Eurofins
World leader in food, environment, pharma product testing & agroscience CRO services; ca. 62,000 staff across a network of more than 1,000 independent companies (over 900 laboratories) in 62 countries, offering over 200,000 analytical methods.
Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and our environment safer, healthier and more sustainable. From the food you eat, to the water you drink, to the medicines you rely on, Eurofins works with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic and labelling is accurate.
Job Description
Contract: Permanent
Hours: 37.5 hours per week (Full-time)
The Role
We are recruiting for a Regional Information Security Officer (covering business lines in Forensics UK, Benelux, France and Clinical Diagnostics UK&IE and Benelux).
The Regional Information Security Officer will be responsible for implementing and monitoring a strategic, comprehensive regional cyber security and IT risk management program for the defined scope.
Scope includes:
* Identification, evaluation and remediation of security control weaknesses and reporting on cybersecurity risks, while supporting and advancing business objectives.
* Grow and run the regional information security program.
* Proactively work with business units to implement controls, measures and tools (both group and local) that meet agreed Eurofins policies and standards for information security.
Key Responsibilities and Accountabilities
* Provide security oversight over the regional infrastructure delivery team(s), ensuring embedding security in the operations of the team as well as new initiatives.
* Lead the information security function across the Region to ensure consistent and high-quality information security management in support of business goals, and in line with the Group Security Standards.
* Collaborate with Group Information Security team to apply group standards within the region and drive regional action plans.
* Manage the Regional Information Security budget in collaboration with the regional Business sponsor and with Group Information Security.
* Be the hiring manager for own team and ensure senior business leadership buy-in for team composition/sizing.
* Ensure that all information owned, collected or controlled by or on behalf of the Region / Group is processed and stored in accordance with applicable laws and other global regulatory requirements, such as data privacy.
* Perform information security risk assessments including the reporting and oversight of treatment efforts to address negative findings.
* Ensure that security is embedded in the project delivery process by providing the appropriate information security policies, practices, guidelines and necessary oversight.
* Consult with IT and Business Lines staff to ensure that security controls are factored into the evaluation, selection, installation and configuration of hardware, applications and software.
* Responsible for the execution of internal and external risk assessment activities.
* Collaborate with the Group IT Risk and Audit team.
* Ensure regular security awareness for their scopes utilizing central platform (Eurofins Academy).
* Oversee and approve firewall and VPN changes within their scope.
* Plan & execute vulnerability scans within the scope.
* Plan & execute penetration tests on systems within the scope.
* Support the customer audits.
* Drive the local business continuity and disaster recovery efforts, based on group standards.
* Drive the review of access rights within the scope.
* Support the business leaders in scope with physical security concerns.
* Provide the business leaders in scope with information on local security posture and give visibility of issues and risks.
Qualifications
Required Profile:
* A leader with a track record of competency in the field of information security with 7 to 10 years of relevant experience, including 5 years in a significant leadership role.
* Bachelor’s degree from an accredited institution, with degree preferred in Computer Science or Information technology systems security or related field. Advanced degree preferred.
* Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) Certification preferred.
* Experience with on premise, hybrid and cloud data center and application hosting strategies.
* Experience in establishing cyber security and risk metrics for reporting.
* Strong Emotional Intelligence with demonstrated sustained leadership in a large organization involving multiple stakeholders.
* Demonstrated management skills, e.g., budget development and administration, policy development and implementation, personnel administration, staff training and development.
* Excellent written and verbal communication skills, interpersonal and collaborative skills.
* Good understanding of IT technology to oversee a variety of cybersecurity and risk management activities.
* Must be knowledgeable about both internal and external business environments.
* At ease with managing multiple priorities, ambiguity and rapidly moving business environment.
* A strong understanding of the business impact of security tools, security operations center, technologies and policies.
* Strong leadership abilities, with the capability to develop and guide IT operations personnel.
* Experience working with legal, audit, operations and compliance staff.
* Experience developing and maintaining policies, procedures, standards and guidelines.
* Experience with common information security management frameworks.
* Awareness of the Forensic Regulators Act (UK).
Additional Information
In return for your hard work and loyal service, we will offer you genuine career and salary progression through our Career Pathways programme, a competitive salary, and a selection of employee benefits via our flexible benefits menu.
Due to the highly sensitive nature of the work, security clearance is required for this role. To gain security clearance you must have five years continuous residency in the UK.
To apply, please visit https://www.eurofins.co.uk/careers/current-vacancies/
#J-18808-Ljbffr