At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our 39,000 employees work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make a difference.

Your Team

The Security Engineering team within our Information Security organization provides critical services that enable secure, appropriate, and timely access to enterprise resources. These services are used across every business function and geographic region and are critical to enabling our global workforce to excel while keeping their information secure.

Your Role

The Cybersecurity Platform Engineer is responsible for engineering, deploying, and maintaining Eli Lilly's Cyber Platform Engineering portfolio, which encompasses critical security platforms enabling enterprise logging, network security, end-point security. and additional specialized security capabilities. This role requires a versatile engineer who can work across diverse security technologies, implement integrations that enable unified security operations, and deliver scalable solutions that protect sensitive data and support regulatory compliance requirements critical to the pharmaceutical industry.

Key Responsibilities

Cyber Platform Engineering

Design, deploy, and maintain network security platforms in compliance with industry best practices and regulatory standardsConfigure and manage security solutions, including firewall, web application firewalls (WAF), VPNsImplement and optimize cloud infrastructure and automation frameworks to build secure and scalable platformsDevelop and maintain Infrastructure as a Code (IaaC) using security best practices for security automation use casesCollaborate with internal and external stakeholders to establish, maintain and continuously improve monitoring, alerting and reportingDocument security platform configurations and playbooks in line to industry best practices

Platform Integration & Data Orchestration

Implement integrations between various Cyber Security platforms and upstream/downstream systems including logging, identity management, and ticketing systemsDevelop API-based workflows and data exchange mechanisms that enable automated security processes and unified visibilityBuild data pipelines that aggregate security telemetry from multiple platforms for correlation, reporting, and advanced analyticsCreate bidirectional integrations that enable automated response actions and security orchestration across the technology stack

Automation & Infrastructure as Code

Leverage AI/ML (E.g.- CoPilot, Claude) to optimize / automate activities within Platform EngineeringDesign & implement Infrastructure-as-Code solutions using Terraform, Ansible, or similar tools for reproducible platform deploymentDevelop automation scripts using Python, PowerShell, or Bash to streamline platform operations, data processing, and routine maintenance tasksBuild and maintain CI/CD pipelines for automated testing, validation, and deployment of platform configurations and security contentCreate self-service capabilities and automated workflows that reduce manual effort and enhance operational efficiencyDevelop custom tools and utilities that extend platform capabilities and meet specific business requirements

Operational Support & Continuous Improvement

Provide engineering support for troubleshooting complex platform issues, security investigations, and incident response activitiesPerform capacity planning, performance tuning, and scalability assessments to ensure platforms meet growing business demandsAnalyze platform metrics, error rates, utilization trends, and user feedback to identify optimization opportunitiesManage platform upgrades, patching, and lifecycle activities while maintaining service availability and data integrityDrive problem management initiatives and implement preventive measures to improve platform reliability and user experienceParticipate in change management processes and coordinate with stakeholders for planned maintenance activities

Documentation, Collaboration & Knowledge Sharing

Create comprehensive technical documentation including architecture diagrams, data flow diagrams, integration specifications, and operational runbooksDevelop user guides, training materials, and knowledge base articles for security teams and business usersProvide technical mentorship and knowledge transfer to junior engineers and security operations personnelCollaborate with cross-functional teams including IT infrastructure, data privacy, legal, compliance, quality assurance, and business unitsParticipate in security architecture reviews and provide subject matter expertise on Cyber Engineering Platform capabilitiesEngage with vendors and technology partners to resolve technical issues and influence product roadmaps

Qualifications

Required

8+ years of experience engineering, deploying, or administering enterprise security platforms with focus on network security, endpoint security or enterprise logging.Hands-on expertise in at least two of the following areas: Network & Application Security: Firewall, Web Application Firewall, IDSCloud-based Secure Access: ZTNA, CASBEndpoint Security: EPP, EDR, XDRWorking experience on AI application to Cyber Security / Data Analytics domains (MS CoPilot, Claude etc.)Strong background in DevOps practices, including CI/CD, Infrastructure-as-Code, and version control (Git)Strong scripting and automation capabilities using Python, PowerShell, and/or BashProficient in RESTful APIs, webhooks, and system integration patternsSolid understanding of cloud security in AWS, Azure, and GCP environmentsStrong analytical and troubleshooting skills for diagnosing complex technical issues across multiple systemsExcellent written and verbal communication skills with ability to work effectively across technical and business teamsBachelor’s degree in Computer Science, Cybersecurity, Information Systems, or related technical field, or equivalent practical experience

Preferred

Security certifications such as GSEC, GCIH, GCIA, CISSP, or vendor-specific platform certificationsFamiliarity with enterprise network security, zero-trust architectures, and endpoint securityUnderstanding of containerization (Docker, Kubernetes) and cloud-native architecturesProject management experience or exposure to Agile/Scrum methodologies

Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form (https://careers.lilly.com/us/en/workplace-accommodation) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response.

Lilly does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status.

#WeAreLilly