Sr Analyst-Information Security

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our 35,000 employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We're looking for people who are determined to make life better for people around the world.

Company Overview

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our 39,000 employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We're looking for people who are determined to make life better for people around the world.

Position Overview - Description:

The Security Engineering team provides threat detection and response capabilities to the organization. The Senior Analyst for Information Security is a key resource within this team, helping to implement and support the processes, tools and technologies vital for Information Security to achieve its mission. The Security Engineering team within our Information Security organization provides critical services that enable secure, appropriate, and timely access to enterprise resources. These services are used across every business function and geographic region and are critical to enabling our global workforce to excel, while keeping their information secure.

Position Overview - Responsibilities:

• Technical, hands-on expert who is responsible to lead the execution of projects in the Security Engineering portfolio and deliver the capabilities/services in support of Information Security mission.
• Plan, implement, manage, and upgrade our Security technologies to protect confidentiality, integrity, and availability of networks, systems, and data based on the security policies, standards, compliance regulations, and industry best practices.
• Develop reporting mechanisms for metrics for health monitoring and services.
• Monitoring for the application
• Assist the implementation of new monitoring use cases including identifying and supporting new or existing data sources and implementing the use of those sources.
• Lead resolution and documentation of complex technical issues identified by you, solution architect and our Endpoint security team
• Develop dashboards to review the status of the project milestones and present the issues and solutions along the way
• Lead the troubleshooting and solutioning of engineering problems, including proactive reviews of the environment for potential issues.
• Learn the latest information on security trends, tools and regulations in order to anticipate future capability needs.
• Influence other team members on sophisticated technical issues to embrace a different point of view on difficult concepts.
• Develop custom solutions to fulfill the needs, as required.
• Develop common standards for implementation processes and documentation/training materials for these processes and the tools that support them.
• Build positive relationships with internal/external customers and partners across the company in educating and supporting any security related issues.
• Provide technical leadership for external vendor resources supporting the Security tools/services.
• Coordinate and escalate wherever needed with the vendor of the product and supplier of the support services to ensure the prioritized approach to success of the security organization
• Collaborate with the Architects and various groups across enterprise.
• Readiness to support any critical threat scenario for the organization.

Basic Requirements:

• Bachelor's degree in a field related to Information Security, Information Systems, or related Technology field
• Experience with one or more of the following, firewall technologies, vulnerability scanning tools, URL filtering and/or security tools
• Working knowledge and experience with either Cybersecurity and/or Risk Management frameworks
• Working experience on Microsoft Defender (MDE), Tanium, Endpoint Privilege Management (EPM), data and cloud security tools, is a plus.

Additional Skills/Preferences

• Experience performing work in a regulated environment, preferably within the pharmaceutical industry.
• Experience with network security technologies.
• Experience integrating security solutions.
• Knowledge of scripting languages including Python and PowerShell.
• Knowledge of project tracking.
• Knowledge of data analytics and system automation/integration.
• Excellent oral and written communication skills.
• Good interpersonal and organizational skills.
• Skill in applying and incorporating information technologies into proposed solutions.
• Skill in designing countermeasures to identified security risks.
• Skill in writing test plans.
• Skill in designing multi-level security/cross domain solutions.
• Knowledge of using Public-Key Infrastructure (PKI) encryption and digital signature capabilities in applications (e.g., S/MIME email, SSL traffic).
• Ability to present and communicate clearly with technical and non-technical staff as well as senior management
• Recognized security certifications (CISSP, GSEC, Security+, IT life cycle/Service management and Network related certifications preferred).

Additional Information

Lilly is an EEO/Affirmative Action Employer and does not discriminate based on age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status

Eli Lilly and Company, Lilly USA, LLC and our wholly owned subsidiaries (collectively "Lilly") are committed to help individuals with disabilities to participate in the workforce and ensure equal opportunity to compete for jobs. If you require an accommodation to submit a resume for positions at Lilly, please email Lilly Human Resources ( [email protected] ) for further assistance. Please note This email address is intended for use only to request an accommodation as part of the application process. Any other correspondence will not receive a response.

Lilly is an EEO/Affirmative Action Employer and does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status.

Our employee resource groups (ERGs) offer strong support networks for their members and help our company develop talented individuals for future leadership roles. Our current groups include: Africa, Middle East, Central Asia Network, African American Network, Chinese Culture Network, Early Career Professionals, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinos at Lilly, PRIDE (LGBTQ + Allies), Veterans Leadership Network, Women's Network, Working and Living with Disabilities. Learn more about all of our groups.

As a condition of employment with Eli Lilly and Company and its subsidiaries in the United States and Puerto Rico, you must be fully COVID-19 vaccinated and provide proof of vaccination satisfactory to the company (subject to applicable law).

#WeAreLilly