Lilly Cnslt-Cloud Security Solution Engineer in Indianapolis, Indiana
Lilly Hosting and Cloud Services (HCS) runs the IT Infrastructure hosting technologies across the enterprise. This spans from our Global Enterprise Data Centers, through our Storage/Backups, Server Virtualization and Server Operating Systems both on premise, in our Lilly Private Cloud and Public IaaS/PaaS offerings. Do you want to help develop services with an emphasis on running reliably, helping people work smarter, making IT easier.
Our Lilly Cloud Engineers are responsible for designing and delivering secure enterprise scale public cloud services to the Enterprise. Your role will partner and collaborate closely with lead clous architect and Information Security to drive standardized security controls while improving time to value. If this sound like your passion, lets talk.
To drive successful adoption, you will be expected to develop a continual partnership with our cloud service development teams to review, design, and embed security controls into complex solutions. New projects will provide the opportunity to develop secure configurations for emerging cloud services through the use of patterns, configuration management, and automation. Superb communication skills and expertise with authentication, encryption, network, and application security will be essential for the role.Do you have a passion for being a security champion promoting an infrastructure as code strategy with a DevOps mentality.
In this role, you will work with the Director of HCS and cloud development teams.
Your role (along with additional Senior Cloud Engineers) will be to partner with Architects and Engineers across all Business IT in the following areas:
Design of a Secure Cloud Foundation, repeatable cloud patterns, templates, and/or accelerators to embed security in their designs to enable faster business IT adoption of cloud service.
Develop and establish cloud hardening automation into cloud foundation services based on overarching security controls.
Promote, mentor and educate the Lilly community on Cloud Adoption, Operating Guidelines/Principles, and Cloud Services/Solutions
Establish yourself as a cloud security domain authority and be a positive leader and mentor to others.
Understand business requirements to effectively identify and apply security controls.
Identify, mitigate, and/or raise risks. Develop exception based automated processes as required.
Document and publish cloud hardening guides to maintain a portal of updated, accurate standards.
Develop automated configuration and governance checks to enable ongoing reporting, validation and notification.
Research and maintain current knowledge of cloud trends and technology capabilities.
Strong security design expertise with respect to cloud architecture (IaaS, PaaS, and SaaS).
You will need to demonstrate your communication skills, including the ability to explain complex technical topics to a non-technical audience (including senior leadership).
High learning agility to keep up with ever-changing business needs.
Confirmed high level of intellectual curiosity, external perspective and innovation interest.
Expertise working in complex, diverse landscapes (business, technology, regulatory, partners, providers, geographies).
Advanced Experience with AWS services like: CloudFormation, IAM Policies, EC2, Lambda, S3, Glacier, Multi-Region VPC, Route53, Security Groups, ALB/ELB/NLB, API GW, WAF, Shield, GuardDuty, KMS, CloudTrail, Config, CloudWatch, Kinesis
Identity and Access Management on AWS writing policies that ensure consistency to least privilege access principles along with automation using AWS Config and/or Lambda to monitor and ensure compliance.
A deep understanding of how to model threats & risk as well as the controls necessary to mitigate risk using both cloud native tools as well as integration with tools like Splunk.
Experience with DevOps practices such as infrastructure as code, continuous integration and continuous deployment, and delivery pipelines, and version control management platforms like Git and CICD tools like Jenkins.
Proficiency with at least one high level developer language.
Lilly is an EEO/Affirmative Action Employer and does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status
Cloud Security Solutions Engineer
2+ years expertise in design, development and implementation of cloud hosting solutions including AWS
4+ years of Information Security/Technology experience
One or more Information Security or Cloud certifications such as: CISSP, CCSP, CCSK, CSSLP, Security+, OSCP, CEH, or AWS.
Qualified candidates must be legally authorized to be employed in the United States. Lilly does not anticipate providing sponsorship for employment visa status (e.g., H-1B or TN status) for this employment position
At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our 39,000 employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.
State / Province: