Eurofins Scientific is an international life sciences company which provides a unique range of analytical testing services to clients across multiple industries. The Group believes it is the world leader in food, environment and pharmaceutical products testing and in agroscience CRO services. It is also one of the global independent market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, advanced material sciences and for supporting clinical studies. In addition, Eurofins is one of the key emerging players in specialty clinical diagnostic testing in Europe and the USA.

Group's key figures are approx. 5.4 billion Euros turnover, over 800 laboratories across 47 countries and about 50,000 staff.

Eurofins IT Infrastructure provides IT support for all Eurofins sites through an IT Service Desk and IT Operations teams.

SUMMARY OF ROLE AND OBJECTIVES:

The Penetration Tester is performing penetration tests of IT Solutions created in house. Additionally she/he creates external security testing plans, recommends remediation actions and follows up on the remediation of the identified weaknesses.

ROLE & OBJECTIVES:

Specific Assignments:

Perform manual penetration tests of the in house developed IT Systems, both applications (web and mobile) and infrastructure:

• Define test procedures and test cases;
• Execute the tests;
• Manage reporting phase of the testing and ensure clarity of the reported findings:
• Deliver clear and understandable reports for the business stakeholders;
• Follow up on the reported findings.
• Asses the security posture of the individual applications and infrastructure landscape;
• Developing automatic test environment and automatic tests (when required);
• Provide support to other Information Security functions such as Vulnerability Management (e.g. assessing vulnerabilities) and Incident Management (in consulting capacity).

ADDITIONAL DETAILS ON ROLES & OBJECTIVES:

• Advanced IT Security knowledge;
• Willing to learn and develop skills (dynamically changing area);
• Ability to explain complex technical problems to business representatives;
• Smart approach to technology, automation, tools – ability to prioritize and focus on business objectives to be achieved instead of focusing on solving complex, technical problems which may not always lead to achieving business benefits.

QUALIFICATIONS AND EXPERIENCE:

Minimum of 3-5 years of professional experience as a Security Analyst, Junior Penetration Tester, Penetration Tester. We can also consider Software Engineer with proven pentesting experience.

• Knowledge of penetration testing principles, tools, and techniques;
• Knowledge of system and application security threats and vulnerabilities;
• Knowledge of hardware and software reverse engineering concepts;
• Skill in using network analysis tools to identify vulnerabilities;
• Skill in conducting vulnerability scans and recognizing security vulnerabilities in IT Systems;
• Skill in the use of penetration testing tools and techniques;
• Skill in utilizing exploitation tools (e.g., web-proxies, fuzzers, packet sniffers, debug, etc.) to identify System/software vulnerabilities (penetration testing);
• Skill in assessing the robustness of security systems and designs;
• Relevant Information Security Certifications such as CEH, OSCP
• Very good English communication skills (concise writing and orally convincing).
• Very good interpersonal relation skills
• Ability to work in a complex international environment.
• Ability to work in a complex international environment.
• Eager to learn and continuously develop personal and technical capabilities

Education required:

• B.Sc. or M.Sc. in Information Technology or Information Security;
• Languages: fluent English
• Able to communicate clearly, able to translate technical complexities into language understood by the business

Ability and/or Skills:

Developed problem solving skills, ability to work independently with limited supervision and no more than general directions, knows when to consult with supervisor on major issues/problems, demonstrated knowledge and skills in designated areas, ability to handle multiple priorities, ability to function in an environment of constant change, strong organization skills and attention to detail, willingness to work overtime, excellent interpersonal and communication skills, ability to work under medium to high stress levels.