Security Engineer

Who We Are:

Old Republic is a leading specialty insurer that operates diverse property & casualty, as well as title insurance companies. Founded in 1923 and a member of the Fortune 500, we are a leader in underwriting and risk management services for business partners across the United States and Canada. Our specialized operating companies are experts in their fields, enabling us to provide tailored solutions that set us apart.

Position Overview:

Old Republic is seeking an experienced Information Security Engineer – Security Operations (SecOps
)
to support enterprise-wide detection, response, and operational security capabilities across the organization and its subsidiary operating companies.

This role focuses on the operational execution and effectiveness of cybersecurity controls, including security monitoring, incident response, detection engineering, and control validation across on‑premises, cloud, and hybrid environments. The role partners closely with IT operations, infrastructure, application teams, and subsidiary IT organizations to ensure controls are effective, sustainable, and aligned with business operations.

Essential Job Functions:

• Implement, configure, and maintain security operations technologies and controls aligned with enterprise security standards.
• Operate and continuously improve security monitoring, alerting, and logging capabilities.
• Monitor, analyze, investigate, and respond to security alerts, incidents, and control failures.
• Participate in a rotating on‑call schedule to support 24×7 incident response coverage, including after‑hours response as required.
• Lead and contribute to incident response activities including containment, remediation, escalation, and post‑incident root cause analysis.
• Develop, tune, and maintain detection logic, alert thresholds, and operational workflows.
• Support SIEM, EDR/XDR, email security, network security, and security automation platforms.
• Partner with infrastructure, application, and subsidiary IT teams to remediate security findings and operational gaps.
• Maintain incident response procedures, playbooks, and operational runbooks.
• Support audit, compliance, and risk activities through control validation and evidence collection.
• Mentor less experienced team members and promote consistent SecOps best practices.
• Report security incidents, trends, and operational metrics to leadership.
• Perform other duties as assigned.

Qualifications:

• 5–8+ years of experience in cybersecurity, security operations, or security engineering roles.
• Hands‑on experience with EDR/XDR, email security, network security, and SIEM platforms.
• Experience supporting Zero Trust security models, including identity‑centric access and continuous validation.
• Strong incident response and root‑cause analysis skills.
• Experience across on‑premises, cloud, and hybrid environments.
• Knowledge of security frameworks such as NIST, ISO/IEC 27001, CIS, and SOX.
• Strong written and verbal communication and documentation skills.
• Bachelor’s or Master’s degree in Computer Science, Information Systems, or a related field (or equivalent experience).
• Security or operations‑focused certifications are a plus.

ORI is an Equal Opportunity Employer. ORI provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.