Information Security Consultant

Company Description

About Eurofins

Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and the environment safer, healthier and more sustainable. From the food you eat to the medicines you rely on, Eurofins works with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic and labelling is accurate. Eurofins is a global leader in food, environmental, pharmaceutical and cosmetic product testing and in agroscience CRO services. It is also one of the global independent market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, CDMO, advanced material sciences and in the support of clinical studies.

In over just 30 years, Eurofins has grown from one laboratory in Nantes, France to 58,000 staff across a network of over 1,000 independent companies in 54 countries, operating 900 laboratories. Performing over 450 million tests every year, Eurofins offers a portfolio of over 200,000 analytical methods to evaluate the safety, identity, composition, authenticity, origin, traceability and purity of biological substances and products, as well as providing innovative clinical diagnostic testing services, as one of the leading global emerging players in specialised clinical diagnostics testing.

Eurofins is one of the fastest growing listed European companies with a listing on the French stock exchange since 1997. In FY 2021, Eurofins achieved a record revenue of over EUR 6.7 billion.

Eurofins IT Solutions India Pvt Ltd (EITSI) is a fully owned subsidiary of Eurofins and functions as a Global Software Delivery Center exclusively catering to Eurofins Global IT business needs. The code shipped out of EITSI impacts the global network of Eurofins labs and services.

The primary focus at EITSI is to develop the next generation LIMS (Lab Information Management system), Customer portals, e-commerce solutions, ERP/CRM system, Mobile Apps & other B2B platforms for various Eurofins Laboratories and businesses. Young and dynamic, we have a rich culture and we offer fulfilling careers.

Job Description

In this role, you will be responsible for supporting the Privileged Access Management (PAM) services while adhering to Eurofins standards and best practices for the entire environment (On-Prem and Cloud).

It is essential for you to be able to take up challenges, adapt to the business needs, and staying focused on delivering results, as well as act as a strong technical leader. Therefore, you will be expected to provide out of business support hours from time to time, and on short notice, as and when required (e.g., troubleshooting and resolving production issues, or carry out essential maintenance activities).

You will work closely with business and IT stakeholders to develop and perform stronger governance of PAM & IAM processes, engage in risk-based security assessments, and assist in remediation efforts.

Other responsibilities will include:

• Responsible for creating, maintaining, and monitoring the policies on PAM solutions
• Ability to document and define PAM target state processes and gather business requirements
• Support security-related assessments and configurations for PAM platforms and provide a recommendation of the best practices for implementation
• Develop and report risk metrics (KPIs/KRIs) as well periodic scorecards consumed by management for the PAM program
• Keep pace with emerging IAM and PAM technology, cyber threats, and industry trends around cybersecurity
• Establishes and refines procedures and other business processes to detect errors and inconsistencies in privileges
• Support detailed reporting and root cause analysis with various internal technology teams
• Build relationships and serve as a liaison between system/application owners and the internal technology team for governance and security-specific initiatives.

Qualifications

Are you our kind of extraordinary?

You will have a University degree in a Computer Science or relevant field, ideally with CISSP, CCSK/CCSP or CISM Certifications and knowledge of BeyondTrust, CyberArk, Observe IT, Arcos or other PAM technologies. It is important to have relevant experience with Design, Build, and operations of PAM solutions and experience integrating PAM solutions with infrastructure and applications.

Overall 4-7 years of IT Experience with 3-4 years exp. into PAM is required.

Your technical skills must include:

• Experience and working knowledge of IAM/PAM Standards and common best practices including Authentication, Authorization, role-based access controls and PAM Governance and Administration
• Strong understanding of Privileged Access Management processes:
• Privileged access controls
• Role Base Access Control and/or Attribute and Policy-based Access Control
• Managed credentials and systems
• ITSM integration
• Manage Applications Credentials
• User Access Policy Management
• Break Glass procedures
• Strong Windows Active Directory, UNIX, Linux & SSH key management experience
• Strong understanding of network hardware configuration and password management options (SSH, ACS, LDAP)
• Strong understanding of Microsoft SQL Databases
• Strong understanding of authentication methods and techniques (LDAP/AD, others)

Technical skills in the following will be considered an advantage:

• Strong knowledge of SAML, Header-Based authentication, SCIM, FIDO, OAuth, Open ID connect and REST concepts
• Strong understanding of the information security domains
• Experience with different services, technologies within cloud environments like AWS, Azure, GCP
• Ability to perform a risk assessment and security threat modelling exercises with technology engineering teams
• Be excellent in coordination with cross-functional teams and vendors for evaluation/rollout of new technologies.

Additional Information

Personal Profile

• Ability and willingness to work in an international environment;
• Eager to learn and continuously develop personal and technical capabilities;
• Very good communication skills in English (concise writing and orally convincing);
• Very good interpersonal relation skills at all levels of the organization;
• Very good presentation skills;
• Hands on attitude, showing initiative;
• Attention to details;
• Self-Organized with very good time management skills.

Languages requirement

·       English (Excellent command required in both oral and written English).

Additional Information

Personal Qualities:

· Excellent analytical and problem solving skills

· Excellent verbal and written communication skills

· Successful teamwork experience and demonstrated leadership abilities are required

· Proven ability to transfer knowledge and stay aware of current trends and technical advancements

· Ability to articulate and present different points-of-views on various technologies