Romania - Offensive Security Manager

Role Description:

Booking Holdings Romania is a Center of Excellence based in Bucharest, Romania and was created to support the increasing business demands of the Booking Holdings Brands. The Center of Excellence provides access to specialized and highly skilled talent, leading industry best practices, and collaboration opportunities across all of our Brands.

As part of our Booking Holdings Romania team, you will have the opportunity to be a part of the world's leading provider of online travel, with a mission of making it easier for everyone to experience the world through five-primary consumer facing brands: , Priceline, Agoda, KAYAK and OpenTable.

The Offensive Security Manager will report to the Senior Manager/Capability Area manager - Threat Management and will manage the Offensive Security team which consists of employees and contractors at our Center Of Excellence in Bucharest, Romania. The offensive security manager will help mature the Offensive Security Team's services and deliverables by effectively supporting the following:

The Offensive Security Manager will be on the front lines with our internal stakeholders supporting them with their Product, Infrastructure and Cloud Offensive Security and Security Assurance requirements. Manage our Offensive Security team to provide cyber attack simulations and offensive security services in-house and externally facilitated services such as (but not limited to): Purple Team Exercises, Web and Infrastructure Penetration Testing , Compromise Assessments, Cloud Penetration Testing and a variety of ad-hoc custom assessments to identify threats and security weaknesses.

This role provides a hybrid way of working with an onsite presence of 2 days/week.

Key Job Responsibilities and Duties

• Drive a complete, end-to-end threat led offensive security program that includes internally and externally performed purple teams, red teams, attack path maps and full stack penetration tests.
• Define assessment scope and objectives that are aligned with the business needs and guide the team to execute realistic offensive security exercises to simulate real attacks, to test and improve our detection and response capabilities, and to identify how attackers could infiltrate and move inside our infrastructure.
• Create scenarios that advanced attackers might use to compromise our security defenses and guide the team to emulate both the techniques used by known threat actors and create new techniques that attackers might attempt in the future.
• Work closely with other security, product and infrastructure teams to design defense-in-depth controls that limit attackers' ability to move inside our network.
• Review comprehensive assessment reports and findings produced by your team and the vendor that are technical and managerial to describe the engagement, scope, risks, and remediation recommendations
• Ensure 's compliance to regulatory requirements by delivering the services that are in offensive security scope.
• Liaisoning between technical teams and executive level professionals to relay relevant testing results and findings
• Design and develop offensive security policies, standards, and procedures
• Work with the Threat Management Capability Area manager to understand business expectations, key initiatives, and set meaningful yearly goals for the Offensive Security Team.
• Ensures that Offensive Security is actively, timely and appropriately involved to support product Go-Live, incident management, response and recovery.
• Perpetually strengthen relevant skills, knowledge, and abilities to stay at the forefront of the information security industry

People Management

• Being an offensive security tech manager but also a manager of a team of up to 6 FTEs.
• Lead a multi-disciplined, cross-functional in-house and vendor teams (consisting of penetration testers and contractors) to achieve departmental and capability objectives.
• Lead and support the delivery of offensive security assessments for new and key existing products, systems and networks by mentoring and motivating the responsible team members and by maintaining an effective workload balance within the team.
• Drive continuous improvements and operational efficiency in the Offensive Security Team, supporting the appropriate resourcing and budgeting allocation to each area of focus and ensuring that the organization and people are set up to deliver.
• Provide technical and administrative oversight and guidance to junior members of the team while performing technical operations
• Mentor team members and support their development with personal development plans

Role Qualifications and Requirements

• 8+ years of experience in the security domain, and exposure to a variety of threat-related areas, especially in the field of offensive security and preferably also in other areas such as threat analysis and threat intelligence.
• 5+ years of experience performing offensive/attack-oriented security assessments
• 3+ years of people management experience
• Knowledge of standards and frameworks such as NIST, PCI, SOX, ITIL and GDPR, DMA, DSA
• Knowledge of security testing frameworks and standards such as OSSTMM, OWASP, NIST SP , and MITRE ATT&CK
• Experience in creating a vision and authoring the design of cyber programs and methodologies
• Experience of creating development plans for teams and nurturing talent.
• Hands-on experience of implementing AI technologies for offensive security work.

Preferred:

• Cyber Security Certification is a plus (e.g. CISM, CISSP, etc)
• Experience of automation, orchestration, and scripting to reduce manual processes, improving overall efficiency while also enabling new capabilities to meet the rapidly changing needs of our clients
• Mastery of commercial and open source security tools including, but not limited to: Nessus, BurpSuite, Cobalt Strike, Metasploit, Kali Linux, Qualys, AppScan, Veracode, Checkmarx, SysDig.
• Knowledge of defensive tactics designed to counter offensive cyber operations
• Other lab-based certifications such as OSCP, OSCE, GIAC, and GSE are preferred
• Experience building/automating Red Team Infrastructure.
• BA/BS Degree ideally in Computer Science, Cyber Security, Information Security, Engineering or Information Technology.
• Excellent writing and verbal communication skills.
• Strong project management and organizational skills.

Benefits & Perks

• Contributing to a high scale, complex, world renowned product and seeing real-time impact of your work on millions of travelers worldwide
• Working in a fast-paced and performance driven culture
• Technical, behavioral and interpersonal competence advancement via on-the-job opportunities, experimental projects, hackathons, conferences and active community participation
• Competitive compensation and benefits package
• Vast amounts of data to validate your ideas and the opportunity to experiment with real users

Booking Holdings is proud to be an equal opportunity workplace and is an affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. We strive to move well beyond traditional equal opportunity and work to create an environment that allows everyone to thrive.