Security & Compliance Officer

Eurofins Forensic Services (EFS) is the largest forensic service provider in the UK and Europe. We are part of Eurofins Scientific, an international life sciences company providing analytical testing services to clients across multiple industries. Our work spans from the food you eat and the water you drink to the medicines you rely on and forensics. Eurofins laboratories work with the biggest companies to ensure products are safe, ingredients are authentic, and labelling is accurate. Eurofins is dedicated to delivering testing services that contribute to the health and safety of society and the planet, and to its responsibility to protect the environment and ensure diversity, equity, and inclusion across the Eurofins network.

In over 35 years, Eurofins has grown to 61,000 staff across approximately 900 laboratories in 61 countries, offering a portfolio of over 200,000 analytical methods to evaluate safety, identity, composition, authenticity, origin, traceability and purity. In 2022, Eurofins generated total revenues of EUR 6.7 billion and has been among the best performing stocks in Europe over the past 20 years.

This is an exciting opportunity to join the Quality and Compliance team to engage on all physical and information security matters and to provide support to the Security and Compliance Manager.

The role offers flexibility to work remotely. Travel to various CFS and EFS sites will be necessary, so applicants should hold a valid UK driving licence or be willing to travel by alternative means.

The successful candidate will also provide support to the Data Protection Officer on all matters concerning Data Protection (GDPR/DPA).

• Undertake internal audits to maintain and improve accreditation /certification to identified standards including but not exclusive to ISO27001, Cyber Essentials Plus, ISO17025 and the Forensic Science Regulator Code of Practice.
• Facilitate external stakeholder audits and visits in relation to security, data protection and information security.
• To undertake and lead as required on the investigation of security and data protection incidents, identifying root cause and implementing preventative and corrective actions.
• Promote a positive security culture.
• Support the implementation of physical / data security and data protection processes and standards.
• Undertake all administrative duties and general functions of the Quality and Compliance team.
• To support the development and delivery of security and data protection training and communication programmes.
• Input, maintain and collate all relevant data to support Quality and Compliance functionality.
• Communicate, escalate and inform all relevant parties of improvement opportunities.
• Ensure security and data protection processes are followed.
• To provide support to the wider Quality and Compliance team as required (Quality audits and investigations).
• Undertake any other identified duties as required.

It is essential that the post holder can demonstrate:

• Experience of working within an Information Security Management System (ISMS).
• Competence and aptitude in being able to handle complex and varied workloads including ability to prioritise.
• Computer literacy to a competent level.
• An awareness of the Forensic Science Regulator Code of Practice.
• A good knowledge of security standards e.g. ISO27001 and Data Protection Act 2018/ GDPR.

The Holder of the post must have, or be willing to achieve in a reasonable timeframe:

• Competency in conducting audits within an ISO27001, Forensic Science Regulators Code of Practice and Data Protection capacity.
• Awareness of ISO17025.
• Knowledge of root cause analysis tools e.g. 5Why or has demonstrable investigative experience.
• An understanding of how to undertake and review Privacy Impact Assessments (PIA).

• Work collaboratively as part of the Quality and Compliance team.
• Attention to detail with an ability to make informed decisions as an outcome of audit or investigation.
• A good communicator who is able to advocate and implement best security and data protection practice.

Due to the highly sensitive nature of the work, security clearance is required for this role. To gain security clearance you must have five years continuous residency in the UK. Security clearance is undertaken by a third party to police personnel vetting standards (NPPV/3 and SC). Any criminal convictions may prevent you from gaining security clearance. Further information on the security clearance process and requirement can be found at the police national vetting service. In addition, all successful applicants will be required to undertake drug and alcohol testing prior to commencing employment.

In return for your hard work and loyal service, we offer a competitive salary and a selection of employee benefits via a flexible benefits menu including cycle to work, give as you earn, volunteering days, and buy and sell holiday. Benefits include:

• Life Assurance (3 times annual salary)
• Scottish Widows Company Pension Plan
• 25 days annual leave plus bank holidays (increasing to a maximum of 30 days)
• Employee length of service awards and yearly recognition schemes
• Employee tech scheme
• Discount vouchers and flexi reward points on wellbeing initiatives
• Perkbox access for savings on perks
• Learning and study support
• Employee Assistance Programme
• Health Cash Plan membership
• Enhanced company sick, maternity and paternity pay
• Refer a friend scheme
• Subscription to mental health support and wellbeing
• Free on-site car parking