Risk & Compliance Analyst
Risk & Compliance Analyst
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
About Tripadvisor
We believe that we are better together and at Tripadvisor we welcome you for who you are. Our workplace is for everyone as is our people-powered platform. At Tripadvisor we want you to bring your unique identities abilities and experiences so we can collectively revolutionize travel and together find the good out there.
We are looking for a Risk & Compliance Analyst who will play a key role in maintaining and enhancing our global risk and compliance framework ensuring adherence to relevant laws and regulations internal policies and third party risk standards. You would identify and mitigate risks develop and implement compliance programs and monitor compliance with existing and newly developed programs. This role directly supports our ability to scale securely and responsibly helping to protect customer trust and business continuity across different business units and global markets.
Job Location: London-Hybrid
This role is a hybrid position that requires 1 day per week
What Youll Do:
Play a lead role in our Compliance program including:
Monitoring applicable rules and regulations including changes and updates and recommending appropriate action plans as necessary.
Identifying assessing and tracking operational strategic and compliance risks across departments.
Collaborating with internal stakeholders to conduct periodic risk reviews present risk reports and support mitigation planning.
Addressing compliance inquiries/issues identified as a result of compliance reviews internal audits third party audits or otherwise escalated.
Supporting the Compliance Team and other key stakeholders on initiatives as assigned.
Supporting the Privacy Cybersecurity and Information Security teams with projects to include compliance readiness for new laws regulations (e.g. GDPR and CCPA) frameworks (e.g. COSO and NIST cybersecurity frameworks) and standards (e.g DORA PCI standards).
Supporting regulatory internal or external audits or certifications.
Provide knowledge and operational input on our Third-Party Risk Management framework including:
Performing third-party vendor risk assessments evaluating privacy information security and AI compliance risks among others during onboarding and renewal processes.
Reviewing updating and maintaining third party risk questionnaires and registers collaborating with various departments including Legal Information Security IT and Procurement.
Support the Privacy team on a number of Data Privacy enhancing initiatives including:
conducting and document end-to-end Privacy Impact Assessments (PIAs) for new and existing products and processes supporting compliance with GDPR CCPA and other privacy regulations.
Maintain and update the Record of Processing Activities (ROPA) in collaboration with cross-functional teams.
In addition to the above key responsibilities you will have the opportunity to work closely with other Compliance team members to execute and bolster the compliance plan and get involved in a number of projects including reviews of policies procedures and enquiries.
Reporting Structure and Team:
This is an individual contributor position that will report directly to the Director Legal & DPO.
Skills & Experience:
Required:
3 years of experience in a risk compliance ideally within a technology fintech or travel-related company.
Proven experience conducting PIAs managing ROPA and performing third-party/vendor risk assessments.
Familiarity with data privacy regulations (e.g. GDPR CCPA).
Hands-on experience using risk and compliance tools such as OneTrust and/or AuditBoard.
Strong policy writing skills and ability to translate legal/regulatory requirements into practical guidance.
Excellent organisational analytical and interpersonal communication skills.
Comfortable working independently and collaboratively in a fast-paced environment.
Preferred:
Experience supporting internal or external audits and assessments.
Knowledge of and/or exposure to compliance and security frameworks such as ISO NIST.
Certifications such as CIPP/E CIPT etc
Familiarity with SaaS platforms and global vendor ecosystems.
Experience working with the Google Suite of products.
What We Offer:
- Flexible activity-based working fostered collaboration and productivity
- Inclusive global travelers community welcoming diverse perspectives
- Competitive salary package including performance bonuses
- Development programs managerial courses and learning series
- Health insurance covers medical dental and vision for families (varies by country)
- Lifestyle Reimbursement Benefit for personal travel and physical mental and financial wellness
- Several paid time off programs including time to bond with new children and care for family members. Paid public holidays and year-end office shutdown
- Employee assistance program for short-term counseling and free Calm app subscription
- State-of-the-art offices: dining coffee points and leisure area
We strive to create an accessible and inclusive experience for all candidates. If you need a reasonable accommodation during the application or the recruiting process please make sure to reach out to your individual recruiter or our team at .
If you have any additional questions about careers at Tripadvisor you can email us at We have all the answers!
#LI-CH01
#TRIPADVISOR
Required Experience:
IC
Employment Type
Full Time
