Junior Application Vulnerability Analyst

  • Competitive
  • Amsterdam, Noord-Holland, Netherlands
  • Permanent, Full time
  • Booking.com
  • 19 Apr 19

Junior Application Vulnerability Analyst

We believe that the passion and talent of our employees is our strength - it is what drives us towards outstanding performance. We offer a dynamic, motivating and sophisticated work environment. A culture that is open, innovative and performance oriented. Our scale and scope, commitment to people and high standards of integrity make Booking.com a great place to work.

As a Junior Vulnerability Analyst, you will work as a member of the security operations team responsible for the execution of the vulnerability management program. The Security Operations team covers a range of security disciplines from vulnerability management, access control, alert and response management through to measurement and reporting of the organisation security posture. As a member of this team, you will participate in the defense of one of the world's leading e-commerce organizations and have the opportunity to learn and develop skills in a truly world leading security practice.


  • Support identification and resolution of vulnerabilities
  • Assist with the triage and operational response of application and infrastructure security incidents reported from across the business
  • Interact with other (security) teams for remediation of vulnerabilities
  • Perform validation of application security reports
  • Provide support for applications security DAST, SAST, and Penetration Testing activities
  • Proactively research new methods, tools, and strategies to effectively identify vulnerabilities
  • Ensure vulnerable assets are identified and ownership is determined to support remediation efforts


  • 3+ years working in cyber security practices
  • Intermediate to advanced level of understanding regarding applications security at both technical and procedural level
  • Understanding of web application vulnerabilities (OWASP)
  • Relevant experience in vulnerability management lifecycle from identification of vulnerabilities, prioritization, and remediation
  • Ability to analyze scan reports from vulnerability management solutions, triaging of the findings and communication of the remediation guidelines to stakeholders
  • Robust understanding of IT fundamentals across networking (such as DNS, SNMP, DHCP, IPSEC etc.) system, and application layers
  • Excellent interpersonal and communication skills in order to share knowledge and to communicate effectively with different stakeholders
  • Bachelor's Degree Cyber/ Information Security, Computer Science or equivalent experience
  • Relevant cyber security industry certifications (eg Security+, CISM, SANS)