Cybersecurity Platform Engineer

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our 39,000 employees work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make a difference.

Your Team

The Security Engineering team within our Information Security organization provides critical services that enable secure, appropriate, and timely access to enterprise resources. These services are used across every business function and geographic region and are critical to enabling our global workforce to excel while keeping their information secure.

Your Role

The Cybersecurity Platform Engineer is responsible for engineering, deploying, and maintaining Eli Lilly's Cyber Platform Engineering portfolio, which encompasses critical security platforms enabling enterprise logging, network security, end-point security. and additional specialized security capabilities. This role requires a versatile engineer who can work across diverse security technologies, implement integrations that enable unified security operations, and deliver scalable solutions that protect sensitive data and support regulatory compliance requirements critical to the pharmaceutical industry.

Key Responsibilities

Cyber Platform Engineering

• Design, deploy, and maintain network security platforms in compliance with industry best practices and regulatory standards
• Configure and manage security solutions, including firewall, web application firewalls (WAF), VPNs
• Implement and optimize cloud infrastructure and automation frameworks to build secure and scalable platforms
• Develop and maintain Infrastructure as a Code (IaaC) using security best practices for security automation use cases
• Collaborate with internal and external stakeholders to establish, maintain and continuously improve monitoring, alerting and reporting
• Document security platform configurations and playbooks in line to industry best practices

Platform Integration & Data Orchestration

• Implement integrations between various Cyber Security platforms and upstream/downstream systems including logging, identity management, and ticketing systems
• Develop API-based workflows and data exchange mechanisms that enable automated security processes and unified visibility
• Build data pipelines that aggregate security telemetry from multiple platforms for correlation, reporting, and advanced analytics
• Create bidirectional integrations that enable automated response actions and security orchestration across the technology stack

Automation & Infrastructure as Code

• Leverage AI/ML (E.g.- CoPilot, Claude) to optimize / automate activities within Platform Engineering
• Design & implement Infrastructure-as-Code solutions using Terraform, Ansible, or similar tools for reproducible platform deployment
• Develop automation scripts using Python, PowerShell, or Bash to streamline platform operations, data processing, and routine maintenance tasks
• Build and maintain CI/CD pipelines for automated testing, validation, and deployment of platform configurations and security content
• Create self-service capabilities and automated workflows that reduce manual effort and enhance operational efficiency
• Develop custom tools and utilities that extend platform capabilities and meet specific business requirements

Operational Support & Continuous Improvement

• Provide engineering support for troubleshooting complex platform issues, security investigations, and incident response activities
• Perform capacity planning, performance tuning, and scalability assessments to ensure platforms meet growing business demands
• Analyze platform metrics, error rates, utilization trends, and user feedback to identify optimization opportunities
• Manage platform upgrades, patching, and lifecycle activities while maintaining service availability and data integrity
• Drive problem management initiatives and implement preventive measures to improve platform reliability and user experience
• Participate in change management processes and coordinate with stakeholders for planned maintenance activities

Documentation, Collaboration & Knowledge Sharing

• Create comprehensive technical documentation including architecture diagrams, data flow diagrams, integration specifications, and operational runbooks
• Develop user guides, training materials, and knowledge base articles for security teams and business users
• Provide technical mentorship and knowledge transfer to junior engineers and security operations personnel
• Collaborate with cross-functional teams including IT infrastructure, data privacy, legal, compliance, quality assurance, and business units
• Participate in security architecture reviews and provide subject matter expertise on Cyber Engineering Platform capabilities
• Engage with vendors and technology partners to resolve technical issues and influence product roadmaps

Qualifications

Required

• 8+ years of experience engineering, deploying, or administering enterprise security platforms with focus on network security, endpoint security or enterprise logging.
• Hands-on expertise in at least two of the following areas: 
  • Network & Application Security: Firewall, Web Application Firewall, IDS
  • Cloud-based Secure Access: ZTNA, CASB
  • Endpoint Security: EPP, EDR, XDR
• Working experience on AI application to Cyber Security / Data Analytics domains (MS CoPilot, Claude etc.)
• Strong background in DevOps practices, including CI/CD, Infrastructure-as-Code, and version control (Git)
• Strong scripting and automation capabilities using Python, PowerShell, and/or Bash
• Proficient in RESTful APIs, webhooks, and system integration patterns
• Solid understanding of cloud security in AWS, Azure, and GCP environments
• Strong analytical and troubleshooting skills for diagnosing complex technical issues across multiple systems
• Excellent written and verbal communication skills with ability to work effectively across technical and business teams
• Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or related technical field, or equivalent practical experience

Preferred

• Security certifications such as GSEC, GCIH, GCIA, CISSP, or vendor-specific platform certifications
• Familiarity with enterprise network security, zero-trust architectures, and endpoint security
• Understanding of containerization (Docker, Kubernetes) and cloud-native architectures
• Project management experience or exposure to Agile/Scrum methodologies

Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form (https://careers.lilly.com/us/en/workplace-accommodation) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response.

Lilly does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status.

#WeAreLilly