Cyber Business Security Lead - Business Units

Location: Indianapolis
Posted on: June 23, 2025

Job Description:

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world. Within the Cybersecurity organization, the Business Information Security Organization (BISO) supports the adoption of Cybersecurity initiatives within business areas and influences the Cybersecurity organization based on business needs and risks. The Cyber Business Security Lead is a key resource within that team. They are an advanced professional who applies comprehensive expertise across a function or region. They make impactful decisions, solve major problems, and build key customer relationships within their scope of responsibility, ensuring the ongoing partnership between Cybersecurity and the following Lilly Business Units What You Will Do: Lead business-focused Cybersecurity strategic, operational, and tactical efforts on the Lilly Business Units Cybersecurity roadmap, including data security, working securely, and business enablement programs. Facilitate the adoption of business-facing Cybersecurity initiatives within Lilly Business Units through partnership with Cybersecurity teams. Align the priorities between cybersecurity and the businesses to ensure security is embedded in all solutions and any security risk is transparently accepted. Build relationships with internal and external customers to assess and reduce Cybersecurity risks. Collaborate across the business and IT teams to raise security awareness, provide advisory services, and influence security-conscious behaviors Take ownership for major initiatives defined in the business roadmap to ensure security is embedded in strategic priorities Define tactical initiatives to meet cybersecurity goals and embedded in business systems Lead continuous cyber education within Lilly Business Units Identify and document business security gaps, including definition of remediation plans and track to completion Promote Security by design for new technology solutions Lead technical-focused Information Security tabletop exercises across various business leadership levels Benchmark technical-facing Information Security capabilities through external forums Leadership Expectations and Technical Skills: Ability to educate and influence within an org to drive behavior change Excellent self-initiative and ability to define new approaches to improve upon status quo Effective communication, writing, and presentation skills Ability to develop strategic plans and break those into smaller programs and projects Ability to achieve results across a global matrixed organization Guide strategic direction and drive critical business decisions Promote innovative thinking across the organization Build strategic relationships with key internal partners and stakeholders. Exercise expert-level judgment to tackle complex technical or operational challenges. Your Basic Qualifications: Bachelor’s degree in an Information Security, Information Technology, or Engineering discipline At least 7-10 years of IT or Security Engineering experience. Experience with NIST cybersecurity framework, Mitre Att&k framework or similar What You Should Bring: Experience with industrial control systems Comprehensive expertise across cybersecurity domains, including prevention, detection, response, recovery, and compliance. In-depth knowledge of industry regulations, security frameworks (NIST, ISO, etc.), and global IT risk standards. Established expertise in managing cyber programs, complex projects, and cross-functional teams. Outstanding communication skills with the ability to articulate cyber risks. Track record of influencing upward, including presenting security program metrics and business cases. Flexibility to travel internationally (less than 10 percent of time) Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form ( https://careers.lilly.com/us/en/workplace-accommodation ) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response. Lilly is proud to be an EEO Employer and does not discriminate on the basis of age, race, color, religion, gender identity, sex, gender expression, sexual orientation, genetic information, ancestry, national origin, protected veteran status, disability, or any other legally protected status. Our employee resource groups (ERGs) offer strong support networks for their members and are open to all employees. Our current groups include: Africa, Middle East, Central Asia Network, Black Employees at Lilly, Chinese Culture Network, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinx at Lilly (OLA), PRIDE (LGBTQ Allies), Veterans Leadership Network (VLN), Women’s Initiative for Leading at Lilly (WILL), enAble (for people with disabilities). Learn more about all of our groups. Actual compensation will depend on a candidate’s education, experience, skills, and geographic location. The anticipated wage for this position is $123,000 - $180,400 Full-time equivalent employees also will be eligible for a company bonus (depending, in part, on company and individual performance). In addition, Lilly offers a comprehensive benefit program to eligible employees, including eligibility to participate in a company-sponsored 401(k); pension; vacation benefits; eligibility for medical, dental, vision and prescription drug benefits; flexible benefits (e.g., healthcare and/or dependent day care flexible spending accounts); life insurance and death benefits; certain time off and leave of absence benefits; and well-being benefits (e.g., employee assistance program, fitness benefits, and employee clubs and activities).Lilly reserves the right to amend, modify, or terminate its compensation and benefit programs in its sole discretion and Lilly’s compensation practices and guidelines will apply regarding the details of any promotion or transfer of Lilly employees. WeAreLilly

Keywords: , Terre Haute , Cyber Business Security Lead - Business Units, IT / Software / Systems , Indianapolis, Indiana