Company Description
Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and the environment safer, healthier and more sustainable. From the food you eat to the medicines you rely on, Eurofins works with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic, and labelling is accurate. Eurofins is a global leader in food, environmental, pharmaceutical and cosmetic product testing and in AgroScience CRO services. It is also one of the global independent market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, CDMO, advanced material sciences and in the support of clinical studies.
In over just 35 years, Eurofins has grown from one laboratory in Nantes, France to 62,000 staff across a network of over 1,000 independent companies in 61 countries, operating 900 laboratories. Performing over 450 million tests every year, Eurofins offers a portfolio of over 200,000 analytical methods to evaluate the safety, identity, composition, authenticity, origin, traceability and purity of biological substances and products, as well as providing innovative clinical diagnostic testing services, as one of the leading global emerging players in specialised clinical diagnostics testing.
Eurofins is one of the fastest growing listed European companies with a listing on the French stock exchange since 1997.
Eurofins IT Solutions India Pvt Ltd (EITSI) is a fully owned subsidiary of Eurofins and functions as a Global Software Delivery Center exclusively catering to Eurofins Global IT business needs. The code shipped out of EITSI impacts the global network of Eurofins labs and services.
The primary focus at EITSI is to develop the next generation LIMS (Lab Information Management system), Customer portals, e-commerce solutions, ERP/CRM system, Mobile Apps & other B2B platforms for various Eurofins Laboratories and businesses. Young and dynamic, we have a rich culture, and we offer fulfilling careers.
Job Description
Position Title: Senior Information Security Analyst
Team: Regional Security Support Crew (Information security)
Reporting Location: Bangalore (B4 & B5)
Job Overview:
As a Regional Security Support crew, your primary role, will be to assist the Regional Information Security Officers (RISO) in implementing and maintaining cybersecurity strategies for various legal entities Globally. You will be responsible for ensuring compliance with group security policies, managing risks, and supporting the continuous improvement of the regional security posture. This role offers a unique opportunity to be part of a newly established team, providing a dynamic environment where you can help shape security processes from the ground up.
Key Responsibilities:
- Provide direct support to the RISO in managing and implementing security plans for legal entities across the region.
- Assist in the creation, follow-up, and management of remediation plans for identified security risks and non-compliance issues.
- Conduct security risk assessments and ensure that security measures are aligned with the Group’s standards and adapted to each legal entity’s needs.
- Support the RISO in reviewing and approving changes to systems, processes, and applications prior to deployment.
- Perform and prioritize security audits, vulnerability scans, and reviews (including access rights, firewall rules, cloud compliance, etc.).
- Coordinate and support legal entities during internal and third-party security audits, ensuring compliance with all security policies.
- Conduct security training and awareness programs customized for regional entities, ensuring all staff are informed and compliant.
- Maintain accurate inventories of assets, third-party vendors, and local processes for audit and security monitoring purposes.
- Collaborate with regional and Group IT teams to ensure a “security by design” approach is applied in all regional architectures, applications, and processes.
- Assist in evaluating third-party vendors to ensure they meet security standards.
- Support the development of Disaster Recovery (DR) and Business Continuity (BC) plans.
- Assist the RISO with the development and implementation of policies, procedures, and guidelines that cater to local regulatory requirements and Group standards.
- Core Responsibilities in Incident Response and Vulnerability Management:
- Assist the RISO in incident response activities by investigating security breaches and incidents in collaboration with the Security Operations Center (SOC).
- Analyze vulnerability reports and assist in remediation efforts, ensuring timely patching and risk mitigation.
- Support the review and approval of firewall rules, configurations, and exceptions to maintain network security.
- Collaborate with the RISO in monitoring for emerging threats and recommending security improvements based on current trends.
Qualifications & Skills:
- Strong communication and interpersonal skills, with the ability to work effectively with multiple stakeholders across various legal entities.
- Ability to manage multiple priorities and work under pressure in a fast-paced environment.
- Strong knowledge of cybersecurity concepts, including vulnerability assessments, incident management, network architecture, firewalls, and cloud security.
- Expertise in general IT concepts, including Active Directory, Office 365, and modern networking solutions like micro-segmentation, SASE, SD-WAN, etc.
- Demonstrated ability to assist in the creation and execution of security policies, procedures, and standards.
- Familiarity with security frameworks such as ISO 2700x, ITIL, and the EU Privacy Directives.
- Experience in conducting security assessments and working with audit teams during internal or external security reviews.
Education & Experience:
- A bachelor’s degree in computer science / Equivalent Stream, Information Security, or a related field is preferred.
- At least 3+ years of experience in cybersecurity, information security, or a related field.
- Certifications such as CISM, CISSP, or CEH are nice to have.
- Atypical profiles with experience from bug bounties, open-source projects, or bootcamps are also encouraged to apply if they can demonstrate strong skills and knowledge in the required areas.
Key Competencies:
- A quick learner who is autonomous, adaptable, and detail oriented.
- Ability to work in large, complex IT environments and be comfortable with ambiguity and fast-changing priorities.
- A passion for cybersecurity, with strong problem-solving skills and a proactive approach to risk management.
- Strong English language skills are required, additional language is a plus.
How You Will Help:
- Regularly test legal entities for compliance with security policies and procedures.
- Assist in conducting vulnerability assessments and implementing remediation measures based on Group standards.
- Investigate security incidents in collaboration with the SOC and provide technical support during audits.
- Support the development of Security Key Performance Indicators (KPIs) to monitor and improve the region’s security posture.
This is an exceptional opportunity for cybersecurity professionals who thrive in dynamic environments and enjoy creating and improving security processes. If you are passionate about cybersecurity and want to play a crucial role in protecting a diverse range of legal entities across Europe, we encourage you to apply.