Role Description:
About Us: At Booking.com, data drives our decisions. Technology is at our core. And innovation is everywhere. But our company is more than datasets, lines of code or A/B tests. We’re the thrill of the first night in a new place. The excitement of the next morning. The friends you encounter. The journeys you take. The sights you see. And the memories you make. Through our products, partners and people, we make it easier for everyone to experience the world.
Role Description: With the increasing importance of data protection and privacy laws within Europe and globally, Booking.com is growing its cybersecurity legal response provision. We are currently looking for a Sr Legal Counsel - Cybersecurity and Incidents (Privacy) to join our Amsterdam-based Privacy Team. As a Privacy Counsel you will work in a team of dedicated lawyers and supporting privacy compliance analysts.

QUALIFICATIONS & SKILLS:

• 5+ years’ experience in a top tier law firm and/or major corporation in a similar role;
• Hands-on experience in data protection and cybersecurity laws, privacy compliance and data security; a comprehensive understanding of enterprise technology
• A Batchelors’ and/or Masters’ Degree, and a legal professional qualification; a CIPP/E / CIPT (or similar) certification;
• A deep understanding of GDPR and how this applies to developments in the fields of technology and security;Knowledge and experience in cyber-risk;
• A high level of project / incident management skill and at the same time, able to “roll up sleeves” to get the job done;
• Ability to be the ‘voice of reason’ in crisis situations - The ability to quickly respond to issues at hand and able to prioritise effectively, with a ‘customer first’ mindset;
• Fluency in English (and ‘tech’) with excellent communication skills; verbally, in writing and listening (other language skills are a plus).

KEY JOB RESPONSIBILITIES AND DUTIES:

• Coordinate personal data security and cybersecurity activity
• Coordinate and support the management of cybersecurity incidents as part of a cross functional unit
• Record, report and advise on regulatory compliance with global privacy, security and finance authorities, and law enforcement
• Provide legal advice for privacy related matters globally, as well as cybercrime and security laws;
• Perform third party services risk assessments and negotiate data processing agreements and data protection issues within commercial contracts with group members or third parties;
• Work closely with the other Legal Counsels, Cybersecurity, Risk & Compliance, Procurement, and other colleagues as well as outside counsels worldwide.