Eurofins Scientific is an international life sciences company, which provides a unique range of analytical testing services to clients across multiple industries. The Group believes it is the world leader in food, environment, pharmaceutical and cosmetics products testing and in agroscience CRO services. It is also one of the global independent market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, CDMO, advanced material sciences and for supporting clinical studies. In addition, Eurofins is one of the leading global emerging players in specialty clinical diagnostic testing.

In 2018, Eurofins generated 4.2 billion Euro proforma turnover in 800 laboratories across 47 countries, employing about 45.000 staff.

Eurofins Technologies is a new International Business Line (IBL) within the Eurofins Group focused on the development, manufacturing and marketing of bioanalytical technologies and diagnostic test kits in particular. The business if primarily focused on solutions in Food Safety and Environmental Safety but has recently expanded into Animal Health and Clinical Diagnostics. Eurofins Technologies serves both external customers (industrial laboratories, governmental laboratories, service laboratories) as well as customers within the Eurofins Group.

The Active Defence Consultant is responsible of assessing and reducing threats of Eurofins. The team is also responsible for: Network Reconnaissance, Proactive Penetration Testing (Purple Team), Anomaly Analysis, and Trapping and Coercion

Required Professional Expertise:

• B.Sc. or comparable education in Information Technology or Information Security.

• General IT Ingra experience of 10 years onwards

• Minimum of 4-5 years of professional experience as an s IT Security Analyst, Active Defense Analyst, or Security Intelligence Analyst.

• Relevant experience in one or more of the following areas: threat intelligence, intrusion analysis, incident response, malware analysis, security and network operations, penetration tester, or similar roles.

• Demonstrated understanding of the threat intelligence life cycle, network threats, attacks, attack vectors, and methods of exploitation with an understanding of intrusion set tactics, techniques, and procedures (TTPs).

• Knowledgeable in security incident response process, procedures, and life cycle, including performing security audits as part of the red team.

• Good understanding of both Windows and Unix/Linux-based operating systems.

• Understanding of IP networking concepts, including addressing, routing, common protocol usage, use of proxies, load balancers, firewalls, routers, and switches in network architecture.

Technical Skills:

• Set up honeypots Top 1

• Monitoring of honeypots (open-source, Attivo Networks, Zscaler) Top 2

• Analyzing logs from honeypots Top 3

• Honeytokens (Active Directory fake users)

Essential Duties and Responsibilities:

• Perform research and analysis of attacker techniques and methodologies and emulate those attacks in a collaborative and controlled environment.

• Identify security breaches through ‘Hunting’ operations within a SIEM, EDR, and other tools and security intelligence.

• Identify patterns consistent with sophisticated attacker methodologies, and report on security concerns as they are escalated or identified.

• Analyze artifacts collected during a security test or passive investigation.

• Communicate with server owners, system custodians, and IT contacts to pursue security testing activities, including obtaining access to systems, digital artifact collection, and containment and/or remediation actions.

• Create presentations in MS Word, PowerPoint, and/or Excel that support findings.

• Maintain, manage, improve, and update security testing process and protocol documentation.

• Assist in analyzing findings and develop fact-based reports.

• Identify means to disrupt attacker actions and enhance defender response capabilities.

• The role requires mentoring, collaboration, and training of more junior associates.

• Ability to explain complex technical problems to business representatives

• Ability to focus on business priorities and deliver tangible results

• Smart approach to technology, automation, tools – ability to prioritize and focus on business objectives to be achieved instead of focusing on solving complex, technical problems which may not always lead to achieving business benefits.