Information Security Analyst

Role and Objectives

The Information Security Analyst acts as the primary point of contact (SPOC) between service consumers and Eurofins Group Security. The core objective is to manage service delivery activities, ensuring security services are fit for purpose and meet defined metrics. A key focus is the onboarding program for various entities, aiming for high toolset coverage, especially for SIEM.

Key Responsibilities

• Execute Service Delivery and ITSM processes within Security Operations.
• Manage and oversee the Security Services onboarding program, setting expectations, building timelines, managing resources, communicating with stakeholders, monitoring progress, and proposing roadblock removal strategies to achieve a minimum of 95% Security Toolset coverage (100% for SIEM).
• Ensure Security Services are effective, conducting reviews and proposing modifications as needed.
• Conduct Security Service Review sessions with service consumers and stakeholders, focusing on onboarding, toolset compliance, and dashboards.
• Collaborate with internal Security teams to advance Security Operations.
• Report on Service Level Agreements (SLAs), Key Performance Indicators (KPIs), and performance metrics, steering activities according to defined service cards.
• Develop and implement improvement plans to meet SLA and KPI targets.
• Assess and report compliance levels for each entity/zone, ensuring a defined plan exists to reach target objectives.
• Coordinate work and services delivered by security partners.
• Prepare and publish reports for stakeholders, including Local IT Management and Information Security Management.
• Ensure all Security documentation for internal and external service consumers is available and up-to-date.
• Assist in the development of processes and procedures for Security Services delivery.
• Provide clear and regular updates to service consumers on action items, proposed actions, and closure dates.
• Receive and coordinate reporting requests, assisting with high-level report design.
• Communicate Security Services expectations to align stakeholders and service consumers.

Additional Responsibilities

• Ensure successful transitions and build best practices for the service management community.
• Build, manage, and maintain trusted relationships with all Security actors and service consumers.
• Organize and lead Service Delivery sessions, including incident and problem resolution.
• Leverage effective and efficient services from delivery teams for assigned service consumers.
• Receive and coordinate consumer-reported bugs/issues with internal Security Teams.
• Maintain and track service consumer contact and organization details.
• Produce consistent, high-quality monthly service reviews demonstrating quality and continuous improvement.
• Act as an escalation point for internal teams regarding unresponsive service consumers.
• Provide feedback to the Service Owner.
• Support the Lead Information Security Consultant and Associate Director in daily activities.

Qualifications and Experience

Education and Certifications

• Bachelor's degree in Information Security, Computer Science, IT, or a related field is required.
• Relevant certifications such as ITIL Foundation, CompTIA Security+, CISM, or similar credentials are preferred.

Professional Experience

• A minimum of 3 years of experience in IT service delivery.
• Demonstrated experience working in a security-focused organization.
• Proven track record in managing and improving service delivery processes, aligning with SLAs and business objectives.

Technical Skills

• Strong understanding of IT infrastructure, network security, and cybersecurity principles.
• Proficiency in security frameworks such as ISO 27001, GDPR, HIPAA, and other information security standards.
• Familiarity with cloud environments (AWS, Azure, GCP) and their associated security services.

Communication Skills

• Excellent stakeholder management abilities with cross-team and cross-regional relationship-building skills.
• Strong conflict resolution capabilities.
• Exceptional verbal and written communication skills for conveying complex security concepts to non-technical audiences.

Problem-Solving and Strategic Thinking

• Expertise in identifying, analyzing, and resolving complex service delivery issues promptly.
• Strong analytical and decision-making skills with the ability to plan and execute long-term strategies.

Other Requirements

• Ability to perform in a high-pressure environment and manage multiple priorities.
• Willingness to travel and support global teams as needed.
• Strong commitment to continuous learning and staying updated on evolving security threats and technologies.
• Fluent in English.