Junior Infrastructure Vulnerability Analyst

  • Competitive
  • Amsterdam, Noord-Holland, Netherlands
  • Permanent, Full time
  • Booking.com
  • 24 Apr 19

Junior Infrastructure Vulnerability Analyst

We believe that the passion and talent of our employees is our strength - it is what drives us towards outstanding performance. We offer a dynamic, motivating and sophisticated work environment. A culture that is open, innovative and performance oriented. Our scale and scope, commitment to people and high standards of integrity make Booking.com a great place to work.

As a Junior Infrastructure Vulnerability Analyst, you will work as a member of the security operations team responsible for the execution of the vulnerability management program. The Security Operations team covers a range of security disciplines from vulnerability management, access control, alert and response management through to measurement and reporting of the organisation security posture. As a member of this team, you will participate in the defense of one of the world's leading e-commerce organizations and have the opportunity to learn and develop skills in a truly world leading security practice.


  • Perform identification, prioritization and remediation of infrastructure vulnerabilities
  • Assist with the triage and operational response of infrastructure security incidents reported from across the business
  • Interact with stakeholders for remediation of vulnerabilities
  • Perform validation of infrastructure security reports from external bug bounty programs
  • Provide support for infrastructure baseline audits and penetration testing initiatives with focus on our networking environments
  • Proactively research new methods, tools, and strategies to effectively identify vulnerabilities across the cloud, digital assets and infrastructure environments
  • Ensure vulnerable assets are identified and ownership is determined to support remediation efforts and provide continuous follow up for mitigation


  • 3+ years working in cyber security practices
  • Intermediate to advanced level of understanding of infrastructure vulnerabilities
  • Relevant experience in vulnerability management lifecycle from identification, prioritization, and remediation of infrastructure vulnerabilities
  • Ability to analyze scan reports from vulnerability management solutions, triaging of the findings and communication of the remediation guidelines to stakeholders
  • Robust understanding of IT fundamentals across networking (such as DNS, SNMP, DHCP, IPSEC etc.) system, and application layers
  • Excellent interpersonal and communication skills in order to share knowledge and to communicate effectively with different stakeholders
  • Bachelor's Degree Cyber/ Information Security, Computer Science or equivalent experience
  • Relevant cyber security industry certifications (eg Security+, CISM, SANS)