SecOps Engineer - Identity (IAM) Authentication

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.

Ready to put your mark on the world of cybersecurity? We’re looking for an SecOps Engineer - Identity (IAM) Authentication to bring fresh perspectives and bold solutions to our team. In this role, you’ll be instrumental in shaping how our organization provides secure, appropriate, and timely access to enterprise resources.

What you will be doing:

This SecOps Engineer - Identity (IAM) Authentication will serve as a member of the Lilly Cybersecurity Identity and Access Management team, responsible for delivering and securing authentication technologies that support Lilly's mission. In this role, you will partner with business stakeholders, IT teams, and cybersecurity colleagues to ensure authentication solutions are designed, deployed securely, and aligned with enterprise security and technology strategies.

You will develop technical specifications, design patterns, standards-as-code, and security guidance for authentication capabilities and services. As a key contributor, you will identify and optimize critical processes around authentication service development, support, deployment, and continuous improvement of authentication technologies.

How you will succeed:

• As a SecOps Engineer - Identity (IAM) Authentication, you will leverage your technical expertise to evaluate, architect, and implement Microsoft Entra ID authentication solutions that meet business and security requirements.

• Design and maintain technical integrations of Entra ID authentication services, including Conditional Access, multifactor authentication (MFA), passwordless authentication, and certificate-based authentication to meet business requirements.

• Ensure operational excellence for all Entra ID authentication services, including monitoring, troubleshooting, and continuous optimization of authentication flows and policies.

• Understand the evolving threat landscape and translate authentication-related threats into actionable business and technical impacts, implementing appropriate Entra ID security controls.

• As a strong communicator with excellent interpersonal skills, you will collaborate effectively with cross-functional and remote team members to design and implement Entra ID authentication capabilities and solutions.

• Partner with business stakeholders to develop and implement Entra ID authentication solutions that strengthen security posture while delivering seamless user experiences.

• With a high level of curiosity, you'll stay current on Microsoft Entra ID roadmap updates, emerging authentication technologies, security threats, and compliance requirements.

• Drive adoption of innovative Entra ID authentication features to address complex, global authentication and access challenges.

• Collaborate with enterprise architects, application teams, and stakeholders to understand business needs and incorporate feedback into Entra ID authentication strategies and implementations.

Basic Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology or related field.

• 5-7+ years of demonstrated technical experience designing, implementing, and supporting Microsoft Azure AD/Entra ID authentication services.

• 5-7+ years of hands-on experience configuring and managing Entra ID authentication methods including MFA, passwordless (FIDO2, Windows Hello for Business, Microsoft Authenticator), certificate-based authentication, and password protection.

• Qualified candidates must be legally authorized to be employed in the United States. Lilly does not anticipate providing sponsorship for employment visa status (e.g., H-1B, OPT, TN status)

Additional preferences:

• Strong communication and presentation skills with the ability to articulate technical authentication concepts to diverse audiences including executives, business stakeholders, and technical teams.

• Deep expertise with Entra ID Conditional Access policies, authentication strength, and continuous access evaluation (CAE).

• Strong understanding of federated identity protocols and standards (SAML, OAuth 2.0, OpenID Connect, WS-Federation)

• Proven experience designing and implementing enterprise-scale authentication architecture using Entra ID for cloud and hybrid environments.

• Ability to translate business and compliance requirements into effective Entra ID authentication policies that balance security, user experience, and supportability.

• Demonstrated collaboration with technical counterparts, leaders, and stakeholders to deliver and enhance Entra ID authentication solutions.

• Self-motivated with proven accountability for delivering solutions within defined timelines and budgets.

• Ability to work effectively with distributed and virtual teams across multiple time zones.

• Experience developing automation solutions using PowerShell, Microsoft Graph API, or other development/scripting languages

• Experience with Infrastructure as Code (IaC) tools such as Terraform.

• Experience with Customer Identity and Access Management (CIAM) solutions for consumer, partner, and B2B authentication.

• Relevant certifications such as CISSP, CISM, or similar.

Additional Information:

• Remote or Hybrid Onsite if in Indianapolis, IN

• Travel 10-15 %

Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form (https://careers.lilly.com/us/en/workplace-accommodation) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response.

Lilly is proud to be an EEO Employer and does not discriminate on the basis of age, race, color, religion, gender identity, sex, gender expression, sexual orientation, genetic information, ancestry, national origin, protected veteran status, disability, or any other legally protected status.

Our employee resource groups (ERGs) offer strong support networks for their members and are open to all employees. Our current groups include: Africa, Middle East, Central Asia Network, Black Employees at Lilly, Chinese Culture Network, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinx at Lilly (OLA), PRIDE (LGBTQ+ Allies), Veterans Leadership Network (VLN), Women’s Initiative for Leading at Lilly (WILL), enAble (for people with disabilities). Learn more about all of our groups.

Actual compensation will depend on a candidate’s education, experience, skills, and geographic location.  The anticipated wage for this position is

Full-time equivalent employees also will be eligible for a company bonus (depending, in part, on company and individual performance). In addition, Lilly offers a comprehensive benefit program to eligible employees, including eligibility to participate in a company-sponsored 401(k); pension; vacation benefits; eligibility for medical, dental, vision and prescription drug benefits; flexible benefits (e.g., healthcare and/or dependent day care flexible spending accounts); life insurance and death benefits; certain time off and leave of absence benefits; and well-being benefits (e.g., employee assistance program, fitness benefits, and employee clubs and activities).Lilly reserves the right to amend, modify, or terminate its compensation and benefit programs in its sole discretion and Lilly’s compensation practices and guidelines will apply regarding the details of any promotion or transfer of Lilly employees.

#WeAreLilly