Security Engineer

Be Here. Be Great. Working for a leader in the insurance industry means opportunity for you. Great American Insurance Group's member companies are subsidiaries of American Financial Group. We combine a "small company" culture where your ideas will be heard with "big company" expertise to help you succeed. With over 30 specialty and property and casualty operations, there are always opportunities here to learn and grow.

At Great American, we value and recognize the benefits derived when people with different backgrounds and experiences work together to achieve business results. Our goal is to create a workplace where all employees feel included, empowered, and enabled to perform at their best.

This position is a new role within the Enterprise Information Security Group (EISG) focused on automation and operational engineering. The role is expected to provide advanced technical expertise in designing, engineering, implementing, and supporting innovative on-premises and cloud-based solutions using existing technology stacks. This is an advanced role within the team and will serve as a key resource in building secure, scalable, and maintainable operational capabilities.

Working closely with security leadership, engineering teams, and business stakeholders, this role will help shape and deliver automation-focused initiatives from concept through implementation and ongoing operational support. The successful candidate must be a self-starter who can understand complex topics, present them clearly, and translate requirements into practical engineering outcomes. This role will interface frequently with other business units and requires strong listening, communication, troubleshooting, and technical leadership skills across hybrid cloud, on-premises, and zero trust environments.

Responsibilities:

Primary Job Responsibilities will include:

• Develop, maintain, and support secure automation and operational engineering solutions across on-premises and cloud environments.

• Design and implement operational workflows and remediation capabilities that improve efficiency, consistency, and resilience across security and infrastructure processes.

• Protect key infrastructure in compliance with privacy, security, business resiliency, and compliance frameworks as defined.

• Provide hands-on engineering support for security systems, platform integrations, and configuration administration to improve reliability and reduce operational risk.

• Work with key stakeholders to ensure operational requirements, engineering standards, and support considerations are incorporated into platform deployments.

• Document, standardize, and improve engineering processes that balance security, operational stability, and business needs.

• Build relationships with infrastructure and development groups to incorporate security principles into engineering design and deployments.

• Develop partnerships with IT production and engineering teams.

• Analyze operational issues, identify opportunities for automation and integration, and implement improvements across infrastructure and security platforms.

• Design and implement extensible and maintainable enterprise grade solutions using existing toolsets.

• Architect, engineer, and develop innovative on-premises and cloud-based solutions using existing technology stacks.

• Work with our team to develop user stories for key security initiatives and support delivery from concept through implementation.

• Engage and communicate with stakeholders throughout project planning and execution to ensure alignment on requirements, security expectations, and implementation outcomes.

• Develop high-quality technical content including automation tools, reference architectures, and baselines to help our partners build on the work we deliver.

• Attend and fully engage in change and project management meetings.

• Mentor and invest in the development of team members.

• Performs other duties as assigned.

Qualifications:

• College degree in technology, computer science, engineering, or equivalent work experience.

• Minimum 5 years of experience in operational engineering, automation, security engineering, systems administration, or a related technical discipline.

• Intermediate or higher proficiency in Python and PowerShell development, including hands-on scripting, object-oriented programming, modules and package distribution, and independent troubleshooting and debugging.

• Hands-on experience with DevOps and CI/CD practices, including source control platforms such as GitHub or GitLab and pipeline development.

• Strong networking knowledge, including micro-segmentation, firewalls, packet capture analysis, troubleshooting, and hybrid cloud/on-premises/zero trust environments.

• Hands-on experience working with REST APIs, including secure integration patterns and best practices for connecting and automating across multiple tools.

• Deep understanding of network security best practices, secure connectivity patterns, and core network protocols.

• Hands-on experience with network traffic analysis using tools such as Wireshark, tcpdump, and NetFlow data.

• Experience supporting and engineering solutions across Microsoft Azure and Amazon Web Services (AWS), including operational administration and integration.

• Experience with container technologies and platforms, including Docker, Podman, or Kubernetes development and deployments.

• Detailed understanding of Kubernetes architecture and security, containerization, infrastructure as code, and enterprise automation practices.

• Knowledge of secrets management practices, including secure retrieval and usage of secrets from a centralized secrets platform.

• Experience with ServiceNow administration or development is preferred, including scoped applications, Flow Designer, and catalog item development.

• Understanding of security frameworks and practices including NIST, OWASP, CIS, CVSS, the MITRE ATT&CK framework, and secure software development lifecycle principles.

• Proficiency with relevant DevOps tooling such as Terraform, Git, Jenkins, Nexus Repository Manager, and related platforms is preferred.

• Strong communication skills, with the ability to collaborate across a wide audience of stakeholders and clearly explain complex technical topics.

• Ability to think both strategically and tactically, operate as a motivated self-starter, and be recognized as a technical leader within the security organization.

• CCSK, CCSP, CISSP, or equivalent security credentials are preferred.

Business Unit:

AFG Enterprise Information Security

Salary Range:

$142,000.00 -$190,000.00

Benefits:

We offer competitive benefits packages for full-time and part-time employees*. Full-time employees have access to medical, dental, and vision coverage, wellness plans, parental leave, adoption assistance, and tuition reimbursement. Full-time and eligible part-time employees also enjoy Paid Time Off and paid holidays, a 401(k) plan with company match, an employee stock purchase plan, and commuter benefits.

Compensation varies by role, level, and location and is influenced by skills, experience, and business needs. Your recruiter will provide details about benefits and specific compensation ranges during the hiring process. Learn more at http://www.gaig.com/careers.

• Excludes seasonal employees and interns.