Lilly Data and Cloud Security Analyst in Bengaluru, India
At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our 35,000 employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.
At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our 39,000 employees work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make a difference.
The Security Engineering team within our Information Security organization provides critical services that enable secure, appropriate, and timely access to enterprise resources. These services are used across every business function and geographic region and are critical to enabling our global workforce to excel while keeping their information secure.
The Data and Cloud Security Analyst role will be a hybrid role working in both Data and Cloud security engineering. As a Data security analyst, you will be responsible for helping with setup and configuration of software to help Inventory, Classify, and protect data across multiple formats. As a Cloud security analyst, you will be responsible for helping with configuration and tuning of MCAS and other cloud security tools, especially relating to Azure/O365. In both roles, you will maintain and enhance existing services, deliver new service capabilities and integrations with other tools, and influence the software related to data and cloud security solutions. You will also perform Tier 2/3/4 troubleshooting, establish ITIL-based best practices across our services, lead document creation of processes and procedures, and help ensure our operations staff is meeting expectations in their day-to-day service delivery work.
In this role, you will utilize your technical understanding of vision of data and cloud security goals and perform your work in a manner to help the Security Engineering team and Lilly reach those goals. You will help monitor service levels, drive initiatives to assess user experience and customer satisfaction metrics, and facilitate escalation of critical issues and incidents with leadership. You will develop strong relationships across other IT service teams that are instrumental in delivering end-to-end services for our users, and work closely with Solution Architect, and security engineering staff in performing your role.
The position reports to the Internet and Data Security Manager within Information Security.
Personal Responsibilities and Objectives
Help Solutions Architect analyze, implement, and support new capabilities for data security capabilities
Stay current with new and emerging external trends in inventory, tagging, monitoring, and rules/policy to help with data & cloud security controls -Must
Lead resolution and documentation of complex technical issues identified by you, solution architect and our data security team
Collaborate with other service areas to gain comprehensive knowledge of infrastructure (On-Prem and Cloud) and integration points (O365/Azure, mobility, client, platform services, data movement/storage, external collaboration services)
Help ensure services have controlled processes and procedures for the installation, qualification or validation, and support of hardware and software that meet Lilly’s Quality Practice requirements, standards, and policies.
Technical subject matter expert of software that deals with identification, classification, and monitoring of data security objects
Technical subject matter expert of software that deals with Cloud usage, threat detection, data protection and data loss protection
Demonstrate technical leadership, including communication and documentation for operational support staff supporting these services
Develop reporting mechanisms for metrics as they relate to these services.
Drive excellence in change management best practices across team
Ensure services are lifecycle managed as well as maintain compliance with patching, logging, and other defined security standards
Bachelor of Science degree in computer systems or information security related major
4+ years of work experience supporting data security, cloud security, information security, or infrastructure services.
7+ overall years of relevant experience
Strong oral and written communication skills
Strong teamwork, self-management, problem-solving, collaboration and multi-tasking abilities
Ability to think analytically and to understand and communicate quantitative information
Proven high level of intellectual curiosity, external perspective, and innovation interest
Strong understanding of information security for computer networks-Desire
Strong understanding of data security work streams (mentioned above) -Desire
Strong understanding in security design, development, and engineering with respect to cloud architecture (including O365 services, Azure and/or AWS) -Desire
Knowledge of O365 infrastructure and MIP segments-Desire
Experience with change, incident, and problem management in ServiceNow or other ITSM system-Desire
Experience and expertise with security technologies such as proxies, firewalls, antivirus, IDS, content filtering, security incident and event management (SIEM), encryption solutions-Desire
Advanced abilities to apply good risk-based discernment to complex problems-Desire
One or more Information Security, Development or Cloud certifications such as: CISSP, CCSP, CCSK, CSSLP, Security+, SANS, CEH or AWS-Desire
Experience in assessing the risk of a proposed solution, intensifying appropriately, and working towards closure-Desire
Knowledge of Lilly Risk Management and Information Security processes-Desire
Knowledge of industry security standards such as NIST 800-53, ISO 27001, and CSA Cloud Controls Matrix-Desire
Expertise working in complex, diverse landscapes (business, technology, regulatory, partners, providers, geographies) -Desire
A solid grasp of how to model threats & risk as well as the controls necessary to mitigate risk-Desire
Experience with DevOps practices such as infrastructure as code, continuous integration and continuous deployment, and delivery pipelinesExperience utilizing scripting languages, API integrations, and JSON structures-Desire
Good interpersonal skills, including the ability to explain complex technical topics to a non-technical audience (including senior leadership)
Able to work a flexible schedule, including significant overlap with U.S. and European regions to enable collaboration with co-workers and support of our global users.
Lilly is an EEO/Affirmative Action Employer and does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability, or any other legally protected status.
Eli Lilly and Company, Lilly USA, LLC and our wholly owned subsidiaries (collectively “Lilly”) are committed to help individuals with disabilities to participate in the workforce and ensure equal opportunity to compete for jobs. If you require an accommodation to submit a resume for positions at Lilly, please email Lilly Human Resources ( LillyRecruitingCompliance@lists.lilly.com ) for further assistance. Please note This email address is intended for use only to request an accommodation as part of the application process. Any other correspondence will not receive a response.
Lilly does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status.
At Lilly we strive to ensure our employees are part of a team that cares about them and our shared purpose of making life better for those around the world. How do we do this? We continue to look for ways to include, innovate, accelerate and deliver while maintaining integrity, excellence and respect for people. We hope that you seek to join us on our journey as we create medicine and deliver improved outcomes for patients across the globe!