Senior Technical Risk & Compliance Analyst (Gurgaon-Based)

Expedia Group brands power global travel for everyone, everywhere. We design cutting-edge tech to make travel smoother and more memorable, and we create groundbreaking solutions for our partners. Our diverse, vibrant, and welcoming community is essential in driving our success.

Why Join Us?

To shape the future of travel, people must come first. Guided by our Values and Leadership Agreements, we foster an open culture where everyone belongs, differences are celebrated and know that when one of us wins, we all win.

We provide a full benefits package, including exciting travel perks, generous time-off, parental leave, a flexible work model (with some pretty cool offices), and career development resources, all to fuel our employees' passion for travel and ensure a rewarding career journey. We’re building a more open world. Join us.

Senior Technical Risk & Compliance Analyst (Gurgaon-Based)

Corporate Functions

Our Corporate Functions are made up of teams that support Expedia Group, including Employee Communications, Finance, Legal, People Team, Inclusion and Diversity, and Global Social Impact and Sustainability.

Would you like the ability to interact with a unique set of stakeholders each day? Would you like to help Expedia Group move forward on important business objectives and directly support business partners who are making the decisions that drive our business? Come join the SOX Compliance Team!
The Sr. Technical Risk and Compliance Analyst performs the tactical end-to-end execution of risk management, associated with our SOX Compliance Program. This includes scoping, planning, discovery, fieldwork, development/design of recommendations, report writing, tracking of findings, and verification of management remediation action plans, under the guidance/direction of managers.
This individual will collaborate with functions such as Internal Audit, Information Security, Legal, Product & Technology, Brands and Corporate Shared Services functions to drive continued progression of our risk management practices in support of our SOX Compliance Program.

In this role, you will:

• Acquire a solid understanding of how the department operates and fits into the larger organization, including the unique aspects of various functions/organizations within the broader enterprise.
• Demonstrate awareness of the policies, practices, trends, and information that impact the organization and its customers.
• Prepare supporting risk and controls documentation for business initiatives and projects, including (but not limited to) risk and controls matrices, process flows, and various checklists.
• Design controls for new or changed business and/or technology processes/tools and train control owners on control execution and supporting evidence.
• Report to senior leadership on project status, including any blockers where support is needed to push forward.
• Review overarching project timelines and develop a schedule of tasks to achieve project milestones, including mechanisms to keep relevant stakeholders informed on progress or significant changes to timelines.
• Work with more experienced team members to help identify all resources required to support any project.
• Assist team members in the creation of routine technical communication materials (e.g., policies & procedures, guidelines, presentations, messages).
• Support the development of risk mitigation strategies and remediation plans for audit findings.

Experience and Qualification:

• Bachelor's degree in accounting, finance, audit, or information systems; or 2+ years of equivalent experience in IT Risk Management, Technical SOX Compliance, Audit or other similar IT SOX consulting or risk advisory functions.
• Naturally inquisitive and committed to staying abreast of the latest risk management, SOX Compliance, and industry and technology trends.
• Ability to quickly adapt to changes in project direction, requirements, and team procedures.
• Experience in navigating between technical and non-technical audiences.
• Solid understanding of risk and compliance management frameworks such as ISO and COSO.
• Previous experience in one or more of the following areas: IT General Controls, Cloud operations, Data governance, Artificial Intelligence/Machine Learning.
• Strong analytical, organizational, communication, and critical thinking skills
• CIA, CPA, CISA, CCSK, CISM, CRISC (or similar) certifications preferred.

Accommodation requests

If you need assistance with any part of the application or recruiting process due to a disability, or other physical or mental health conditions, please reach out to our Recruiting Accommodations Team through the Accommodation Request.

We are proud to be named as a Best Place to Work on Glassdoor in 2024 and be recognized for award-winning culture by organizations like Forbes, TIME, Disability:IN, and others.

Expedia Group's family of brands includes: Brand Expedia®, Hotels.com®, Expedia® Partner Solutions, Vrbo®, trivago®, Orbitz®, Travelocity®, Hotwire®, Wotif®, ebookers®, CheapTickets®, Expedia Group™ Media Solutions, Expedia Local Expert®, CarRentals.com™, and Expedia Cruises™. © 2024 Expedia, Inc. All rights reserved. Trademarks and logos are the property of their respective owners. CST: 2029030-50

Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident who the recipient is. Expedia Group does not extend job offers via email or any other messaging tools to individuals with whom we have not made prior contact. Our email domain is @expediagroup.com. The official website to find and apply for job openings at Expedia Group is careers.expediagroup.com/jobs.

Expedia is committed to creating an inclusive work environment with a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, gender, sexual orientation, national origin, disability or age.