Director, Vulnerability Reduction at Expedia Group

| Bellevue
Sorry, this job was removed at 12:36 p.m. (PST) on Thursday, November 21, 2019
Find out who's hiring in Seattle.
See all Developer + Engineer jobs in Seattle

ExpediaAbout us

Looking to join our exciting Security team at Expedia Group, securing our company to continue to be at the forefront of travel technology? That is what we do within Enterprise Risk & Security (ERS). Our job is to ensure that our employees, consumers, and partners have a safe and secure experience while operating our services and brands. You can be a part of this!

ERS seeks a Director of Vulnerability Reduction to set the strategic direction for managing risk and securing IT across data center and cloud-based environments. The security wing of ERS designs, engineers and operates technical solutions that when coupled with documented processes and capable people, delivers enterprise-wide security services inside of service level objectives. People, technology, process and innovation are at the heart of our organization.

This role will be reporting into the Senior Director of Security Operations. As Director of Vulnerability Reduction you will drive long-term operational security thought leadership throughout Expedia Group and its internal and external partners. You will engage with direct reports, security team engineers, external partners and product team strategists to define, document and operate vulnerability reduction services that identify security gaps, prescribe fix actions and thereby elevate our enterprise security posture. Additionally, by leading penetration tests and red teams you will assess, prioritize and report on breaks in our security defenses. This position will require personnel and technical leadership, communication, collaboration and influencing skills.

Who you are
  • You have earned a BA/BS in Engineering, Computer Science, Information Security, or Information Systems with a minimum of 12 years of computer and network security experience
  • You hold a CISSP, CISM, CISA, Security+, CEH, GCIA, GCIH or related certification
  • You have built or transformed highly effective vulnerability management programs within a global enterprise
  • You have demonstrated experience developing and leading a technically advanced security team in a global environment
  • You have advanced knowledge and of common communications protocols and attack techniques and embrace an ongoing pursuit of following new developments in this dynamic space and sharing them with othersy
  • You possess broad and deep understanding of technical security concepts and familiarity with related technologies and infrastructure, as well as a solid conceptual knowledge of enterprise IT system operations
  • You are fluent in common cybersecurity domains such as data protection, access control, encryption, identify management, security operations, application security, penetration tests, endpoint security, vulnerability management, threat intelligence, risk assessments
  • You easily collaborate across a large, matrixed organization utilizing strong written and verbal communication skills
What you will do
  • You will deliver world-class vulnerability reduction services for Expedia Group across disparate brands and geographic locations
  • You will build, lead and direct penetration testing and red-team activities to identify and reduce vulnerabilities and elevate cybersecurity posture across the company
  • You will formulate and maintain the vulnerability reduction roadmap in close coordination with product strategy and security engineering
  • You will lead scalable and effective remediation at all layers of the organization, infrastructure and application stack by applying appropriate risk-based prioritization, simplifying requests and collaborating with business partners
  • You will recruit, coach, train, lead, and inspire a global team that strives for continual improvement
  • You will ensure the development, testing and implementation of appropriate security plans, products and control techniques to ensure a defense in depth security program is established across the enterprise
  • You will disseminate standards, policies, and develop business metrics for measuring and monitoring cyber & IT vulnerabilities on a continuous basis
Why join us

Expedia Group recognizes our success is dependent on the success of our people. We are the world's travel platform, made up of the most knowledgeable, passionate, and creative people in our business. Our brands recognize the power of travel to break down barriers and make people's lives better – that responsibility inspires us to be the place where exceptional people want to do their best work, and to provide them the tools to do so.

Whether you're applying to work in engineering or customer support, marketing or lodging supply, at Expedia Group we act as one team, working towards a common goal; to bring the world within reach. We relentlessly strive for better, but not at the cost of the customer. We act with humility and optimism, respecting ideas big and small. We value diversity and voices of all volumes. We are a global organization but keep our feet on the ground, so we can act fast and stay simple. Our teams also have the chance to give back on a local level and make a difference through our corporate social responsibility program, Expedia Cares.

If you have a hunger to make a difference with one of the most loved consumer brands in the world and to work in the dynamic travel industry, this is the job for you.

Our family of travel brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Egencia®, trivago®, HomeAway®, Orbitz®, Travelocity®, Wotif®, lastminute.com.au®, ebookers®, CheapTickets®, Hotwire®, Classic Vacations®, Expedia® Media Solutions, CarRentals.com™, Expedia Local Expert®, Expedia® CruiseShipCenters®, SilverRail Technologies, Inc., ALICE and Traveldoo®.

*LI-CW1

Expedia is committed to creating an inclusive work environment with a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. This employer participates in E-Verify. The employer will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS) with information from each new employee's I-9 to confirm work authorization.

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
    • C#Languages
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PerlLanguages
    • PHPLanguages
    • PythonLanguages
    • RLanguages
    • RubyLanguages
    • ScalaLanguages
    • SqlLanguages
    • SwiftLanguages
    • AWSLanguages
    • jQueryLibraries
    • ReactLibraries
    • ReduxLibraries
    • ASP.NETFrameworks
    • CakePHPFrameworks
    • Ember.jsFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • Ruby on RailsFrameworks
    • SparkFrameworks
    • SpringFrameworks
    • CassandraDatabases
    • DB2Databases
    • HBaseDatabases
    • HiveDatabases
    • Microsoft SQL ServerDatabases
    • MongoDBDatabases
    • TeradataDatabases

Location

Our new Seattle campus in Interbay is on the beach with sweeping views of the Puget Sound and Cascades.

An Insider's view of Expedia Group

What's something quirky about your company?

Everyone is obsessed with travel…Really! No matter who you are working with or run into in the halls you somehow always land on travel, where you have been, where you want to go or what is the next trip you are planning. Talk about a company with passion!

Laura

Recruiter

What's the biggest problem your team is solving?

In today's world, when you travel, you need things at your fingertips! Imagine you pull up your phone, click a few buttons, type some messages and get the answers to your travel needs quickly. That's what my team and I do - we give customers a rich experience to chat with a virtual assistant on any device and solve their travel problems right away!

Urja

Sr Technology Lead

What makes someone successful on your team?

Accept whatever starting point you have and creatively work with it to organically take a feature area, the team’s culture, and cross-org relationships to the next level. Don’t just take at face value your instructions, but turn every stone to solve user problems with joy and passion. The resulting impact is a sure sign of success.

Lawrence

Senior Technical Program Manager

What are some things you learned at the company?

What got you here today, will not get you there tomorrow. I believe this applies both organizationally and professionally; in order to maintain success, you must continuously evolve, challenge yourself, and take learnings from your mistakes.

Nicholas

Sr. Director, Finance

What are Expedia Group Perks + Benefits

Culture
Volunteer in local community
Day of Caring Volunteer Hours match
Friends outside of work
Eat lunch together
Intracompany committees
Check out our employee resource groups here: https://www.expediagroup.com/about/diversity-inclusion/
Daily stand up
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Diversity
Documented equal pay policy
Dedicated Diversity/Inclusion Staff
Unconscious bias training
Diversity manifesto
We act with humility and optimism, respecting ideas big and small. We value diversity and voices of all volumes.
Someone's primary function is managing the company’s diversity and inclusion initiatives
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Onsite Gym
Retirement & Stock Options Benefits
401(K) Matching
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Child Care Benefits
Generous Parental Leave
Flexible Work Schedule
Family Medical Leave
Adoption Assistance
Company sponsored family events
Vacation & Time Off Benefits
Generous PTO
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Casual Dress
Commuter Benefits
Stocked Kitchen
Parking
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Online course subscriptions available
Customized development tracks

Additional Perks + Benefits

We believe everyone deserves - NEEDS - time away from the office and we encourage employees to take advantage of their paid time off. We offer travel discounts to make it even easier to get out and see the world.

More Jobs at Expedia Group48 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
Legal
Marketing
Operations
Product
Project Mgmt
Sales
Data + Analytics
new
Seattle
Finance
new
Seattle
Product
new
Seattle
Data + Analytics
new
Seattle
Product
new
Seattle
Developer
new
Seattle
Design + UX
new
Seattle
Developer
new
Seattle
Developer
new
Bellevue
Developer
new
Seattle
Data + Analytics
new
Seattle
Design + UX
new
Seattle
Product
new
Seattle
Product
new
Seattle
Product
new
Seattle
Product
new
Seattle
Operations
new
Seattle
Project Mgmt
new
Seattle
Developer
new
Seattle
Operations
new
Seattle
Project Mgmt
new
Seattle
Marketing
new
Seattle
Developer
new
Seattle
Marketing
new
Seattle
Data + Analytics
new
Seattle
Product
new
Seattle
Data + Analytics
new
Seattle
Product
new
Seattle
Finance
new
Seattle
Developer
new
Seattle
Developer
new
Seattle
Data + Analytics
new
Seattle
Project Mgmt
new
Seattle
Data + Analytics
new
Seattle