At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world.

What You'll Be Doing:

As the Application Security Technical Director at Lilly, you will lead a team that is instrumental in embedding a security-first mindset within our engineering culture. You will be responsible for defining and driving the strategic vision for application security, ensuring that security is an integral part of our highly DevOps-oriented and multi-cloud environment.

How You'll Succeed:

• Technical Expertise: You will leverage your deep understanding of application security concepts, cloud security, and DevSecOps practices to develop and implement innovative solutions that enable secure software development and delivery.

• Leadership and Collaboration: As an experienced leader, you will manage and grow a talented team of security engineers. You will establish and maintain partnerships within the organization, engaging with engineers to understand pain points and define solutions that balance security and operational needs.

• Communication and Empowerment: You will be a skilled communicator, able to consult, educate, and empower engineers to build and ship innovative software in a secure manner by default. You will gather regular feedback about developer experience, ensuring that security is an enabler, not a roadblock or gate.

• Adaptability and Strategic Thinking: You will demonstrate the ability to handle multiple competing priorities in a fast-paced environment, while maintaining a strategic, big-picture perspective. You will be passionate about building products that engineers love and believe in the true outcome of DevOps that includes security.

What You Should Bring:

• Lead and manage a team of security engineers to implement secure-by-default tools and cloud components across the SDLC.

• Define and drive the strategy to ensure that security is an integral part of our highly DevOps-oriented and multi-cloud environment.

• Develop capabilities that embed security expertise within other areas of the business, building a product security function within a hybrid environment.

• Design and implement secure testing solutions for code in CI/CD pipelines, edge-based API Gateways, and developer toolchains.

• Establish and maintain partnerships within the organization, engaging with engineers to understand pain points and define solutions that balance security and operational needs.

• Consult, educate, and empower engineers to build and ship innovative software in a secure manner by default.

• Gather regular feedback about developer experience, ensuring that security is an enabler, not a roadblock or gate.

• Lead and mentor engineers within the group, fostering a culture of continuous improvement and adaptability.

Your Basic Qualifications:

• Bachelor's degree in Cyber Security, Computer Science, Information Technology, or a related field

• 10+ years of relevant security work experience, with at least 4 years in a leadership role

• Experience with public cloud services (at least one of: AWS/Azure/GCP) and their fundamental components

Additional Preferences:

• Demonstrated experience in designing and implementing secure-by-default capabilities that embed security expertise within other areas of the business

• Proficiency in DevSecOps practices, including Continuous Integration, Continuous Deployment, and secure testing frameworks

• Excellent verbal and written communication skills, with the ability to inspire and empower teams

• Proven ability to handle multiple competing priorities in a fast-paced environment

Additional Information:

• Remote role

• Lilly currently anticipates that the base salary for this position could range from between $133,500 to $211,200 and will depend, in part, on the successful candidate’s qualifications for the role, including education and experience. Full-time equivalent employees also will be eligible for a company bonus (depending, in part, on company and individual performance). In addition, Lilly offers a comprehensive benefit program to eligible employees, including eligibility to participate in a company-sponsored 401(k); pension; vacation benefits; eligibility for medical, dental, vision and prescription drug benefits; flexible benefits (e.g., healthcare and/or dependent day care flexible spending accounts); life insurance and death benefits; certain time off and leave of absence benefits; and well-being benefits (e.g., employee assistance program, fitness benefits, and employee clubs and activities).  Of course, the compensation described above is subject to change and could be higher or lower than the range described above.  Further, Lilly reserves the right to amend, modify, or terminate its compensation and benefit programs in its sole discretion and Lilly’s compensation practices and guidelines will apply regarding the details of any promotion or transfer of Lilly employees.

Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form ( https://careers.lilly.com/us/en/workplace-accommodation ) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response.

Lilly is an EEO/Affirmative Action Employer and does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status.

Our employee resource groups (ERGs) offer strong support networks for their members and help our company develop talented individuals for future leadership roles. Our current groups include: Africa, Middle East, Central Asia Network, African American Network, Chinese Culture Network, Early Career Professionals, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinos at Lilly, PRIDE (LGBTQ + Allies), Veterans Leadership Network, Women’s Network, Working and Living with Disabilities. Learn more about all of our groups.

#WeAreLilly