Information Security Analyst SOCL3

Company Description

Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and our environment safer, healthier and more sustainable. From the food you eat, to the water you drink, to the medicines you rely on, Eurofins laboratories work with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic, and labelling is accurate.

The Eurofins network of companies is the global leader in food, environment, pharmaceutical and cosmetic product testing and in agro-science Contract Research Organization services. It is one of the market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, advanced material sciences and in the support of clinical studies, as well as having an emerging global presence in Contract Development and Manufacturing Organizations. It also has a rapidly developing presence in highly specialized and molecular clinical diagnostic testing and in-vitro diagnostic products.

In over 30 years, Eurofins has grown from one laboratory in Nantes, France to 58,000 staff across a decentralized and entrepreneurial network of 900 laboratories in over 54 countries. Eurofins companies offer a portfolio of over 200,000 analytical methods to evaluate the safety, identity, composition, authenticity, origin, traceability and purity of biological substances and products.

In 2022, Eurofins generated total revenues of EUR 6.72 billion, and has been among the best performing stocks in Europe over the past 20 years.

Job Description

Eurofins is ramping up its Security Operations Centre and is looking for new members to join its L3 incident response team. As an L3 Incident Responder, you will be working on security incidents and support with the forensics. You will act as an escalation point for L2 SOC for complex and critical incidents and work towards remediation. You will have the opportunity the lead incidents through the IR life cycle.

As part of the team, you will continuously work on enhancing the security incident process and drive the resolution of identified issues, bringing the necessary experience and expertise to elevate the current SOC L2 level.

Critical incidents can be escalated to L3 for immediate handling, meaning this role requires overtime and adjusting to reasonable demands from management in such cases.

Specific Assignments:

As a Senior Information Security Analyst, you will recognise potential, successful, and/or unsuccessful intrusion attempts/compromises, conduct thorough reviews and analyses of relevant data, and summarise information. You will investigate and lead security incidents (IR lifecycle) reported by SOC L2, Incident Response staff, or other relevant sources to determine increased risk to the business.

You will be required to efficiently identify the True Positives; develop and execute SOC procedures; and ensure confidentiality and the protection of sensitive data. Triage and deep investigation of cyber security events using SIEM, IDS, EDR, antivirus software, Internet Footprint tools, and proxy solutions will play a significant role.

You will be also dealing with host-based forensics (knowledge of data acquisition and analysis using forensic tools), network-based forensics (ability to read and understand PCAP files) and remediation (IT Infra & Ops) teams on events and incident mitigation.

Qualifications

Work experience:

MUST have 3 to 5 years of professional experience as an SOC Analyst (L2 or L3), threat researcher, hunter or a similar comparable role dealing with incident handling, alert tracking, cybersecurity case management, this role could be a perfect fit for you.

Advanced English is a MUST: good written and verbal communication skills are essential, including communicating technical details in a clear and understandable way for non-tech audiences. Strong troubleshooting, reasoning, and analytical problem-solving skills are highly required.

Technical qualifications:

Good understanding of cybersecurity incident discovery and event management, network forensics, IPS/IDS, firewalls, content filtering technology, DLP, configuration management and monitoring, endpoint protection, database security, log collection and analysis, and strong working knowledge of different attack vectors and attack types.

Experience in developing and maintaining Play/Runbooks and/or Standard Operating Procedures in an SOC environment is also required.

Soft skills

If you can multitask and prioritize a variety of functions simultaneously, while working independently and taking ownership of projects and initiatives, then this position could be for you.

Additional Information

We embrace diversity! Eurofins network of companies believe in strength and innovation through diversity, being an Equal Opportunity Employer. We prohibit discrimination against employees or applications based on gender identity and/or expression, race, nationality, age, religion, sexual orientation, disability, and everything else that makes employees of Eurofins companies unique.

Sustainability matters to us!  We are well on our way to achieving our objective of carbon neutrality by 2025, through a combination of emission reduction and compensation initiatives. We encourage our laboratory leaders to make sustainable changes at their local level, and in addition to their initiatives we also count on our dedicated carbon reduction team to help us to achieve this goal!

Find out more in our career page: https://careers.eurofins.com/