Chicago
Marketing
new
Chicago
Data + Analytics
new
Chicago
Sales
new
Chicago
Project Mgmt
new
Chicago
Design + UX
new
Chicago
Operations
new
Chicago
Operations
new
Chicago
Sales
new
Chicago
Data + Analytics
new
Chicago
Data + Analytics
new
Chicago
Data + Analytics
new
Chicago
Data + Analytics
new
Chicago
Sales
new
Chicago
Developer
new
Chicago
Marketing
new
Chicago
Finance
new
Chicago
Data + Analytics
new
Chicago
HR
new
Chicago
Data + Analytics
new
Chicago
Sales
new
Chicago
Finance
new
Chicago
Data + Analytics
new
Chicago
Data + Analytics
new
Chicago
Product
new
Chicago
Operations
new
Chicago
Data + Analytics
new
Chicago
Content
new
Chicago
Marketing
new
Chicago
Operations
new
Chicago