Business Security Analyst

g to a Risk & Compliance Manager the BSA is an embedded analyst enabling the BISO to define and oversee the business unit's security, safety, and fraud roadmap to enable the BU to meet their objectives in a secure and compliant manner. The BSA understands the security, safety, & fraud threat landscape and risk posture, and how those apply in their respective business units. More specifically, the BSA:

Key Job Responsibilities and Duties:

Responsible for:

• • Assessing, identifying, reporting, and monitoring the SS&F risks within the BU by supporting the BISO in periodic and relevant insights to BU leadership that drive risk based decisions and prioritization of actions

  • Champions and promotes SS&F awareness in the BU

  • Support in building productive relationships with business stakeholders

  • Representing the BISO at meetings and act on behalf of as requested

Consulted for:

• • Support the BISO in delivering operational and tactical security improvements in line with the overarching security strategy while supporting the Business Information Security Officer (BISO)

  • Understanding and keeping up to date with BU specific SS&F related security regulations

  • BU and SS&F collaboration support

  • Feedback and BU requirements towards the SS&F capabilities and services for continuous improvement

  • Support and analysis of SS&F risk acceptances

  • Support and analysis of SS&F risk remediation and mitigation activities

  • Support and analysis during SS&F incidents management

Experience & Skills:

• 3 to 5 years of experience in one or more of Cyber Security, Safety, and Fraud topics

• Understanding of technology processes and practices (e.g., change management, Secure Software Development Lifecycle, Identity and Access Management, IR, Incident Management, Data Governance)

• Experience in IT Risk Management

• Excellent English communication skills

• Experience in stakeholder management and ability to effectively engage and influence individual technical staff

• Creative problem-solver able to communicate concepts to a limited audience and create clarity

• Additional cybersecurity qualifications such as CISM, CISSP, CISA, CRISC, AIGP, or similar are an advantage

• Organized, with attention to detail and execution skills

• Experience in the analysis and assessment of security programs

• Good understanding of security best practices and standards such as NIST Cybersecurity Framework, ISO27001, and PCI DSS

• Experience participating in security, safety, and fraud incident response activities

Other personal characteristics:

• Open minded, respectful, high emotional intelligence, and collaborative work style

• Comfortable with ambiguity, creating clarity

• Achieving data driven, collaborative solutions

• Good communication, consulting, and influencing skills

• Integrity and independent thinking

• Thrives in fast-paced, demanding environments

• Learning demeanor, transparent behaviour

• Good problem solver able to roll up sleeves to get things done

• Committed to building a diverse, inclusive work environment

• Good time management and organizational skills to manage multiple tasks and changing priorities

Education:

• Bachelor's degree in computer science or related field or equivalent experience

Benefits & Perks: Global Impact, Personal Relevance:

• Possibility to live and work in Amsterdam, named as the best city in the World for living a happy and healthy life

• International and diverse company culture;

• Possibility to innovate through multiple company programs (e.g. Hackathon, twice a year)

• Opportunity to work in an Agile, startup-like development environment

• Excellent support for personal development through online platforms

• Mentorship programs to accelerate skills growth

• Contribute to the company tech transformational journey toward a more modern tech stack

• Inclusive leadership, valuing the opinion of everyone independently of their career level

• Great compensation package

• Multiple perks that will make your life easier (e.g. discounts to local shops, discounted gym membership, etc.)

#ThinkInclusion: Wellbeing & Inclusion at Booking.com:

Booking.com is proud to be an equal opportunity workplace and is an affirmative action employer. We're committed to fostering a more inclusive Booking.com experience for the millions of travelers, partners and communities around the world who use our platform every day. This ongoing journey starts with our very own employees, who represent over 140 nationalities and a wide range of ethnic and social backgrounds, genders and sexual orientations

Pre-Employment Screening

If your application is successful, your personal data may be used for a pre-employment screening check by a third party as permitted by applicable law. Depending on the vacancy and applicable law, a pre-employment screening may include employment history, education and other information (such as media information) that may be necessary for determining your qualifications and suitability for the position.