• Cybersecurity Platform Engineer - Cyber Tech…

    Lilly (Indianapolis, IN)


    At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.

     

    The **Cybersecurity Platform Engineer in Indianapolis, IN** is responsible for engineering, deploying, and maintaining Eli Lilly's Cyber Tech Services portfolio, which encompasses critical security platforms enabling insider threat detection, secure data exchange, governance risk and compliance (GRC), email security, asset visibility, and additional specialized security capabilities. This role requires a versatile engineer who can work across diverse security technologies, implement integrations that enable unified security operations, and deliver scalable solutions that protect sensitive data and support regulatory compliance requirements critical to the pharmaceutical industry.

    What You Will Do:

    Cyber Tech Services Platform Engineering

    + Design, deploy, and maintain insider threat monitoring and detection platforms

    + Engineer and optimize secure file transfer and secure data exchange platforms that enable safe collaboration with external partners, clinical trial sites, and regulatory agencies

    + Implement and manage email security platforms including secure email gateways, anti-phishing solutions, and advanced threat protection capabilities

    + Deploy and maintain cyber governance, risk, and compliance (GRC) platforms supporting risk assessments, policy management, compliance tracking, and audit workflows

    + Build and operate asset discovery and visibility platforms that maintain accurate inventory of IT assets, software, and security posture across the enterprise

    Platform Integration & Data Orchestration

    + Implement integrations between Cyber Tech Services platforms and upstream/downstream systems including logging, identity management, and ticketing systems

    + Develop API-based workflows and data exchange mechanisms that enable automated security processes and unified visibility

    + Build data pipelines that aggregate security telemetry from multiple platforms for correlation, reporting, and advanced analytics

    + Create bidirectional integrations that enable automated response actions and security orchestration across the technology stack

    Automation & Infrastructure as Code

    + Develop automation scripts using Python, PowerShell, or Bash to streamline platform operations, data processing, and routine maintenance tasks

    + Implement Infrastructure-as-Code solutions using Terraform, Ansible, or similar tools for reproducible platform deployments

    + Build CI/CD pipelines for automated testing, validation, and deployment of platform configurations and security content

    + Create self-service capabilities and automated workflows that reduce manual effort and improve operational efficiency

    + Develop custom tools and utilities that enhance platform capabilities and address specific business requirements

    Operational Support & Continuous Improvement

    + Provide engineering support for troubleshooting complex platform issues, security investigations, and incident response activities

    + Perform capacity planning, performance tuning, and scalability assessments to ensure platforms meet growing business demands

    + Analyze platform metrics, error rates, utilization trends, and user feedback to identify optimization opportunities

    + Manage platform upgrades, patching, and lifecycle activities while maintaining service availability and data integrity

    + Drive problem management initiatives and implement preventive measures to improve platform reliability and user experience

    + Participate in change management processes and coordinate with stakeholders for planned maintenance activities

    Documentation, Collaboration & Knowledge Sharing

    + Create comprehensive technical documentation including architecture diagrams, data flow diagrams, integration specifications, and operational runbooks

    + Develop user guides, training materials, and knowledge base articles for security teams and business users

    + Provide technical mentorship and knowledge transfer to junior engineers and security operations personnel

    + Collaborate with cross-functional teams including IT infrastructure, data privacy, legal, compliance, quality assurance, and business units

    + Participate in security architecture reviews and provide subject matter expertise on Cyber Tech Services capabilities

    + Engage with vendors and technology partners to resolve technical issues and influence product roadmaps

    Your Minimum Qualifications:

    + Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or related technical field

    + At least 8+ years of experience engineering, deploying, or administering enterprise security platforms with focus on data protection, compliance, or specialized security technologies

    + Hands-on expertise with at least three of the following platform categories:

    + Insider threat/UEBA solutions (ObserveIT, Forcepoint, Microsoft Purview, Securonix, or similar)

    + Data Loss Prevention platforms (Symantec DLP, Forcepoint DLP, Microsoft Purview, Digital Guardian, or similar)

    + Email security solutions (Proofpoint, Mimecast, Cisco Email Security, Microsoft Defender for Office 365, or similar)

    + GRC platforms (Archer, ServiceNow GRC, MetricStream, LogicGate, or similar)

    + Secure file transfer solutions (MOVEit, GoAnywhere, Accellion, or similar)

    + Asset discovery and vulnerability management platforms (Qualys, Tenable, Rapid7, ServiceNow CMDB, or similar)

    + Strong scripting and automation capabilities using Python, PowerShell, and/or Bash

    + Experience with RESTful APIs, webhooks, and system integration patterns

    + Understanding of cloud security in AWS, Azure, and GCP environments

    + Familiarity with DevOps practices including CI/CD, Infrastructure-as-Code, and version control (Git)

    What You Should Bring:

    + Strong analytical and troubleshooting skills for diagnosing complex technical issues across multiple systems

    + Excellent written and verbal communication skills with ability to work effectively across technical and business teams

    + Security certifications such as GSEC, GCIH, GCIA, CISSP, or vendor-specific platform certifications

    + Familiarity with identity and access management, zero-trust architectures, and privileged access management

    + Understanding of containerization (Docker, Kubernetes) and cloud-native architectures

    + Project management experience or exposure to Agile/Scrum methodologies

     

    Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form ( https://careers.lilly.com/us/en/workplace-accommodation ) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response.

     

    Lilly is proud to be an EEO Employer and does not discriminate on the basis of age, race, color, religion, gender identity, sex, gender expression, sexual orientation, genetic information, ancestry, national origin, protected veteran status, disability, or any other legally protected status.

     

    Our employee resource groups (ERGs) offer strong support networks for their members and are open to all employees. Our current groups include: Africa, Middle East, Central Asia Network, Black Employees at Lilly, Chinese Culture Network, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinx at Lilly (OLA), PRIDE (LGBTQ+ Allies), Veterans Leadership Network (VLN), Women’s Initiative for Leading at Lilly (WILL), enAble (for people with disabilities). Learn more about all of our groups.

     

    Actual compensation will depend on a candidate’s education, experience, skills, and geographic location. The anticipated wage for this position is

     

    $64,500 - $184,800

     

    Full-time equivalent employees also will be eligible for a company bonus (depending, in part, on company and individual performance). In addition, Lilly offers a comprehensive benefit program to eligible employees, including eligibility to participate in a company-sponsored 401(k); pension; vacation benefits; eligibility for medical, dental, vision and prescription drug benefits; flexible benefits (e.g., healthcare and/or dependent day care flexible spending accounts); life insurance and death benefits; certain time off and leave of absence benefits; and well-being benefits (e.g., employee assistance program, fitness benefits, and employee clubs and activities).Lilly reserves the right to amend, modify, or terminate its compensation and benefit programs in its sole discretion and Lilly’s compensation practices and guidelines will apply regarding the details of any promotion or transfer of Lilly employees.

     

    \#WeAreLilly