Security Ops Engineer - Privileged Access Management & Identity Governance and Administration

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We are looking for people who are determined to make life better for people around the world.

Are you eager to make a significant impact in the cybersecurity field? We are seeking a Security Ops Engineer to infuse our team with innovative ideas and daring solutions. In this position, you will play a crucial role in delivering how our organization ensures secure, appropriate, and timely access to enterprise resources, while also supporting the capabilities that help us achieve and sustain our Identity and Access Management strategy.

This role includes an on-call rotation covering weekends and country holidays to support our follow-the-sun model across Kuala Lumpur, Cork, and the U.S. IAM teams.

Operational Excellence:

• Execute processes for incident management, change management, problem resolution and continuous improvement that enable Identity services.
• Continuously monitor IAM identity governance, privileged access management and encryption systems performance and health to ensure optimal operation. Perform regular maintenance tasks to prevent issues.
• Respond promptly to system alerts and incidents, troubleshoot issues, and implement solutions to restore services as quickly as possible.
• Manage and maintain all components of IAM identity governance, privileged access management and encryption systems. Ensure that all systems are up to date with the latest patches and security updates.
• Analyze system performance metrics and make recommendations for improvements. Implement changes to enhance system efficiency and reduce downtime.
• Maintain detailed documentation of system configurations, procedures, and incident reports. Provide regular status updates and reports to management.
• Work closely with other IT teams, developers, and stakeholders to ensure seamless operation of services. Communicate effectively to resolve issues and implement changes.
• Assess current system capacity and plan for future growth. Ensure that resources are allocated efficiently to meet demand.
• Provide technical support to users as it pertains to issues and requests on Identity services.
• Support response to audit and compliance requests pertaining to Identity services.
• Develop and implement solutions to resolve identified problems. Ensure that solutions are tested and validated before deployment.
• Perform detailed root cause analysis and document findings. Develop and implement corrective actions to prevent recurrence.
• Proactively identify opportunities for process improvements and implement best practices to enhance problem management processes.

On-Call Information: This role includes participation in a structured on-call rotation covering weekends and country holidays to support the follow-the-sun model across Cork, Kuala Lumpur, and the U.S. IAM teams. On-call coverage is required from Saturday 5am – Sunday 5pm local time with responsibilities focused on resolving priority IAM requests. The on-call responsibilities support critical operations and 24/7 operational resilience.

Team members will work two 12-hour weekend shifts (Saturday & Sunday) every 4–6 weeks on a rotating schedule.

Your Basic Qualifications:

• Bachelor’s degree in computer science, engineering, or related technical field.
• 1-3 years of proven experience in Identity and Access Management with experience in areas like identity provisioning, access management, Identity Governance and Administration (IGA), CyberArk, Venafi, Sectigo Certificates, and/or Adobe Sign.

• Experience with IT service management (ITIL).
• Knowledge of fundamental security principles.
• Skill in using Public-Key Infrastructure (PKI) encryption and digital signature capabilities into applications (e.g., S/MIME email, SSL traffic).
• Experience with technologies such as Microsoft Identity Manager, Entra ID, and/or SailPoint.
• Knowledge of electronic signature services (e.g., Adobe Sign).
• Knowledge of key capabilities and principles for Privileged Access Management (PAM) including Just in Time Access.
• Experience developing solutions with PowerShell, Python, NodeJS, PHP or other development and scripting languages.
• Critical thinking and analytical reasoning skills.
• Good communication and presentation skills, and ability to adapt messaging for diverse audiences.
• Ability to work with distributed and virtual teams.
• Understanding of common cloud services with experience in AWS and/or Azure; awareness of cloud platform security and controls.
• Relevant certifications such as CISSP, CISM, or similar.

Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please contact Lilly's Workplace Accommodation process for assistance. This message is for accommodation requests as part of the application process, and other correspondence will not receive a response.

Lilly does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status.

#WeAreLilly