Third-Party Cyber Risk Management Officer

Booking Holdings Romania is a Center of Excellence based in Bucharest, Romania and was created to support the increasing business demands of the Booking Holdings Brands. The Center of Excellence provides access to specialized and highly skilled talent, leading industry best practices, and collaboration opportunities across all of our Brands.

As part of our Booking Holdings Romania team, you will have the opportunity to be a part of the world’s leading provider of online travel, with a mission of making it easier for everyone to experience the world through five-primary consumer facing brands: Booking.com, Priceline, Agoda, KAYAK and OpenTable.

Role description

As a Third-Party Cyber Risk Management Officer, you will be responsible for assessing and managing the potential risks associated with entrusting vendors with company confidential data and contributing to the continuous improvement of the TPCRM program.   

Key Job Responsibilities and Duties

• Execution of third-party risk assessments for vendors, leveraging existing best-practices, tools and processes;
• Monitor remediation activities;
• Monitor and analyze cyber security threat intelligence and vendor surface scanning data to stay up-to-date on emerging threats and vulnerabilities that could impact third-party vendors;
• Communication of cyber risks to stakeholders;
• Maintain records and metrics related to third-party cyber security risk assessments

Role Qualifications and Requirements

• Bachelor’s diploma and 5-8 years of relevant experience
• Specialized Diploma (CISA, CISM, CISSP, ISO2700x, Security+, or similar)
• Experience serving as the subject matter expert for third party vendor security risk management and due diligence activities;
• Detailed understanding of industry accepted Information Security and IT governance standards (i.e. NIST CSF, ISO 27k, SOC 2) and general cyber security concepts;
• Excellent analytical/technical skills;
• Good communication skills coupled with strong business acumen and ability to explain technical details in a non-technical manner;
• Autonomous professional, while still a strong team player;
• Experience with large e-commerce or tech companies is advantageous;
• Fully comfortable working in English, both written and spoken. 

Benefits & Perks

• Contributing to a high scale, complex, world renowned company and seeing real-time impact of your work on millions of travelers worldwide
• Working in a fast-paced and performance driven culture
• Competitive compensation and benefits package and some great added perks of working at Booking
• Cybersecurity trainings and access to top of the line security tools

Booking Holdings is proud to be an equal opportunity workplace and is an affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. We strive to move well beyond traditional equal opportunity and work to create an environment that allows everyone to thrive.

If your application is successful, your personal data may be used for a pre-employment screening check by a third party as permitted by applicable law. Depending on the vacancy and applicable law, a pre-employment screening may include employment history, education and other information (such as media information) that may be necessary for determining your qualifications and suitability for the position.