Senior Information Security Analyst (SOC L3)

Senior Information Security Analyst (SOC L3)

Eurofins Scientific is an international life sciences company, providing analytical testing services to clients across multiple industries to make life and the environment safer, healthier and more sustainable. Eurofins laboratories work with some of the world’s biggest companies to ensure products are safe, ingredients are authentic, and labeling is accurate. The Eurofins network is the global leader in food, environment, pharmaceutical and cosmetic product testing and in discovery pharmacology, forensics, advanced material sciences and contract research services. Eurofins has grown from one laboratory in Nantes, France to a large, global network with thousands of staff across many countries.

Eurofins is ramping up its Security Operations Centre and is looking for new members to join its L3 incident response team. As an L3 Incident Responder, you will work on security incidents and support forensics. You will act as an escalation point for L2 SOC for complex and critical incidents and work towards remediation. You will have the opportunity to lead incidents through the IR lifecycle. You will continuously work on enhancing the security incident process and drive the resolution of identified issues, bringing the necessary experience and expertise to elevate the current SOC L2 level.

Critical incidents can be escalated to L3 for immediate handling, which may require overtime and adjusting to reasonable management demands in such cases.

• Recognise potential, successful, and/or unsuccessful intrusion attempts/compromises; conduct thorough reviews and analyses of relevant data; and summarise information.
• Investigate and lead security incidents (IR lifecycle) reported by SOC L2, Incident Response staff, or other relevant sources to determine increased risk to the business.
• Identify true positives; develop and execute SOC procedures; ensure confidentiality and protection of sensitive data.
• Triage and deep investigate cybersecurity events using SIEM, IDS, EDR, antivirus software, Internet footprint tools, and proxy solutions.
• Coordinate with host-based forensics (data acquisition and analysis with forensic tools) and network-based forensics (reading and understanding PCAP files) and collaborate with IT Infra & Ops teams on incident mitigation.

• Work experience: 3–5 years of professional experience as an SOC Analyst (L2 or L3), threat researcher, hunter, or a similar role dealing with incident handling, alert tracking, and cybersecurity case management.
• Technical qualifications: Understanding of cybersecurity incident discovery and event management, network forensics, IPS/IDS, firewalls, content filtering technology, DLP, configuration management and monitoring, endpoint protection, database security, log collection and analysis, and knowledge of attack vectors and attack types. Experience in developing and maintaining Play/Runbooks and/or Standard Operating Procedures in an SOC environment.
• Personal profile: Ability to multitask and prioritise a variety of functions simultaneously, work independently, and take ownership of projects. Strong written and verbal communication skills, including the ability to explain technical details to non-technical audiences. Good troubleshooting, reasoning, and analytical problem-solving skills are required.

• We support your development. If you don’t match 100% of the requirements, apply anyway. Eurofins companies are committed to career development.
• We embrace diversity. Eurofins is an Equal Opportunity Employer and prohibits discrimination based on gender identity/expression, race, nationality, age, religion, sexual orientation, disability, or other characteristics.
• Sustainability matters. Eurofins aims for carbon neutrality by 2025 and supports local sustainability initiatives.