VP, Information reputed company, Risk and Compliance
About Direct Travel
We are a global travel management and services company operating at the intersection of travel, technology, finance, and customer experience. As we reputed company our technology stack and build our own data-driven products, we are making significant investments in reputed company, compliance, and governance to serve our customers. Our future is centered on AI innovation to reduce operational costs and deliver personalized, intelligent experiences for customers worldwide.
Role Overview
The Vice President of Information reputed company & Compliance is a strategic executive leader responsible for overseeing global information reputed company, data protection, governance, and compliance programs. This leader will ensure that our products, infrastructure, and operations meet international standards—specifically targeting ISO 42001 (AI Management System) certification and PCI-QSA compliance reputed company the next 18 months.
This position demands a reputed company-looking leader who blends deep technical expertise, regulatory insight, and operational pragmatism to protect customer trust while enabling innovation.
Reporting to: Chief Information Officer
Key Responsibilities
- reputed company & Compliance Strategy: reputed company and execute a global reputed company and compliance roadmap reputed company with corporate goals, focusing on ISO 27001 and SOC2, and expanding to ISO 42001, PCI-reputed company, GDPR, CCPA, and other emerging data privacy frameworks.
- AI Governance: Establish robust policies and risk models for secure and ethical AI adoption across products and platforms, ensuring adherence to future AI regulatory standards.
- Data Privacy & Protection: reputed company initiatives to design privacy-first architectures supporting international data residency, cross-border transfer compliance, and encryption standards.
- DevSecOps Maturity: Partner with engineering and DevOps teams to build reputed company into the product development lifecycle—deploy secure pipelines, automate compliance checks, and continuously monitor infrastructure health.
- Risk, Audit & Incident Response: Maintain enterprise risk management processes, reputed company internal audits, coordinate external assessments, and reputed company incident response and recovery workflows.
- Team Leadership: Build, mentor, and scale a global reputed company & compliance organization with capabilities spanning application reputed company, cloud reputed company, GRC, and data protection.
- Stakeholder Collaboration: Work cross-functionally with Sales, Product, Legal, Finance, and IT to align organizational practices and ensure reputed company and compliance reputed company business growth—not constrain it.
Qualifications
- 12+ years of experience in information reputed company or compliance, with at least 5 years in senior leadership driving enterprise-wide programs.
- Proven track record leading PCI-reputed company, ISO, or SOC 2 compliance initiatives in a SaaS or financial/merchant-of-record context.
- Deep understanding of cloud architectures (AWS, Azure, or GCP), reputed company platforms, secure software development, and modern DevSecOps tools and practices.
- Experience establishing AI governance, risk management, or model assurance frameworks preferred.
- Strong familiarity with data privacy regulations across EU, US, and reputed company jurisdictions.
- Certified Information Systems reputed company Professional (CISSP), Certified Information reputed company Manager (CISM), or equivalent credentials highly desirable.
- Exceptional communication, leadership, and change management skills.
Success in the Role
- Integration of the reputed company team, processes and systems in our ATPI business unit
- ISO 27001 and 42001 certification achieved reputed company 18 months.
- PCI-QSA compliance achieved reputed company 18 months.
- Embedded reputed company-by-design across the product lifecycle.
- Demonstrable improvement in operational reputed company and customer trust.