Sr. SecOps Engineer - Lilly
Indianapolis, IN
About the Job
At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.
What You'll Be Doing:
The Sr. Engineer, SecOps will be part of the Lilly Cybersecurity team, responsible for delivering and securing technology that supports the Lilly mission. In this role, you will partner with the various business, information technology, and larger cyber security teams to ensure technology is designed and deployed securely and aligned with Information Security and enterprise technology strategies. You will be responsible for implementing, operating, and maintaining the company's enterprise logging platform. This role requires hands-on technical expertise in log management, data pipelines, and analytics to support security monitoring, compliance reporting, and operational use cases.
What You Should Bring:
+ Implement and maintain Enterprise Logging technologies to meet business and security requirements
+ Build and maintain log ingestion pipelines from various sources using modern logging stacks
+ Create and optimize searches, dashboards, and reports for security and compliance use cases
+ Develop parsing logic, field extractions, and data models for different log types
+ Identify and implement improvements to logging architecture and operational processes
+ Assist with capacity planning, performance tuning, and cost optimization
+ Create and maintain documentation for operational procedures and troubleshooting
+ Understand the threat landscape with the ability to translate the general threats into relevant business and technical impacts.
+ Focusing on our business partners, you will develop and implement technical solutions and capabilities in Platforms that improve security while enhancing user experience.
+ With a high level of curiosity, you’ll keep abreast of the latest developments in Security technologies, security threats, and regulatory changes.
+ Drive the adoption of innovative and creative solutions to address complex, global Security Platforms problems.
+ Collaborate with enterprise IT, architects and stakeholders to understand business needs and incorporate feedback into the Security Platform technologies and solutions.
Your Basic Qualifications:
+ Bachelor’s degree in Cybersecurity, Computer Science, Information Technology or related field
+ 3+ years Splunk experienc demonstrated technical experience evaluating, designing, developing and supporting Enterprise Logging Platform technologies and capabilities. (e.g., Splunk, ELK Stack)
Additional Preferences:
+ Strong knowledge of log sources, formats, and collection methods across infrastructure
+ Proficiency in scripting languages (Python, Shell) for automation and data processing
+ Experience with cloud platforms (AWS, Azure, GCP) and containerized environments
+ Understanding of security monitoring, compliance requirements, and SIEM use cases
+ Ability to work independently on assigned projects while escalating appropriately
+ Excellent communication/presentation skills for collaborating with team members and stakeholders
+ Relevant certifications (e.g., Splunk Certified Admin, Elastic Certified Engineer) preferred
+ Experience with IT Service Management (ITIL) preferred
+ Experience with log collection tools, forwarders, and data pipeline components
+ Knowledge of search syntax, query optimization, and analytics capabilities
+ Familiarity with common log sources (OS, network, security tools, applications
+ Understanding of data models, schema design, and field mapping
+ Basic coding abilities for scripts, automation, and custom integrations
Additional Information:
+ This is a hybrid role located in Indianapolis, Indiana
Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form ( https://careers.lilly.com/us/en/workplace-accommodation ) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response.
Lilly is an EEO/Affirmative Action Employer and does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status.
Our employee resource groups (ERGs) offer strong support networks for their members and help our company develop talented individuals for future leadership roles. Our current groups include: Africa, Middle East, Central Asia Network, African American Network, Chinese Culture Network, Early Career Professionals, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinos at Lilly, PRIDE (LGBTQ + Allies), Veterans Leadership Network, Women’s Network, Working and Living with Disabilities. Learn more about all of our groups.
#WeAreLilly
What You'll Be Doing:
The Sr. Engineer, SecOps will be part of the Lilly Cybersecurity team, responsible for delivering and securing technology that supports the Lilly mission. In this role, you will partner with the various business, information technology, and larger cyber security teams to ensure technology is designed and deployed securely and aligned with Information Security and enterprise technology strategies. You will be responsible for implementing, operating, and maintaining the company's enterprise logging platform. This role requires hands-on technical expertise in log management, data pipelines, and analytics to support security monitoring, compliance reporting, and operational use cases.
What You Should Bring:
+ Implement and maintain Enterprise Logging technologies to meet business and security requirements
+ Build and maintain log ingestion pipelines from various sources using modern logging stacks
+ Create and optimize searches, dashboards, and reports for security and compliance use cases
+ Develop parsing logic, field extractions, and data models for different log types
+ Identify and implement improvements to logging architecture and operational processes
+ Assist with capacity planning, performance tuning, and cost optimization
+ Create and maintain documentation for operational procedures and troubleshooting
+ Understand the threat landscape with the ability to translate the general threats into relevant business and technical impacts.
+ Focusing on our business partners, you will develop and implement technical solutions and capabilities in Platforms that improve security while enhancing user experience.
+ With a high level of curiosity, you’ll keep abreast of the latest developments in Security technologies, security threats, and regulatory changes.
+ Drive the adoption of innovative and creative solutions to address complex, global Security Platforms problems.
+ Collaborate with enterprise IT, architects and stakeholders to understand business needs and incorporate feedback into the Security Platform technologies and solutions.
Your Basic Qualifications:
+ Bachelor’s degree in Cybersecurity, Computer Science, Information Technology or related field
+ 3+ years Splunk experienc demonstrated technical experience evaluating, designing, developing and supporting Enterprise Logging Platform technologies and capabilities. (e.g., Splunk, ELK Stack)
Additional Preferences:
+ Strong knowledge of log sources, formats, and collection methods across infrastructure
+ Proficiency in scripting languages (Python, Shell) for automation and data processing
+ Experience with cloud platforms (AWS, Azure, GCP) and containerized environments
+ Understanding of security monitoring, compliance requirements, and SIEM use cases
+ Ability to work independently on assigned projects while escalating appropriately
+ Excellent communication/presentation skills for collaborating with team members and stakeholders
+ Relevant certifications (e.g., Splunk Certified Admin, Elastic Certified Engineer) preferred
+ Experience with IT Service Management (ITIL) preferred
+ Experience with log collection tools, forwarders, and data pipeline components
+ Knowledge of search syntax, query optimization, and analytics capabilities
+ Familiarity with common log sources (OS, network, security tools, applications
+ Understanding of data models, schema design, and field mapping
+ Basic coding abilities for scripts, automation, and custom integrations
Additional Information:
+ This is a hybrid role located in Indianapolis, Indiana
Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form ( https://careers.lilly.com/us/en/workplace-accommodation ) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response.
Lilly is an EEO/Affirmative Action Employer and does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status.
Our employee resource groups (ERGs) offer strong support networks for their members and help our company develop talented individuals for future leadership roles. Our current groups include: Africa, Middle East, Central Asia Network, African American Network, Chinese Culture Network, Early Career Professionals, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinos at Lilly, PRIDE (LGBTQ + Allies), Veterans Leadership Network, Women’s Network, Working and Living with Disabilities. Learn more about all of our groups.
#WeAreLilly
Source : Lilly
