SecOps Engineer - Identity; IAM Authentication

Role Summary

Sec Ops Engineer - Identity (IAM) Authentication responsible for delivering and securing authentication technologies that support Lilly's mission. You will partner with business stakeholders, IT teams, and cybersecurity colleagues to ensure authentication solutions are designed, deployed securely, and aligned with enterprise security and technology strategies. This role focuses on enabling secure, appropriate, and timely access to enterprise resources.

• Evaluate, architect, and implement Microsoft Entra  solutions that meet business and security requirements.
• Design and maintain technical integrations of Entra  services, including Conditional Access, multifactor authentication (MFA), passwordless authentication, and certificate-based authentication.
• Ensure operational excellence for all Entra  services, including monitoring, troubleshooting, and continuous optimization of authentication flows and policies.
• Understand the evolving threat landscape and translate authentication-related threats into actionable business and technical impacts, implementing appropriate Entra  controls.
• Collaborate effectively with cross-functional and remote team members to design and implement Entra  capabilities and solutions.
• Partner with business stakeholders to develop and implement Entra  solutions that strengthen security posture while delivering seamless user experiences.
• Stay current on Microsoft Entra  updates, emerging authentication technologies, security threats, and compliance requirements.
• Drive adoption of innovative Entra  features to address complex, global authentication and access challenges.
• Collaborate with enterprise architects, application teams, and stakeholders to understand business needs and incorporate feedback into Entra  strategies and implementations.

• Required: Bachelor's degree in Cybersecurity, Computer Science, Information Technology or related field.
• Required: 5-7+ years of demonstrated technical experience designing, implementing, and supporting Microsoft Azure AD/Entra  services.
• Required: 5-7+ years of hands-on experience configuring and managing Entra  methods including MFA, passwordless (FIDO2, Windows Hello for Business, Microsoft Authenticator), certificate-based authentication, and password protection.
• Required: Legally authorized to be employed in the United States. Lilly does not anticipate providing sponsorship for employment visa status (e.g., H-1B, OPT, TN status).

• Strong communication and presentation skills with the ability to articulate technical authentication concepts to diverse audiences including executives, business stakeholders, and technical teams.
• Deep expertise with Entra l Access policies, authentication strength, and continuous access evaluation (CAE).
• Strong understanding of federated identity protocols and standards (SAML, OAuth 2.0, OpenID Connect, WS-Federation).
• Proven experience designing and implementing enterprise-scale authentication architecture using Entra  cloud and hybrid environments.
• Ability to translate business and compliance requirements into effective Entra  policies that balance security, user experience, and supportability.
• Demonstrated collaboration with technical counterparts, leaders, and stakeholders to deliver and enhance Entra  solutions.
• Self-motivated with proven accountability for delivering solutions within defined timelines and budgets.
• Ability to work effectively with distributed and virtual teams across multiple time zones.
• Experience developing automation solutions using Power Shell, Microsoft Graph API, or other development/scripting languages.
• Experience with Infrastructure as Code (IaC) tools such as Terraform.
• Experience with Customer Identity and Access Management (CIAM) solutions for consumer, partner, and B2B authentication.
• Relevant certifications such as CISSP, CISM, or similar.

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology or related field.

• Remote or Hybrid Onsite if in Indianapolis, IN
• Travel 10-15%