Senior Director, Security Compliance at Expedia Group

| Bellevue
Sorry, this job was removed at 12:04 p.m. (PST) on Thursday, February 6, 2020
Find out who's hiring in Seattle.
See all Developer + Engineer jobs in Seattle

Expedia

Senior Director Security Compliance

The Enterprise Information Security team is seeking a leader who will ensure that we provide the technology and business teams of Expedia Group with world class governance, regulatory adherence and compliance with our security policies across our systems and environments. The GRC team will be charged with cultivating an organization that provides PCI certification, IT security controls and policy compliance and creation for on-prem and cloud based environment, SOC2 attestation, privacy requirements (e.g. GDPR), partner and consumer support of security documentation, and security oversight of EI contracts. This leader will partner and engage with our technology and business teams, manage long-term relationship, and large-scale compliance and certifications in support of our security posture.

What you’ll do:  

  • Lead and drive a team of Security Analyst and Compliance Experts
  • Foster a team culture of continuous improvement, mentoring and learning, data driven decisions, and accountability for delivery of key metrics and deliverables
  • Partner and collaborate with business and technology teams to develop actionable solutions for security compliance, certifications, and governance
  • Oversight for the creation, revisions and compliance of security policies and controls
  • Work closely with product management to prioritize and establish roadmap for the team

Who you are:  

  • Hands on experience with the compliance (e.g. auditing, control testing, certifications, and attestations)
  • Knowledge of current security controls and landscape including traditional data center and cloud computing platforms
  • Self motivated and able to effectively lead a large and diverse team
  • Must have well developed change management skills; be effective in working across organizational boundaries to build a case for changes, and to execute on the change plan from strategy through to ongoing operation and continuous process improvement
  • Experienced in, and able to formulate, the effectiveness and benefits of security compliance and certification initiatives in the context of overall business risk mitigation, security posture, and the company’s operational objectives
  • Demonstrated knowledge of security industry standards, privacy regulations, compliance testing and leading practices (e.g. PCI, OWASP, NIST, CIS, GDPR)
  • Experience in leading diverse security teams, and ability to present to senior management and large groups
  • Must be able to simplify security and technical concepts for laypersons within our business and technology teams
  • Demonstrated ability to work autonomously and manage a wide variety of work streams simultaneously, and under deadline
  • Exposure to security systems and process with a background in travel industry a plus
  • Minimum ten (10) years of information security experience, auditing and/or compliance in increasing responsible roles required
  • Professional certification in information security or compliance (for example, CISSP, CISM, or CISA) a plus

Why join us:  

Expedia Group recognizes our success is dependent on the success of our people. We are the world's travel platform, made up of the most knowledgeable, passionate, and creative people in our business. Our brands recognize the power of travel to break down barriers and make people's lives better – that responsibility inspires us to be the place where exceptional people want to do their best work, and to provide them the tools to do so.

Whether you're applying to work in engineering or customer support, marketing or lodging supply, at Expedia Group we act as one team, working towards a common goal; to bring the world within reach. We relentlessly strive for better, but not at the cost of the customer. We act with humility and optimism, respecting ideas big and small. We value diversity and voices of all volumes. We are a global organization but keep our feet on the ground, so we can act fast and stay simple. Our teams also have the chance to give back on a local level and make a difference through our corporate social responsibility program, Expedia Cares.

If you have a hunger to make a difference with one of the most loved consumer brands in the world and to work in the dynamic travel industry, this is the job for you.

Our family of travel brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Egencia®, trivago®, HomeAway®, Orbitz®, Travelocity®, Wotif®, lastminute.com.au®, ebookers®, CheapTickets®, Hotwire®, Classic Vacations®, Expedia® Media Solutions, CarRentals.com™, Expedia Local Expert®, Expedia® CruiseShipCenters®, SilverRail Technologies, Inc., ALICE and Traveldoo®.

Expedia is committed to creating an inclusive work environment with a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. This employer participates in E-Verify. The employer will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS) with information from each new employee's I-9 to confirm work authorization.

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
    • C#Languages
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PerlLanguages
    • PHPLanguages
    • PythonLanguages
    • RLanguages
    • RubyLanguages
    • ScalaLanguages
    • SqlLanguages
    • SwiftLanguages
    • AWSLanguages
    • jQueryLibraries
    • ReactLibraries
    • ReduxLibraries
    • ASP.NETFrameworks
    • CakePHPFrameworks
    • Ember.jsFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • Ruby on RailsFrameworks
    • SparkFrameworks
    • SpringFrameworks
    • CassandraDatabases
    • DB2Databases
    • HBaseDatabases
    • HiveDatabases
    • Microsoft SQL ServerDatabases
    • MongoDBDatabases
    • TeradataDatabases

Location

Our new Seattle campus in Interbay is on the beach with sweeping views of the Puget Sound and Cascades.

An Insider's view of Expedia Group

What's something quirky about your company?

Everyone is obsessed with travel…Really! No matter who you are working with or run into in the halls you somehow always land on travel, where you have been, where you want to go or what is the next trip you are planning. Talk about a company with passion!

Laura

Recruiter

What's the biggest problem your team is solving?

In today's world, when you travel, you need things at your fingertips! Imagine you pull up your phone, click a few buttons, type some messages and get the answers to your travel needs quickly. That's what my team and I do - we give customers a rich experience to chat with a virtual assistant on any device and solve their travel problems right away!

Urja

Sr Technology Lead

What makes someone successful on your team?

Accept whatever starting point you have and creatively work with it to organically take a feature area, the team’s culture, and cross-org relationships to the next level. Don’t just take at face value your instructions, but turn every stone to solve user problems with joy and passion. The resulting impact is a sure sign of success.

Lawrence

Senior Technical Program Manager

What are some things you learned at the company?

What got you here today, will not get you there tomorrow. I believe this applies both organizationally and professionally; in order to maintain success, you must continuously evolve, challenge yourself, and take learnings from your mistakes.

Nicholas

Sr. Director, Finance

What are Expedia Group Perks + Benefits

Culture
Volunteer in local community
Day of Caring Volunteer Hours match
Friends outside of work
Eat lunch together
Intracompany committees
Check out our employee resource groups here: https://www.expediagroup.com/about/diversity-inclusion/
Daily stand up
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Diversity
Documented equal pay policy
Dedicated Diversity/Inclusion Staff
Unconscious bias training
Diversity manifesto
We act with humility and optimism, respecting ideas big and small. We value diversity and voices of all volumes.
Someone's primary function is managing the company’s diversity and inclusion initiatives
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Onsite Gym
Retirement & Stock Options Benefits
401(K) Matching
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Child Care Benefits
Generous Parental Leave
Flexible Work Schedule
Family Medical Leave
Adoption Assistance
Company sponsored family events
Vacation & Time Off Benefits
Generous PTO
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Casual Dress
Commuter Benefits
Stocked Kitchen
Parking
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Online course subscriptions available
Customized development tracks

Additional Perks + Benefits

We believe everyone deserves - NEEDS - time away from the office and we encourage employees to take advantage of their paid time off. We offer travel discounts to make it even easier to get out and see the world.

More Jobs at Expedia Group13 open jobs
All Jobs
Data + Analytics
Dev + Engineer
Marketing
Operations
Product
Project Mgmt