Lilly Security Operations Engineer - IT in Indianapolis, Indiana

32809BR

Title Security Operations Engineer - IT

City Indianapolis

State / Province Indiana

Country USA

Workplace Arrangement Local

Company Overview At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our 39,000 employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.

Responsibilities Lilly is a global health care leader that unites caring with discovery to make life better for people around the world. For more than a 140 years, we have stayed true to a core set of values—excellence, integrity, and respect for people—that guide us in all we do: discovering medicines that meet real needs, improving the understanding and management of disease, and giving back to communities.

We also are committed to investing in our employees and supporting a culture of well-being —through competitive pay, comprehensive employee benefits programs, and training and development resources.

We are challenged, in our pursuit of producing life-changing medicines, to both protect our intellectual property and secure our innovative technologies on a global scale. We’re doing extraordinary things in information security. Join us and you could be, too!

Position Summary

Information Security (IS) directs and demonstrates Lilly’s commitment to responsible and effective management of information assets. Our mission is to protect the confidentiality, integrity, and availability of information that enables Lilly’s mission to make medicines that help people live longer, healthier, and more active lives. To support this mission, effective detection and rapid response to cyber-related security events is paramount to our success.

Within the IS organization, the Detect & Respond (D&R) program protects our core business functions against impacts resulting from cyber-attacks through threat identification, detection, and response activities. This is accomplished, in part, through the Threat Monitoring (TM) team who provides automated threat detection and response capabilities to the organization. The TM Security Engineer is the key resource within the TM team, helping to implement and support the tools necessary for the D&R to fulfil its mission.

The Security Engineer is responsible for:

  • Lead and execute Detect and Respond program projects in support of D&R’s mission.

  • Provide technical leadership and expert level consultation on program projects.

  • Develop, plan and perform configuration changes and upgrades on our security platforms including, but not limited to, ArcSight Enterprise Security Manager, ArcSight Logger, Cisco Sourcefire, and RSA Security Analytics to maintain overall health, performance, and availability.

  • Perform all work within the boundaries of the corporate and local quality procedures and strategies.

  • Provide technical expertise in order to optimize sensor infrastructure.

  • Problem resolution on all security platforms.

  • Implement monitoring content based on requirements from Threat Intelligence including, but not limited to, ArcSight ESM resources and Cisco Sourcefire signatures.

  • Stay current with information security trends and regulations in order to anticipate future technology needs.

  • Develop custom solutions to fulfill unmet needs.

  • Anticipate and resolve key technical and operational problems that impact the Detect and Respond function.

Basic Qualifications

  • Bachelor’s degree in a discipline related to information security, information systems, or High School Diploma/GED with 5 years of Information Security or IT work experience

  • Previous administrator experience with ArcSight ESM, ArcSight Logger, Cisco Sourcefire and/or RSA Security Analytics

  • Qualified candidates must be legally authorized to be employed in the United States. Lilly does not anticipate providing sponsorship for employment visa status (e.g., H-1B or TN status) for this employment position

Additional Skills/Preferences

  • Strong Windows and Linux skills

  • Understanding of Networking, IDS/IPS, Malware, DLP, Scanning/Security Testing Tools, Firewalls, Databases, Web Filtering

  • Experience performing work in a regulated environment, preferably Pharma.

  • Previous experience integrating security solutions.

  • Knowledge of data analytics and system automation/integration

  • Excellent oral and written communication skills

  • Excellent interpersonal and organizational skills

Additional Information

  • Recognized security professional certification (CISSP, CISA, CISM, or GIAC) within 1 year required

  • Lilly is an EEO/Affirmative Action Employer and does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status.

Removal Date 23-Aug-2017