Security Engineer II - Cloud Security in Manchester

We believe that the passion and talent of our employees is our strength – it is what drives us towards outstanding performance. We offer a dynamic, motivating and sophisticated work environment. A culture that is open, innovative and performance‑oriented. Our scale and scope, commitment to people and high standards of integrity make Booking.com a great place to work.

Booking.com’s Infrastructure Security is seeking a passionate engineer who wants to protect the world’s largest travel platform against attacks on its production platform. Your skills will be the foundation of security initiatives that protect the security and privacy of all our customers, partners, and employees. The Infrastructure Security organisation makes security effortless for our different production platforms. As part of this team, you will be performing security engineering, building advanced and novel detective and preventive controls, developing systems to automate remediation and advise product and infrastructure teams on how to keep our data safe.

Key Job Responsibilities and Duties

• Design, implement, and maintain cloud security architecture for cloud platforms (mostly AWS, GCP and some Azure)
• Configure and support security monitoring tools and security teams for threat detection and incident response
• Work closely with other security and platform teams to ensure cloud security measures meet regulatory requirements and contractual obligations (e.g. NIST, PCI DSS, GDPR, SOX)
• Support and respond to security incidents in cloud environments
• Optimise cloud security controls to balance security requirements with business needs and other requirements
• Support cloud security related assessments like pentests, audits and provide necessary documentation and evidence
• Conduct security reviews of cloud-based applications and services
• Participate in cloud architecture design discussions to ensure security is considered from the outset
• Participate in risk assessments and develop risk mitigation strategies for cloud deployments
• Provide security guidance and training to other teams within the organisation
• Communicate security concepts and risks to both technical and non‑technical stakeholders
• Participate in the security on‑call rotation
• Challenge ideas and methods while working together with talented, highly skilled team members
• Help team members to improve their skills by providing technical guidance
• Maintain and develop knowledge of cyber security trends

Role Qualifications and Requirements

• Extensive knowledge of security engineering, cloud security (additionally linux security knowledge is a plus)
• Knowledge of containerization technologies (e.g., Docker, Kubernetes) and associated security measures
• Proficiency in any major cloud platforms (AWS, Azure, GCP) and their security features
• Understanding of DevSecOps practices and security automation in CI/CD pipelines
• Proficiency in coding and/or scripting using one or more of the following languages: Bash, Golang, Python, Perl and/or similar is a plus
• Experience with Infrastructure as Code (IaC) tools such as Terraform or CloudFormation
• Excellent communication skills, both written and verbal, for stakeholder management
• Ability to perform security assessments and develop mitigation strategies for cloud deployments and risks
• Familiarity with compliance frameworks and regulations (e.g., SOX, PCI DSS, GDPR)

Benefits & Perks

• Headquarters located in one of the most dynamic and cosmopolitan cities in Europe: Amsterdam.
• Contribute to a high scale, sophisticated, world‑class product and see the real time impact of your work on millions of travellers worldwide.
• Be part of a truly international fast paced environment and performance driven culture.
• Full relocation support for you and your family to move to Amsterdam.
• Performance‑based company that offers 29 vacation days, career advancement, and lucrative compensation, including bonuses and stock potential.
• Discount on Booking.com accommodations with the “Booking Deal” including other perks and benefits.
• Company‑sponsored family and social activities to help our employees become integrated with each other and Dutch culture.
• Diverse and creative colleagues from every corner of the world.
• Health, life, and disability insurance.
• Annual paid time off and generous paid leave scheme including: parent, grandparent, bereavement, and care leave.
• Hybrid working including flexible working arrangements, and up to 20 days per year working from abroad (home country).
• Industry leading product discounts for yourself, friends, and family, including automatic Genius Level 3 status and quarterly Booking.com wallet credit.
• Free access to online learning platforms, development and mentorship programs, and a complimentary Headspace membership.
• On‑site meals, coffee, and snacks, including healthy and vegan options, daily.

#ThinkInclusion: Wellbeing & Inclusion at Booking.com

Inclusion, Diversity, Belonging, Wellbeing and Volunteering (IDBWV) have been a core part of our company culture since day one. This ongoing journey starts with our very own employees, who represent over 140 nationalities and a wide range of ethnic and social backgrounds, genders and sexual orientations.

We will ensure that individuals with disabilities are provided reasonable adjustment to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Booking.com is proud to be an equal opportunity workplace and is an affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status. We strive to move well beyond traditional equal opportunity and work to create an environment that allows everyone to thrive.