Role Description:
As an IT Risk & Controls Analyst you will be part of the Risk & Controls team responsible for supporting developers and tech teams from the FinTech Business Unit to identify risks, design, implement, maintain & monitor IT controls in line with our risk appetite and to ensure compliance. You will help us build and improve our IT general control framework ensuring that IT risks Booking.com faces are identified and addressed in a pragmatic and efficient way.
Key Job Responsibilities and Duties:
- Support the FinTech business unit to understand risks according to SOx, Security, GDPR, business continuity, PCI-DSS etc. requirements and assist them in determining optimal controls to mitigate risks in the FinTech and Payments environment
- Perform comprehensive IT risk assessments and assist process and control owners in determining and designing optimal controls to mitigate risks
- Support the business to design controls based on risks in support areas for the IT and business processes
- Monitor changes occurring to the platforms and processes to guide stakeholder to aim sustaining compliance by design
- Help build and improve Booking’s control framework across technologies, maintain our Booking.com risk taxonomy and controls catalogue by providing general and technical guidance on how to maintain relevant controls
Qualifications & Skills:
- 5+ years of experience gained within the following areas IT Risk Management, IT audit and compliance and IT general control design
- Experienced in Risk Management activities and regulations like SOx, PCI or GDPR. Experience within the FinTech or Payments industry is a big plus.
- Hands on experience with leading risk assessments and financial audits in a technologically dynamic environment, going beyond the standard risks around Access and Change Management
- Familiar with applicable IT frameworks like COBIT, NIST, ITIL or ISO 27001, 20000, 22301, etc.
- Familiar with technology platforms (Kubernetes, MySQL, Linux, AWS, Azure, GCP, etc) and DevOps tools (e.g. Gitlab, Jenkins, Harness, Terraform, etc). Hands-on experience in the tools above or in Security is a big plus.
- Familiar with ServiceNow, Google Suite, Jira tools (or similar)
- Able to self-motivate, organise and take responsibility for own workload to ensure that deadlines and objectives are met
Booking.com’s Total Rewards Philosophy is not only about compensation but also about benefits. We offer a competitive, as well unique-to-Booking.com benefits which include:
- Annual paid time off and generous paid leave scheme including: parent, grandparent, bereavement, and care leave
- Hybrid working including flexible working arrangements, and up to 20 days per year working from abroad (home country)
- Industry leading product discounts - up to 1400 per year - for yourself, including automatic Genius Level 3 status and Booking.com wallet credit
Application Process:
- Let’s go places together:
- This role does not come with relocation assistance.
If your application is successful, your personal data may be used for a pre-employment screening check by a third party as permitted by applicable law. Depending on the vacancy and applicable law, a pre-employment screening may include employment history, education and other information (such as media information) that may be necessary for determining your qualifications and suitability for the position.
