Senior Information Security Officer

Company Description

Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and our environment safer, healthier and more sustainable. From the food you eat, to the water you drink, to the medicines you rely on, Eurofins laboratories work with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic, and labelling is accurate.

The Eurofins network of companies is the global leader in food, environment, pharmaceutical and cosmetic product testing and in agro-science Contract Research Organization services. It is one of the market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, advanced material sciences and in the support of clinical studies, as well as having an emerging global presence in Contract Development and Manufacturing Organizations. It also has a rapidly developing presence in highly specialized and molecular clinical diagnostic testing and in-vitro diagnostic products.

In over 30 years, Eurofins has grown from one laboratory in Nantes, France to 58,000 staff across a decentralized and entrepreneurial network of 900 laboratories in over 54 countries. Eurofins companies offer a portfolio of over 200,000 analytical methods to evaluate the safety, identity, composition, authenticity, origin, traceability and purity of biological substances and products.

In 2022, Eurofins generated total revenues of EUR 6.72 billion, and has been among the best performing stocks in Europe over the past 20 years.

Job Description

RESPONSIBILITIES:

• Work with the business to increase and improve the overall IT security posture
• Help with risk identification and drive local and regional initiatives to help better secure the company.
• Participate in the development of new and improvement of existing global, regional, and local security solutions.
• Facilitate the remediation of vulnerabilities and configuration weaknesses by coordinating activities between the vulnerability management and business teams.
• Assess the architecture of proposed systems and solutions to ensure they are deployed in line with security standards.
• Take part in the due diligence assessment for Mergers and Acquisitions and continue to work post-close with these new business lines to quickly close any gaps identified

• Design and implement compliance driven dashboards for key security metrics
• Work on a monthly basis with the business to perform remediation of identified gaps and risks
• Review vendor supporting documentation to validate appropriate implementation of information security controls. Analyze the information to identify information security weaknesses or non-compliance with enterprise standards
• Produce detailed documentation of assessments and perform threat analyses of gaps identified.

Qualifications

QUALIFICATIONS

Experience required:

• More than 7 years of experience in cybersecurity and/or infrastructure and support, as well as experience in IT services and risk management.
• Experience performing vulnerability scans, log analysis, and security monitoring with leading industry solutions.
• Advanced English level.
• CompTIA Security+, ITIL or COBIT certifications.
• Knowledge of NIST and other cybersecurity frameworks.
• Experience developing and improving compliance related measures.
• Degree in Computer Science, Information Security, related field OR equivalent experience.

Preferred:

• Technical Knowledge on web applications security.
• Management Level Experience.
• Industry certification such as CISSP, CISA or CISM.
• Technical Knowledge and experience configuring the Security Settings of AWS, Azure or Google Cloud Platform.
• Project Management certifications such as CAPM, PMP or Scrum Master.
• Mergers and Acquisitions Experience.
• Background in documentation to work in the creation of process and security endorsement documents.

Soft skills:

• Ability to communicate clearly, concisely, and professionally with all levels of management explaining complex security issues and concerns in a manner understandable by the business.
• Ability to work in a fast-paced environment and manage multiple initiatives and priorities while working with various stakeholders.
• Highly capable of assessing problems, design and drive a resolution approach regardless of the technology.
• Collaboration with team members to achieve results while identifying opportunities for effective process improvements.
• Work independently with little supervision and contribute successfully to cross-functional, multicultural teams.
• Excellent analytical, problem solving and decision-making skills.
• Proven track record of managing large projects and/or small teams.
• Adaptability and negotiation skills.
• Attention to details, desire to learn, and an ability to prioritize complex issues while meeting tight deadlines.
• Can-do attitude while managing business expectations.