Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Implement and maintain security frameworks while collaborating on risk management projects.
- Company: Join Booksy, a global leader in the beauty marketplace, focused on helping people thrive.
- Benefits: Flexible hours, remote work options, and opportunities for international development.
- Why this job: Be part of a fast-growing team making a real impact in the beauty industry.
- Qualifications: Understanding of security concepts and experience with GRC frameworks.
- Other info: Diverse and inclusive environment with a commitment to creativity.
The predicted salary is between 28800 - 48000 £ per year.
A career at Booksy means you are part of a global team focused on helping people around the world feel great about themselves, every day. From empowering entrepreneurs to build successful businesses, to supporting their customers arrange 'me time' moments, we are in the business of helping people thrive and feel fantastic. Working in an ever-changing, scale-up where things are messy, and resources are limited isn't for everyone. If you thrive in a stable environment with big budgets, clear processes and structures then, if being honest, we are probably not for you. However, if you love bringing order to chaos, inventively solving problems, and prioritising your own path within ambiguity, then you are likely to love it here.
Requirements
The Security team coordinates security efforts for the entire Booksy organisation globally. The Security Analyst (GRC) plays a key part in ensuring the organisation's security posture is robust and aligned with industry best practices and regulatory requirements. As a Security Analyst, you will therefore be responsible for implementing and maintaining an effective GRC framework, conducting risk assessments, and driving continuous improvement of our security controls.
Responsibilities
- Develop, implement, and maintain an effective GRC framework, including policies, procedures, and standards.
- Collaborate with other risk-management teams to identify and prioritise security risks.
- Develop and maintain an inventory of security controls (ITGC) and ensure their effectiveness through regular testing and monitoring.
- Advise System Owners on the most effective implementation of IT Controls in context of their systems.
- Conduct internal compliance assessments and assist with regulatory compliance efforts (e.g., NIS2, PCI-DSS, SOX, GDPR).
- Prepare and present reports on security risks and compliance status to the management.
Required Skills
- Good understanding of technical and organisational security concepts and their consequences for Booksy.
- Sound experience in defining and operating GRC frameworks and IT Control Frameworks.
- Ability to plan inter-team projects including multiple stakeholders. Define expectations from every project member and project timelines. Coordinate project delivery and escalations.
- Ability to identify risks in around systems and business processes, determine long-term solutions, (backed up by custom analysis) and lead the project to implement them.
- Experience with security control frameworks (e.g., NIST Cybersecurity Framework, CIS Controls).
- Knowledge of relevant security standards and regulations (e.g., NIS2, PCI-DSS, GDPR, SOX).
- Experience with GRC automation tools (e.g., OneTrust, ServiceNow, RSA Archer) is a plus.
- Relevant certifications (e.g., CISSP, CISM, CISA, CRISC) are a plus.
Benefits
- The opportunity to be part of something big - the world's fastest growing beauty marketplace.
- Flexible working hours and opportunity to work remotely within your country.
- Work in a welcoming team which is always ready to help.
- Opportunity to develop in an international environment - we have teams in 6 countries.
- Additional benefits that might differ depending on the location.
Diversity and Inclusion Commitment
We work in a highly creative and diverse industry so it goes without saying that we strive to create an inclusive environment for all. We welcome people from all backgrounds and are committed to fair consideration in our hiring process. If you have any accessibility needs or require reasonable adjustments during the interview process, please contact us so we can best support you. Kindly submit your application and CV in English to ensure it is successfully reviewed.
Security Analyst employer: Booksy
Contact Detail:
Booksy Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Analyst
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by researching Booksy and its culture. Understand their mission and values, and think about how your skills as a Security Analyst can help them thrive in a chaotic environment.
✨Tip Number 3
Showcase your problem-solving skills during interviews. Share examples of how you've tackled security challenges in the past, especially in ambiguous situations. This will demonstrate that you're ready to bring order to chaos!
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, it shows you're genuinely interested in being part of the Booksy team.
We think you need these skills to ace Security Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Analyst role. Highlight your experience with GRC frameworks and any relevant certifications. We want to see how your skills align with what we're looking for!
Showcase Problem-Solving Skills: In your application, don’t just list your skills; show us how you've used them to solve real problems. We love candidates who can bring order to chaos, so share specific examples of your past experiences.
Be Clear and Concise: When writing your application, keep it clear and to the point. Use straightforward language and avoid jargon unless it's relevant. We appreciate a well-structured application that’s easy to read!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you're keen on joining our team!
How to prepare for a job interview at Booksy
✨Understand the GRC Framework
Before your interview, make sure you have a solid grasp of Governance, Risk, and Compliance (GRC) frameworks. Familiarise yourself with how they apply to security in organisations like Booksy. Be ready to discuss your experience with implementing these frameworks and how they can help mitigate risks.
✨Show Your Problem-Solving Skills
Booksy thrives on bringing order to chaos, so be prepared to share examples of how you've tackled complex security challenges in the past. Think about specific situations where you identified risks and implemented effective solutions, and be ready to explain your thought process.
✨Know Your Regulations
Brush up on relevant security standards and regulations such as NIS2, PCI-DSS, GDPR, and SOX. During the interview, demonstrate your understanding of these regulations and how they impact security practices. This will show that you're not just familiar with the concepts but can also apply them in a practical context.
✨Prepare for Collaboration Questions
Since the role involves working with various teams, think about your past experiences collaborating with different stakeholders. Be ready to discuss how you define expectations, manage timelines, and coordinate project delivery. Highlight any tools or methods you've used to facilitate teamwork and communication.