Program Analyst, Privacy & AI Governance
R5007
Location
Mumbai
Career Track
People & Culture / Legal
Program Analyst, Privacy & AI Governance
Program Analyst, Privacy & AI Governance
Our People & Culture and Legal teams make sure we provide a highly ethical working environment where everyone at priceline can bring their whole selves to work and deliver their very best each day. We want you to thrive – to feel safe, supported, valued, and growing to your highest potential!
This role is eligible for our hybrid work model: Two days in-office.
Why is this job a big deal:
The position is responsible for coordinating Priceline’s privacy and AI risk and compliance projects. This role requires an understanding of our existing personal data processing environment and infrastructure, controls and risk profile. It also requires an understanding of the company’s innovative utilization of AI technology to serve our customers and our own productivity in an ethical, responsible and trustworthy manner.
The Privacy Risk & Compliance Associate will be part of a high-performing and diverse privacy team at Priceline, a US subsidiary of the biggest online travel company of the world. He/she will be part of a dynamic, responsive team that has multiple exciting challenges.
In this role you will get to:
-
Coordinate end-to-end privacy GRC projects and initiatives to improve our privacy compliance & risk posture.
-
Mature and maintain our current NIST-P framework and support our analysis of NIST-AI (or similar framework) for adoption, enhancing the frameworks and controls based on recommendations from maturity and risk assessments.
-
Monitor control performance across the business for timely and effective execution.
-
Assistance in executing third-party risk assessments (with respect to privacy & AI) and providing privacy/AI support as necessary to our third-party risk assurance process.
-
Adoption, maintenance and enhancement of our privacy GRC tools.
-
Maintain and improve our privacy & AI policy framework, in accordance with our regulatory and compliance requirements.
-
Track progress of issues reported, gaps/risks identified, and support in the creation of dashboards and metrics to oversee mitigation.
-
Act as a privacy & AI champion.
-
Maintain our privacy & AI risk register.
Who you are:
-
Bachelor’s degree
-
3 years of experience working in a privacy or data protection GRC function
-
BIG4 experience is a plus.
-
Experience coordinating an external NIST audit is a plus.
-
One or more industry-standard privacy professional certifications, such as CIPP-M, CIPP-E or CIPP-US
-
Knowledge of control and compliance frameworks: NIST-P, NIST-AI, NIST-CSF
-
Basic understanding of privacy by design and privacy engineering best practices.
-
Experience driving GRC initiatives in a proactive and independent manner
-
Experience working with cross-functional teams in fast-paced environments.
-
Solid problem-solving skills and attention to detail.
-
Illustrated history of living the values necessary to priceline.com: Customer, Innovation, Team, Accountability and Trust.
-
The Right Results, the Right Way is not just a motto at Priceline; it’s a way of life. Unquestionable integrity and ethics is essential.
#LI-hybrid