Cybersecurity Testing Engineer (In-Office/On-Site)

Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and our environment safer, healthier and more sustainable. From the food you eat, to the water you drink, to the medicines you rely on, Eurofins works with the biggest companies in the world to ensure the products they supply are safe, their ingredients are authentic and labelling is accurate.

Eurofins is the global leader in food, environment, pharmaceutical and cosmetic product testing and in agroscience Contract Research Organisation services. Eurofins is one of the market leaders in certain testing and laboratory services for genomics, discovery pharmacology, forensics, advanced material sciences and in the support of clinical studies, as well as having an emerging global presence in Contract Development and Manufacturing Organisations. The Group also has a rapidly developing presence in highly specialised and molecular clinical diagnostic testing and in-vitro diagnostic products.

In over just 30 years, Eurofins has grown from one laboratory in Nantes, France to 55,000 staff across a decentralised and entrepreneurial network of 900 laboratories in over 50 countries. Eurofins offers a portfolio of over 200,000 analytical methods to evaluate the safety, identity, composition, authenticity, origin, traceability and purity of biological substances and products.

At Eurofins E&E North America, we’re at the forefront of ensuring the safety, reliability, and security of cutting-edge technologies that power the world. As an IoT Cybersecurity Testing Engineer, you’ll play a pivotal role in delivering high-end cybersecurity services to our clients, safeguarding IoT products against emerging threats, and ensuring compliance with international standards. If you’re passionate about IoT security, thrive in a dynamic environment, and want to make an impact with a globally respected organization, we want to hear from you! 

Based in the vibrant Baltimore, MD you’ll collaborate with industry experts, leverage your technical expertise, and stay ahead of the curve in IoT security architectures, threats, and advancements. This is your opportunity to lead transformative projects and protect the future of connected technologies.

Key Responsibilities

• Deliver Expert Cybersecurity Services: Conduct testing, assessments, and evaluations of industrial and consumer IoT products to ensure robust cybersecurity throughout the product development lifecycle. 
• Develop Testing Frameworks: Create and refine testing specifications, methodologies, and setups based on international standards (e.g., EN 18031, IEC 62443, EN 303 645), preparing detailed test reports to guide clients. 
• Drive Innovation: Design and optimize automation tools for software vulnerability assessments, enhancing detection of design flaws and improving efficiency. 
• Risk Management: Lead risk analyses aligned with standards like ISO 27001, ISO 27005, NIST, and EBIOS, ensuring comprehensive security strategies. 
• Client Leadership: Manage and lead customer-facing projects, providing expert guidance on cybersecurity best practices and solutions. 
• Stay Ahead of Threats: Maintain deep knowledge of IoT architectures (endpoints, network protocols, gateways, cloud, sensors, embedded systems, etc.) and emerging security challenges. 

Technical skills we are looking for:

• Suite, Privilege escalation, firmware extraction, buffer Overflow Exploitation, Web, Hacking
• Experience in cybersecurity consulting in an ICS environment, e.g., assessments, gap analysis and mitigation planning. Strong understanding of IoT-based technologies and their cybersecurity requirements (e.g., ETSI EN 303 645, NIST 8259, CSA CLS). 
• Familiarity with industrial IoT standards (IEC 62443 series) and network protocol security (CISSP, CISA, or equivalent certifications are a plus). 
• Expertise in secure network design, system architecture, and key penetration testing tools (e.g., NMAP, Nessus, Metasploit, Burp Suite). 
• Proficiency in techniques such as privilege escalation, firmware extraction, buffer overflow exploitation, and web hacking. 
• Experience in cybersecurity consulting within Industrial Control Systems (ICS) environments, including assessments, gap analysis, and mitigation planning. 
• A holistic perspective on cybersecurity, penetration testing, and hacking methodologies. 

• Must be local to lab in Baltimore, MD
• Degree in Cybersecurity, IT Security, Electrical Engineering, or similar field
• Experience 3+ years of experience in the cybersecurity of complex systems and/or IoT related products and product life cycle process
• Certifications Relevant cybersecurity certifications (e.g., CISSP, CISA, or equivalent) are highly desirable. 

WHO YOU ARE

• A proactive problem-solver with a holistic view of cybersecurity and a passion for protecting connected systems. 
• A collaborative team player who thrives in challenging, fast-paced projects and can work independently to meet deadlines. 
• An excellent communicator with strong written and verbal skills, capable of translating complex security findings into actionable recommendations. 
• Fluent in English, with exceptional interpersonal skills to build relationships with clients and colleagues. 
• A synthesizer of information, able to distill technical details into clear, concise insights. 

Schedule:

• Monday-Friday 8:30am-5:00pm

What we offer:

• Excellent full time benefits including comprehensive medical coverage, dental, and vision options
• Life and disability insurance
• 401(k) with company match
• Paid vacation and holidays

Eurofins USA Consumer Product Testing is a Disabled and Veteran Equal Employment Opportunity employer.