Senior Information Security Analyst

Company Description

About Eurofins

Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and the environment safer, healthier and more sustainable. From the food you eat to the medicines you rely on, Eurofins works with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic and labelling is accurate. Eurofins is a global leader in food, environmental, pharmaceutical and cosmetic product testing and in agroscience CRO services. It is also one of the global independent market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, CDMO, advanced material sciences and in the support of clinical studies.

In over just 30 years, Eurofins has grown from one laboratory in Nantes, France to 58,000 staff across a network of over 1,000 independent companies in 54 countries, operating 900 laboratories. Performing over 450 million tests every year, Eurofins offers a portfolio of over 200,000 analytical methods to evaluate the safety, identity, composition, authenticity, origin, traceability and purity of biological substances and products, as well as providing innovative clinical diagnostic testing services, as one of the leading global emerging players in specialised clinical diagnostics testing.

Eurofins is one of the fastest growing listed European companies with a listing on the French stock exchange since 1997. In FY 2021, Eurofins achieved a record revenue of over EUR 6.7 billion.

Eurofins IT Solutions India Pvt Ltd (EITSI) is a fully owned subsidiary of Eurofins and functions as a Global Software Delivery Center exclusively catering to Eurofins Global IT business needs. The code shipped out of EITSI impacts the global network of Eurofins labs and services.

The primary focus at EITSI is to develop the next generation LIMS (Lab Information Management system), Customer portals, e-commerce solutions, ERP/CRM system, Mobile Apps & other B2B platforms for various Eurofins Laboratories and businesses. Young and dynamic, we have a rich culture and we offer fulfilling careers.

Job Description

As part of the Security Intelligence and Threat Hunting team, you will be assessing and reducing threats of Eurofins. The team is also responsible for: Network Reconnaissance, Proactive Penetration Testing (Purple Team), Anomaly Analysis, and Trapping and Coercion.

We are looking for someone who has experience in Information Security and wants to take the next step in the adventure. In its purple team capacity, candidates will be expected to emulate attacker behaviors and devise strategies to disrupt the actions of an attacker, thus enhancing the abilities of defensive teams. In the threat hunting capacity, the analyst will identify security vulnerabilities through analysis of event data from SIEM and other relevant tools

Specific Assignments:

The main responsibilities of the Purple Team member are:

• Perform research and analysis of attacker techniques and methodologies, and emulate those attacks in a collaborative and controlled environment.
• Utilize Threat Modeling methodologies to identify threats and shape Red Team operations.
• Incorporate current security trends, advisories, publications, and academic research.
• Report on the Red Team engagements providing an in-depth analysis of the security issues identified.
• Collaborate with defensive and infrastructure teams to improve defenses.
• Communicate with server owners, system custodians, and IT contacts to pursue security testing activities, including: obtaining access to systems, digital artifact collection, and containment and/or remediation actions.
• Identify complex security vulnerabilities and build exploits.
• Create presentations in MS Word, PowerPoint, and/or Excel that support findings.
• Maintain, manage, improve and update security testing process and protocol documentation.
• Assist in analyzing findings, and develop fact based reports.
• Identify means to disrupt attacker actions, and enhance defender response capabilities.
• The role requires mentoring, collaboration, and training of more junior associates.

Qualifications

Overall 4-7 years of exp. and minimum of 2-3 years of professional experience as IT Security Analyst, Penetration Tester or Purple Team member.

Required

• Relevant experience in one or more of the following areas: threat intelligence, intrusion analysis, incident response, malware analysis, security and network operations, penetration tester, or similar roles.
• Demonstrated understanding of the threat intelligence life cycle, network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
• Knowledgeable in security incident response process, procedures, and life-cycle, including performing security audits as part of red team.
• Good understanding of both Windows and Unix/Linux based operating systems.
• Understanding of IP networking concepts, to include addressing, routing, common protocol usage, use of proxies, load balancers, firewalls, routers, and switches in network architecture.
• Demonstrated integrity and judgment within a professional environment.

Personal profile

• Very good communication skills (concise writing and orally convincing).
• Very good interpersonal skills at all levels of the organization.
• Ability to appropriately balance work/personal priorities.
• Teaming skills as well as ability to work independently on taskings.
• Ability to work in a complex international environment.
• Eager to learn and continuously develop personal and technical capabilities.

Education required:

• B.Sc. or comparable education in Information Technology or Information Security.
• Languages: fluent English.

Additional Information

Personal Profile

·       Ability and willingness to work in an international environment;

·       Eager to learn and continuously develop personal and technical capabilities;

·       Very good communication skills in English (concise writing and orally convincing);

·       Very good interpersonal relation skills at all levels of the organization;

·       Very good presentation skills;

·       Hands on attitude, showing initiative;

·       Attention to details;

·       Self-Organized with very good time management skills.

Languages requirement

·       English (Excellent command required in both oral and written English).

Other

·       The position will be based in Bangalore (India)