Security Architect
Eli Lilly and Company
full-time
Posted on:
Location Type: Remote
Location: United States
Visit company websiteExplore more
Salary
💰 $141,000 - $225,000 per year
About the role
- Serve as a technical lead for security consulting engagements, threat modeling initiatives, and third-party security assessments
- Develop threat models, security architectures, and reference patterns for cloud and hybrid environments
- Provide guidance on secure design principles
- Collaborate across teams to integrate security into the development lifecycle and evaluate vendor security posture
- Leverage AI-powered tools to enhance the efficiency and depth of security assessments
- Develop and conduct threat modeling exercises using established frameworks (MITRE ATT&CK, STRIDE, NIST 800-53, ISO 27001)
- Create and maintain security architectures and design patterns
- Conduct security architecture reviews for internal initiatives, new technologies, and third-party vendors
- Perform third-party security assessments, including vendor questionnaire reviews, SOC 2 evaluations
- Provide security consulting services across the organization, enabling business objectives while clearly communicating risk
- Lead security briefings and workshops; mentor junior security engineers
Requirements
- High School Diploma/GED
- Deep expertise in threat modeling methodologies and security architecture design across cloud (AWS, Azure, GCP), SaaS, and hybrid environments
- Strong background in security consulting, risk assessment, and third-party cyber risk management, including SOC 2 review and HIPAA compliance evaluation
- Minimum seven years of cybersecurity or related experience
- Bachelor's degree in Computer Science, Information Security, or related field preferred
- Experience with or willingness to adopt AI tools for document analysis, risk summarization, and pattern identification; understanding of AI/ML security considerations
- Knowledge of Zero Trust principles and major security frameworks (MITRE ATT&CK, STRIDE, NIST 800-53, ISO 27001)
- Excellence in technical documentation and executive-level risk communication
- Experience mentoring, collaborating across teams, and engaging stakeholders at varying levels of technical expertise
- Project management and strategic planning skills
- Commitment to continuous learning and professional development, including staying current on developments relevant to cybersecurity.
Benefits
- Company bonus eligibility
- Comprehensive benefit program including medical, dental, vision, and prescription drug benefits
- 401(k) participation
- Pension plan
- Vacation benefits
- Flexible benefits such as healthcare and/or dependent day care flexible spending accounts
- Life insurance and death benefits
- Well-being benefits including employee assistance program, fitness benefits, and employee clubs and activities
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
threat modelingsecurity architecture designcloud environmentsSaaShybrid environmentsrisk assessmentthird-party cyber risk managementSOC 2 reviewHIPAA complianceAI/ML security considerations
Soft Skills
technical documentationexecutive-level risk communicationmentoringcollaborationstakeholder engagementproject managementstrategic planningcontinuous learningprofessional development