Security Analyst, GRC

Save to Kiter
What Opentable is looking for in applicants

Are you curious? Do you have a natural interest in discovering how things work and why -- and then have a burning desire to share that knowledge? Do you have a passion for connecting the dots between systems, methodically collecting, organizing and centralizing information? 

OpenTable is the largest diner and restaurant network in the world. Our mission is to help experience the world through dining, and we think that is delicious! We are looking for a Security Analyst, GRC with a tech first mindset that will help drive risk management and compliance in our organization. 

This position will work closely with multiple teams to develop sensible processes and controls that satisfy external audit requirements as well as internal business objectives.

Our ideal candidate:

  • Is empathetic, patient, loves to help teammates and passionate about security.

  • Takes a balanced, pragmatic approach to risk management in the context of technical projects and organizational goals.

  • Is adept at building complex project plans and tracking completion, negotiating commitments and escalating on blocking issues constructively.

  • Can work under ambiguous situations

  • Is a master of bringing clarity to projects by digging into documentation, and asking the right questions to the right people.

  • Is adroit in leveraging technology to streamline and automate manual processes.

  • Is comfortable admitting their lack of knowledge, and is motivated to learn.


  • Maintain the Risk Register processes, standards, and components

  • Execution and management of the Third-party Risk Assessment lifecycle for vendors, including initial review, onboarding, regular reporting and tracking of identified risks from assessments.

  • Contribute to the development of tools, automation, and practices to better support ongoing GRC services.

  • Streamline audit processes. 

  • Work closely with the CISO to develop and implement strategies for governance and compliance related to corporate-wide security initiatives.

  • Design and implement data protection policies, processes, and procedures to align with Legal and Information Security policies.

  • Lead or participate in compliance and security audit activities with external auditors and internal control owners to ensure timely and successful completion of audit requirements


  • Experience performing technology Third-party security and risk management lifecycle program work, including assessment, reporting and remediation planning and tracking activities.

  • Familiarity with industry and regulatory frameworks like NIST, SOC, PCI, ISO, CCPA, GDPR etc.

  • Basic understanding of concepts of risk analysis, computer security, IT systems, and networking

About OpenTable

OpenTable, part of Booking Holdings Inc. (NASDAQ: BKNG), is the world's leading provider of online restaurant reservations, seating more than 25 million diners per month via online bookings across approximately 60,000 restaurants.

Since its inception in 1998, OpenTable has seated more than 1.5 billion diners in over 20 countries. The Company is headquartered in San Francisco, California, and the OpenTable service is available throughout the United States, as well as in Canada, Germany, Japan, Mexico, the UK and many more locations.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

As an employee of OpenTable, you will be part of a global network that includes OpenTable and KAYAK's portfolio of meta-search brands including momondo, Cheapflights, Swoodoo, checkfelix and Mundi. Many employees are dedicated to one brand, but we all have the benefit of using each other’s strengths and insights. Together, we’re able to help people experience the world through dining and travel.


Want some tips on how to get an interview at Opentable?

What is Opentable looking for?
If this role looks interesting to you, a great first step is to understand what excites you about the team, product or mission. Take your time thinking about this and then tell the team! Get in touch and communicate that passion.
What are interviews for Security Analyst like?
Interview processes vary by company, role and team. The best plan is to see what others have experienced and then plan accordingly.
How to land an interview at Security Analyst?
A great first step is organizing your path to an offer. Check out Kiter for tools to get started!