• Identify cybersecurity and/or fraud-related risks for new business initiatives and work with the relevant control
owners or stakeholders to implement appropriate safeguards to protect Booking.com assets
• Monitoring of control implementation and execution and escalation to management through the defined escalation
path when any issues are identified.
• Support stakeholders with cybersecurity and/or fraud-related risk expertise and knowledge
• Stay flexible to meet the dynamic business needs, while maintaining robust solutions that strengthen the IT control
environment.
• Provide advice on cybersecurity and/or fraud control design that is both sustainable and right sized (i.e. a simple
solution for a simple problem, no overengineering).
• Support with identifying risks associated with technology policy, standard, or process exceptions as part of the security exception management process.
• Support risk governance teams with setting risk appetite, and maintaining technology risk register(s)
• Able to split large tasks into logical, manageable and decoupled actions which are managed effectively and delivered on time.
• Build and maintain strong relationships with stakeholders across central tech
• Document risk assessment methodology and underlying procedures
• Reporting on risk assessments, coverage and issues through booking reporting and dashboarding tools (Jira, Tableau, ServiceNow)

Skills /Competencies
• Professional level proficiency in English language.
• Work experience in business analysis, IT auditing, IT governance, risk management or IT internal controls
• Strong understanding of risk and IT controls
• Energized by change and solution oriented
• Good communicator, quick thinker & confident in decision making
• Can work independently, while still a strong team player
• Enthusiastic, self-starting and thrives in changing, agile environments
• Able to self-motivate, organise and take responsibility for own workload to ensure that deadlines and objectives are
met
• Able to multitask and prioritize work effectively.
• Good organizational and time management skills.
• Accuracy and attention to detail.
• An understanding of the latest trends and their role in a Cyber-sec environment.
• Self-development attitude to keep up to date with fast-changing trends

Preferred
• Understanding of threat modelling fundamentals like STRIDE, PASTA or DREAD is a plus
• Familiar with ServiceNow, Google Suite, Jira tools (or similar) DevOps environment is a plus, but not mandatory
• Hands on experience with large e-commerce or tech companies preferable
• Familiar with ServiceNow, Google Suite, Jira tools (or similar) is a plus, but not mandatory
• Desirable: CISSP or Security+ or any other cyber security certification, but not mandatory.

Educational Qualifications:
• Bachelor's Degree in Engineering or Equivalent.

Why Infosys
Infosys is a global leader in next-generation digital services and consulting. We enable clients in more than 50 countries to navigate their digital transformation.
With nearly four decades of experience in managing the systems and workings of global enterprises, we expertly steer our clients through their digital journey. We do it by enabling the enterprise with an AI-powered core that helps prioritize the execution of change. We also empower the business with agile digital at scale to deliver unprecedented levels of performance and customer delight. Our always-on learning agenda drives their continuous improvement through building and transferring digital skills, expertise, and ideas from our innovation ecosystem.
To learn more about Infosys and see our ideas in action please visit us at www.Infosys.com
"All aspects of employment at Infosys are based on merit, competence and performance. We are committed to embracing
diversity and creating an inclusive environment for all employees. Infosys is proud to be an equal opportunity employer."