Information Security Analyst - Security Certifications
Eurofins Scientific
Company Description
Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and the environment safer, healthier and more sustainable. From the food you eat to the medicines you rely on, Eurofins works with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic, and labelling is accurate. Eurofins is a global leader in food, environmental, pharmaceutical and cosmetic product testing and in AgroScience CRO services. It is also one of the global independent market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, CDMO, advanced material sciences and in the support of clinical studies.
In over just 35 years, Eurofins has grown from one laboratory in Nantes, France to 62,000 staff across a network of over 1,000 independent companies in 61 countries, operating 900 laboratories. Performing over 450 million tests every year, Eurofins offers a portfolio of over 200,000 analytical methods to evaluate the safety, identity, composition, authenticity, origin, traceability and purity of biological substances and products, as well as providing innovative clinical diagnostic testing services, as one of the leading global emerging players in specialised clinical diagnostics testing.
Eurofins is one of the fastest growing listed European companies with a listing on the French stock exchange since 1997.
Eurofins IT Solutions India Pvt Ltd (EITSI) is a fully owned subsidiary of Eurofins and functions as a Global Software Delivery Center exclusively catering to Eurofins Global IT business needs. The code shipped out of EITSI impacts the global network of Eurofins labs and services.
The primary focus at EITSI is to develop the next generation LIMS (Lab Information Management system), Customer portals, e-commerce solutions, ERP/CRM system, Mobile Apps & other B2B platforms for various Eurofins Laboratories and businesses. Young and dynamic, we have a rich culture, and we offer fulfilling careers.
Job Description
Job Title: Information Security Analyst – Security Certifications
REPORTING TO : Manager, Information Security
REPORTING LOCATION : Katowice, Poland
WORKING LOCATION : India
ROLE & OBJECTIVES:
- Role would focus on the attestations and certifications for relevant Eurofins functions as well as in providing guidance & supporting customer questionnaires.
- Support External Audits (SOC 2 – Type1/Type 2 , ISO 27001, and other IT Audits based on NIST Cybersecurity) for relevant functions/region wise.
- Define/review test of procedures/controls basis on the organization defined policies & procedures for relevant certifications.
- Execute the tests of the defined controls (ITGC – IT General Controls, Technical controls, Physical Controls, etc) as part of TOD (Test of Design) and TOE (Test of effectiveness).
- Manage reporting phase of the testing and ensure clarity of the reported findings.
- Explain details of findings to the Management stakeholders.
- Follow up on the reported findings for its remediation.
- Monitor the compliance via available GRC tools / dashboards and ensure gaps are mitigated by collaborating with other stakeholders.
- Well versed with ITIL Standardized Process to monitor the Service Now requests.
QUALIFICATIONS AND EXPERIENCE REQUIRED:
Minimum of 3 -9 years of professional experience in the field of Governance, Risk and Compliance or IT Audits.
Required
- Knowledge of technical security concepts related to IT General Controls (ITGC Controls) – Identity & Access Management, Physical Security, Incident Management, Business Continuity & Disaster recovery, Change Management, Logging & Monitoring Data Management, Asset Management and Risk Management etc.
- Knowledge in any of these two framework/standard SOC 2- Type1/Type2, ITIL/ITSM, ISO/IEC 27001,NIST Cyber Security.
- Additional Knowledge in regulations like GDPR or SWIFT Attestation.
- Excellent Fluency in English (Verbal and Written).
Appreciated
- Any security related certifications like: ISO27001, CISA, CISSP is an added advantage.
- Experience with a MNC company and/ or Big 4 accounting firm experience is an added advantage.