Senior Information Security Engineer

Join to apply for the Senior Information Security Engineer role at Westfield Insurance

1 week ago Be among the first 25 applicants

Join to apply for the Senior Information Security Engineer role at Westfield Insurance

We're looking for a hands-on Senior Information Security Engineer to join our growing security team. In this role, you won’t just be responding to alerts—you’ll help design, build, and refine the tools, controls, and processes that protect our company. This is a senior-level engineering role focused on making a direct impact on our enterprise security posture, working across network, cloud, endpoint, and application layers. You’ll be part of a collaborative environment where you’ll lead complex initiatives, contribute to our security strategy, and help level up the team.

You’ll be working in a hybrid IT environment (on-prem and cloud), with an emphasis on security automation, network and endpoint protection, and other security platforms/tooling. This is an opportunity to be part of a mature yet evolving security organization where your technical input matters.

What You'll Work On

• Lead the design and deployment of security tooling, including firewalls, intrusion prevention systems, EDR, DLP, and cloud-native controls
• Build and maintain security automation around threat detection, response, and compliance reporting
• Partner with infrastructure, app dev, and cloud teams to embed security into projects and platforms
• Evaluate, test, and implement new tools and capabilities based on threat landscape and internal needs
• Collaborate with the Security Architecture team by providing technical input and context during architecture reviews, threat modeling, and risk assessments to ensure practical, implementable security controls
• Drive continuous improvement of existing security controls—identifying gaps, tuning configurations, and retiring legacy solutions
• Support the SOC during incident response by providing infrastructure and tooling expertise, assisting with containment efforts, and implementing post-incident improvements
• Mentor junior staff and contribute to team development through documentation, process design, and knowledge sharing

Relevant Skills and Experience

• NGFWs, IDS/IPS, WAFs, proxies, micro segmentation, and VPNs (e.g., Palo Alto, F5, VMware NSX)
• Endpoint protection and management tools (e.g., Sentinel One, Microsoft Defender for Endpoint, CrowdStrike)
• Cloud platforms (AWS and Azure) with a focus on secure configurations and native security services
• Email security tools (e.g., Checkpoint, Proofpoint, Mimecast)
• Microsoft Sentinel (SIEM) and SOAR; contribute to detections and automation in collaboration with the SOC
• Scripting and automation using Python, PowerShell, or Bash
• DevSecOps practices and tools (e.g., Azure DevOps) for automation, CI/CD, and infrastructure-as-code workflows

What We're Looking For

• Deep knowledge of enterprise security tools and frameworks (e.g., NIST CSF, CIS Controls)
• Experience integrating security controls into hybrid IT environments (on-prem + cloud)
• Ability to communicate effectively with technical and non-technical teams
• Ability to think strategically, execute tactically, and stay hands-on with tools

Bonus Points for These Certifications or Similar Experience:

• CISSP, CCSP, Security+ or AWS/Azure security certifications
• Experience building security automation or integrations between tools using APIs or scripting
• Background in network engineering or systems administration
• Experience influencing and implementing endpoint security, including EDR tuning, hardening standards, and collaboration on Group Policy or device management tooling (e.g., Intune, SCCM)

Why You’ll Want This Job

• Impactful work: You’ll help shape how security is done at an enterprise level
• Strong team culture: We value collaboration, ownership, and continuous learning
• Balance of autonomy and support: You’ll have the freedom to engineer solutions and the support to get things done
• Commitment to growth: We invest in the professional development of our engineers

Security Domains

• Vulnerability Management
• Network Security
• Firewalls
• Security Assessments
• Security Monitoring
• Identity Management

Location

Hybrid defined as three or more days per week in the office

About Us

Founded in 1848, Westfield is a global leader in property and casualty insurance, delivering superior risk insights and innovative solutions to customers through a diverse portfolio of insurance products. Westfield underwrites commercial, personal, surety, and specialty lines of coverage through a network of leading independent agents and brokers in the United States and specialty products through Lloyd’s of London Syndicate 1200. As a mutual insurance company with more than 3,000 employees, Westfield has revenues in excess of $4 billion and more than $10 billion in assets. Learn more at www.westfieldinsurance.com.

Equal Opportunity Employer

United States: All applicants receive consideration for employment without regard to race, color, sex, religion, national origin, age, sexual orientation, gender identity, disability, or status as a protected veteran.

United Kingdom: Westfield is committed to equality of opportunity for all staff and applications from individuals are encouraged regardless of age, disability, sex, gender reassignment, sexual orientation, pregnancy and maternity, race, religion or belief and marriage and civil partnerships.

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Information Technology
• Industries
  Insurance

Referrals increase your chances of interviewing at Westfield Insurance by 2x

Medical insurance

Vision insurance

401(k)

Pension plan

Get notified about new Information Security Engineer jobs in Westfield Center, OH.

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.