Senior Security Analyst (GRC)
Booksy
Booksy is an online booking platform and salon management system for the beauty industry. We are one of the fastest-growing Polish companies and an international leader in the beauty industry. Our application is used by over 25 million customers!
Tech stack
NIST
CIS
Job description
A career at Booksy means you’re part of a global team focused on helping people around the world feel great about themselves, every day. From empowering entrepreneurs to build successful businesses to supporting their customers to arrange 'me time' moments, we’re in the business of helping people thrive and feel fantastic.
Working in an ever-changing, scale-up where things are messy, and resources are limited isn't for everyone. If you thrive in a stable environment with big budgets, clear processes, and structures, then, if being honest, we’re probably not for you. However, if you love bringing order to chaos, inventively solving problems, and prioritising your own path within ambiguity, then you're likely to love it here.
The people you’ll like to work with and things you'll enjoy impacting:
As a Senior Security Analyst (GRC) reporting to the Director of Enterprise Technology in our Security (Enterprise Technology) team, your purpose will be to help ensure the organisation’s security posture is robust, compliant, and aligned with industry best practices. Your day-to-day responsibilities will include developing and maintaining a comprehensive GRC framework, conducting risk assessments, advising on the most effective IT controls, and driving continuous improvement in our security measures.
Essentially, to ensure you succeed in this role you’re going to need…
- A good understanding of technical and organisational security concepts and their impact on the company.
- Proven experience in developing and managing GRC and IT control frameworks (e.g., NIST, CIS).
- The ability to identify security risks in systems and business processes, and lead projects to implement long-term solutions.
- Strong communication skills to effectively present security risks and compliance status to management.
- Experience with security standards and regulations such as NIS2, PCI-DSS, GDPR, and SOX.
- A proactive attitude in contributing to team culture, enhancing collaboration and feedback.
At a minimum, we require conversational-level English language skills. Why? English is our company language and is used for any business-wide communications, so we need you to be able to speak English to feel like an integrated part of Booksy.
It will also help you to have…
- Experience with GRC automation tools like OneTrust, ServiceNow, or RSA Archer.
- Relevant certifications such as CISSP, CISM, CISA, or CRISC.
Some of the benefits we offer are:
- Flexible working hours and fully remote opportunities within your country
- A holiday allowance of 26 days + public holidays
- Access to tools and resources that support professional development
- The opportunity to be part of something big – the world’s fastest-growing beauty marketplace
Our Diversity and Inclusion Commitment:
We work in a highly creative and diverse industry, so it goes without saying that we strive to create an inclusive environment for all. We welcome people from all backgrounds and are committed to fair consideration in our hiring process. If you have any accessibility needs or require reasonable adjustments during the interview process, please contact us at belonging@booksy.com, so we can best support you.
Kindly submit your application and CV in English to ensure it is successfully reviewed.
B2B, Permanent
Check similar offers
