Information Security Consultant (Purple Team - Detection Engineering)

Katowice, Poland

Applications have closed

Eurofins

World leader in food, environment, pharma product testing & agroscience CRO services; 61,000 staff across a network of more than 1,000 independent companies (940 laboratories) in 59 countries, offering over 200,000 analytical methods.

View company page

Company Description

Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and our environment safer, healthier and more sustainable. From the food you eat, to the water you drink, to the medicines you rely on, Eurofins laboratories work with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic, and labelling is accurate.

Eurofins is dedicated to delivering testing services that contribute to the health and safety of society and the planet, and to its corporate responsibility to protect the environment and ensure diversity, equity, and inclusion across the entire network of Eurofins companies.

Job Description

In a nutshell

We are looking for someone who has experience in Information Security and wants to take the next step in their career. As a member of the ‘purple team’, you will manage and enhance the SIEM and security sensor rulesets and configurations.

As part of the wider Security Analysis team, you will be assessing and reducing threats to Eurofins. The team is also responsible for network reconnaissance, security intelligence, threat hunting, proactive penetration testing (Purple Team), anomaly analysis, and trapping and coercion.

Where will you be based and what business will you support?

You will join the Purple team in Katowice and will work closely with the Security Intelligence and Threat Hunting team, as well as incident response and monitoring analysts, to define and finetune rules and device security policies to meet the mission requirements.

How can you help us? 

As a Detections Engineer you will be responsible for creating, tuning and enhancing detection points on SIEM and EDR, with a special focus on SIEM rules development.

You will work with project teams to design, implement and distribute monitoring policies, but also to implement detection methodologies across the MITRE ATT&CK framework. You will provide guidance on threat detection best practices, technical requirements, and integration.

We would like you to develop and maintain expertise in a wide variety of technology platforms, threat vectors, and threat actors, and communicate it to technical and non-technical personnel.

In this role, you will also monitor and recommend improvements based on events or incidents of apparent security breaches detected by SIEM in areas including networks, applications, databases, systems, and endpoints. Manage and improve information security documentation as required. Provide support during investigations and threat hunt missions as required and improve Eurofins’ ability to detect intrusions in real-time by creating innovative solutions to complex security observability problems.

What can we do for you?

We are offering:

  • competitive salary package, including bonus and benefits;
  • Extensive on-the-job coaching and training opportunities;
  • Challenges within a multi-cultural and cross-regional team as part of the international and fast-growing Eurofins organisation;
  • dynamic work environment with a good team spirit, where personal development and growth are highly encouraged.

Qualifications

Are you our kind of extraordinary?

We are looking for a specialist with a minimum of 3 years of relevant experience in intrusion analysis, incident response, malware analysis, security operations, threat intelligence or a similar role.

If you have expert-level experience in researching, creating and tuning SIEM rules in one or more products and managing and extracting data based on common standards, this role will let you make full use of and develop your skills.

You should also have demonstrated understanding of the threat intelligence lifecycle, network threats, attacks, attack vectors and methods of exploitation, with an understanding of intrusion set tactics, techniques and procedures (TTPs), and demonstrated hands-on experience analysing a high volumes of logs, network data and other attack artifacts.

You should also have an understanding of IP networking technology, to include addressing, routing, common protocol usage, and network architecture; hands-on experience as an administrator configuring one or more of SIEM, Endpoint Protection sufficient to make common changes unassisted; knowledge of cloud infrastructure specifics and relevant threats and hands-on experience applying unified data models to cloud data sources (e.g., Azure and AWS); and experience designing, building and maintaining cyber threat detection tooling.

Appreciated

  • Proficient with one or more scripting languages, such as Powershell, Python, Bash, etc. in a threat intelligence or incident response environment;
  • Understanding of cloud security fundamentals (Azure, AWS, etc.);
  • Experience creating and tuning rules using common standards like Sigma, Snort, Yara.

Personal profile

We are looking for a person with strong communication skills, who is able to build and maintain interpersonal relations at all levels of the organisation. If you feel comfortable working in a complex international environment, are eager to learn and develop personal and technical capabilities, then this position is a great fit for you.

Education

B.Sc. or M.Sc. in Information Technology or Information Security

Languages

As you will be working in an international environment, you should have strong English skills (oral and written).

What else should I know? 

As the role and Eurofins' IT Talent Acquisition team are international, please ensure to submit your application in English.

Additional Information

We support your development! Do you feel you don’t match 100% of the requirements? Don’t hesitate to apply anyway! Eurofins companies are committed to supporting your career development.

We embrace diversity! Eurofins network of companies believe in strength and innovation through diversity, being an Equal Opportunity Employer. We prohibit discrimination against employees or applications based on gender identity and/or expression, race, nationality, age, religion, sexual orientation, disability, and everything else that makes employees of Eurofins companies unique.

Sustainability matters to us!  We are well on our way to achieving our objective of carbon neutrality by 2025, through a combination of emission reduction and compensation initiatives. We encourage our laboratory leaders to make sustainable changes at their local level, and in addition to their initiatives we also count on our dedicated carbon reduction team to help us to achieve this goal!

Find out more in our career page: https://careers.eurofins.com/

Company description: Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and our environment safer, healthier and more sustainable. From the food you eat, to the water you drink, to the medicines you rely on, Eurofins laboratories work with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic and labelling is accurate.

The Eurofins network of companies is the global leader in food, environment, pharmaceutical and cosmetic product testing and in discovery pharmacology, forensics, advanced material sciences and agroscience contract research services. It is one of the market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, advanced material sciences and in the support of clinical studies, as well as having an emerging global presence in Contract Development and Manufacturing Organisations. It also has a rapidly developing presence in highly specialised and molecular clinical diagnostic testing and in-vitro diagnostic products.

In over 35 years, Eurofins has grown from one laboratory in Nantes, France to 61,000 staff across a decentralised and entrepreneurial network of ca. 900 laboratories in 61 countries. Eurofins companies offer a portfolio of over 200,000 analytical methods to evaluate the safety, identity, composition, authenticity, origin, traceability and purity of biological substances and products.

In 2022, Eurofins generated total revenues of EUR 6.7 billion, and has been among the best performing stocks in Europe over the past 20 years.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: AWS Azure Bash Cloud EDR Forensics Incident response Malware MITRE ATT&CK Monitoring Pentesting PowerShell Python Scripting Security analysis SIEM Snort Threat detection Threat intelligence TTPs

Perks/benefits: Career development Competitive pay Equity Health care Salary bonus Startup environment Team events

Regions: Europe North America
Countries: Poland United States
Job stats:  43  7  0

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.