If you need assistance during the recruiting process due to a disability, please reach out to our Recruiting Accommodations Team through the Accommodation Request form. This form is used only by individuals with disabilities who require assistance or adjustments in applying and interviewing for a job. This form is not for inquiring about a position or the status of an application.
Senior Manager - Privacy Program Enablement
Our worldview at Expedia Group is “Travel is a force for good”; we believe travel is a force for good in the world. You don’t have to look too closely to realize right now that the world needs all the goodness it can get – it needs more travel. And with that as our worldview, the work we do at Expedia Group becomes more important than ever.
Our Expedia Group CTO and President of Expedia Services, Rathi Murthy, leads the efforts to evolve the company’s technical strategy and underlying platform, overseeing data and artificial intelligence, e-commerce, payments, and customer experience. Expedia Services is where exceptional technical and businesspeople come together to leverage our two decades in travel and invest in scalable solutions. The global impact of our teams ensures that every interaction creates network effects making the experience more valuable for the next traveler or partner.
The Expedia Security & Privacy (ESP) team is seeking a highly motivated, collaborative, and passionate Senior Manager Privacy Programs, with a practical self-starter mindset to advise and embed privacy by design in our products and user experiences and lead our privacy and data protection team.
To be successful, you are organized, resourceful, possess domain knowledge on privacy and security compliance and have a “can-do” attitude. You will be a key member of our privacy and security governance, risk, and compliance team and responsible for strategic and tactical management of the Privacy function, interpreting complex legislation (including international), and providing consultative services to the business and shared services.
This role will report to the Director Privacy Program. While the person in this role should have a solid understanding of technology and data protection, it will reach across the company and should be able to translate business and technology. We believe diversity and inclusion among our teammates produces better results and is critical to our success as a global company and are committed to recruiting, developing, and retaining the most talented people from a diverse candidate pool.
What you'll do:
Support the Privacy team to shape and influence a culture of privacy throughout Expedia Group (EG) through campaigns, communication, training, and key knowledge sharing
Partner with the Director of Privacy to design and implement a best-in-class global privacy program and guide the execution, implementation, and scaling of the program across the business
Partner with EG Product and Technology, Brands, Data Governance, and Legal teams to further embed privacy by design into our products and services
Partner with EG privacy legal team to strengthen our measurable and scalable processes for demonstrating privacy compliance, including impact assessments (Privacy, Data Transfer, and Data Protection); Records of processing activities; Data maps; Responses to data subject access requests
Identify, drive, and manage data & privacy governance maturation, including mapping policies, standards, guidelines, and controls against internationally recognized data and privacy standards such as ISO, and NIST CSF & Privacy by Design
Partner with Security and HR on training, including content development, delivery, tracking, and execution
Who you are:
8+ years of overall corporate work experience with a bachelor’s degree or 5+ years of relevant experience with an advanced degree with a focus in Information technology/management, risk, or audit preferred
Strong experience leading organizational change and/or end-to-end program management, with at least 5 years of program management experience in either risk, compliance, or privacy
Privacy and/or security risk management or compliance management related experience preferably in technology, software as a service, or cloud
In-depth understanding of security/privacy policies, principles, and technologies; as well as familiarity with security and privacy control frameworks
Excellent communication, interpersonal, organizational, and writing skills, including plan status, results, and presentations
Solutions-oriented team player, with a track record of identifying and implementing creative solutions
People and Matrix management
International & US privacy laws and regulations experience
IAPP CIPP certification(s) a plus, other certifications desired from ISACA et. al.
Technical skills and expertise to manage information systems and manage compliance tools and processes that enable privacy compliance and incident tracking and reporting (e.g., MetricStream, RSA Archer, OneTrust GRC, etc.)
Experience overseeing the operational aspects of a risk, privacy and/or compliance program, such as developing and/or implementing systems and processes for:
DPIA, PIA, TIA, ROPA, DSAR, Data Maps
Third party risk management
Due diligence
Training
Risk assessments
#LI-MY2
The total cash range for this position in Chicago is $127,000 to $177,500.00. Employees in this role have the potential to increase their pay up to $203,000, which is the top of the range, based on ongoing, demonstrated, and sustained performance in the role.
Starting pay for this role will vary based on multiple factors, including location, available budget, and an individual’s knowledge, skills, and experience. Pay ranges may be modified in the future.
Expedia Group is proud to offer a wide range of benefits to support employees and their families, including medical/dental/vision, paid time off, and an Employee Assistance Program. To fuel each employee’s passion for travel, we offer a wellness & travel reimbursement, travel discounts, and an International Airlines Travel Agent (IATAN) membership.View our full list of benefits.
About Expedia Group
Expedia Group (NASDAQ: EXPE) powers travel for everyone, everywhere through our global platform. Driven by the core belief that travel is a force for good, we help people experience the world in new ways and build lasting connections. We provide industry-leading technology solutions to fuel partner growth and success, while facilitating memorable experiences for travelers. Expedia Group's family of brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Vrbo®, trivago®, Orbitz®, Travelocity®, Hotwire®, Wotif®, ebookers®, CheapTickets®, Expedia Group™ Media Solutions, Expedia Local Expert®, CarRentals.com™, and Expedia Cruises™.
© 2021 Expedia, Inc. All rights reserved. Trademarks and logos are the property of their respective owners. CST: 2029030-50
Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident who the recipient is. Expedia Group does not extend job offers via email or any other messaging tools to individuals to whom we have not made prior contact. Our email domain is @expediagroup.com. The official website to find and apply for job openings at Expedia Group is careers.expediagroup.com/jobs.