Security Architect - Cyber Detection & Response
At Booking.com, data drives our decisions. Technology is at our core. And innovation is everywhere. But our company is more than datasets, lines of code or A / B tests.
We’re the thrill of the first night in a new place. The excitement of the next morning. The friends you make. The journeys you take.
The sights you see. And the food you sample. Through our products, partners and people, we can empower everyone to experience the world.
With over 1.6 million room nights booked every day, accommodation represents the largest share of our business to date. We are responsible for accommodation growth, with clear ownership of all marketing, product and supply related to accommodations.
Our mission is to deliver the best customer experience and most varied selection of properties.
The Security Architect - Cyber Detection & Response owns the two-way translation of business requirements and practical technical implementation.
This role owns all aspects of service maturity and documentation delivery around technology, processes, documentation and assessments related to the Detection and Response Capability Area.
This role contributes to improving the maturity, formality, coverage, efficiency, quality, reliability, consistency and scalability of the Cyber Detection & Response services delivered to the business.
Drives consistency, scalability, optimization, reliability and future-proofness of our solutions and services.
Proactively seeks technology and process improvements to services in terms of efficiency, impact and alignment level with the business objectives.
Ownes and drives the Detection & Response documentation maturity. Proactively identifies documentation and maturity gaps and writes new and relevant documentation as required.
Owns the technical documentation including technical requirements, specifications, architectural designs and operational documentation.
Drives compliance to GRC requirements including gathering evidence, developing and collating supporting documentations and keeping track of control gap observations and recommendations.
Responsible for structuring and maintaining the CDR service knowledge base and document library.
Builds cross-functional relationships with other teams organizations to achieve influence on the detection & response upstream dependencies and assure successful delivery.
Communiticates service or project issues and status in a concise, accurate manner that can be consumed by leadership. Manages service risks and or escalates blockers as appropriate.
Provides technical guidance across CDR services, projects and workstreams. Articulates technical requirements, implementation guidance, tech designs, runs product proof-of-concepts.
8+ years overall IT experience, out of them 5+ years of experience in cybersecurity / security operations / security consulting
Demonstrable expert knowledge (technical and procedural) and substantial practical experience in cyber threats detection & incident response, SIEM / SOAR with a robust understanding of IT fundamentals across OS, networking, system, cloud, virtualization platforms and application layers.
Documentation writing skills and willingness to spend time writing relevant technical and procedural documentation in the relevant domains, such as policies, standards, procedures, processes and guidance documents.
Experience driving NIST CyberSecurity Framework maturity
Experience in working with auditors and assessors
Driving improvement in the areas of governance, risk and compliance for security programs
Demonstrable understanding of modern attacker methodologies and identification of adversary techniques, tactics, and procedures using enterprise security tools.
Understanding of security control frameworks like Mitre ATT&CK, NIST CSF, PCI DSS, SoX, GDPR, ISO 2700X, etc.
Experience leading and owning projects of high complexity that require knowledge across multiple technical areas and business units.
Excellent interpersonal and communication skills. Can successfully build and manage relationships and collaborate.
Demonstrates a Can-Do, delivery-focused and solution-oriented approach (rather than problem-oriented); Flexible, practical, proactive and positive mindset.
Is quick to adapt to changing situations and continuously seeks to improve and optimize
Thrives on solving complex challenges, prioritizes tasks based on criticality and priority and efficiently manages context switching.
Living and working in Amsterdam, one of the most cosmopolitan cities in Europe.
Contributing to a high scale, complex, world renowned product and seeing real-time impact of your work on millions of travellers worldwide.
Working in a fast-paced and performance driven culture.
Opportunity to utilize technical expertise, leadership capabilities and entrepreneurial spirit.
Promote and drive impactful and innovative engineering solutions.
Technical, behavioural and interpersonal competence advancement via on-the-job opportunities, experimental projects, hackathons, conferences and active community participation.
Competitive compensation, benefits package, and some great added perks of working in the home city of Booking.com.
Booking.com is proud to be an equal opportunity workplace and is an affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
We strive to move well beyond traditional equal opportunity and work to create an environment that allows everyone to thrive.