Be Here. Be Great. Working for a leader in the insurance industry means opportunity for you. Great American Insurance Group's member companies are subsidiaries of American Financial Group. We combine a "small company" culture where your ideas will be heard with "big company" expertise to help you succeed. With over 30 specialty and property and casualty operations, there are always opportunities here to learn and grow.
At Great American, we value and recognize the benefits derived when people with different backgrounds and experiences work together to achieve business results. Our goal is to create a workplace where all employees feel included, empowered, and enabled to perform at their best.
The mission of the Enterprise Information Security Group (EISG) is to protect the confidentiality, integrity, and availability of the enterprise information assets. The program strives to maintain effective information security practices in support of and partnering with business units and the mission of the Company. The goal of the Enterprise Information Security Group is to mitigate unacceptable risks to key business and customer information through the implementation of security controls, baseline security standards, awareness, and management oversight.
EISG is accountable to work with all business units to assist in mitigating information security risk to an acceptable level across the enterprise. They are the central point of contact for all information security incidents and centrally mange key security services based on enterprise risk exposure. Information Security is not one group's responsibility. Each and every employee plays a role in the Company's security profile. EISG will be accountable to educate and train employees on the role they play in the enterprise program.
EISG is looking for an IAM Engineer to join their team. This individual will work a hybrid schedule if local to Cincinnati, OH, or fully remote if not in Cincinnati.
Responsibilities:
Lead the implementation of application integrations of an enterprise-grade IGA tool (e.g., SailPoint, Saviynt), including design, configuration, integration, and deployment.
Partner with HR, IT, Security, Compliance, and business units to define identity lifecycle processes and access governance policies.
Collaborate with cross-functional teams and the business to develop and maintain role-based access control (RBAC) models aligned with business and compliance requirements.
Integrate IGA with key systems including Active Directory, Azure AD, HR platforms, and cloud services.
Design and implement access review and certification campaigns to meet regulatory and audit obligations.
Monitor, troubleshoot, and optimize IGA performance to ensure availability, scalability, and reliability.
Stay current on IAM/IGA trends and best practices to strengthen the organization’s security posture.
Collaborate with Identity and Access Management (IAM) engineering on enterprise LDAP directories, Meta Directory Replication, user and access provisioning workflows, lifecycle processes, access request workflows, and Azure AD.
Provide operational support for IAM services, including participation in off‑hours incident and change‑management rotations.
Proactively identify and resolve IAM issues, driving automation and continuous improvement.
Serve as a project lead or subject matter expert across multiple initiatives.
Review identified vulnerabilities and implement remediation actions.
Qualifications:
Hands‑on experience with IGA platforms (e.g., SailPoint, Saviynt).
Strong understanding of identity lifecycle management, provisioning/deprovisioning, RBAC, and access certifications.
Familiarity with regulatory frameworks (SOX, HIPAA, GDPR) and audit requirements.
Experience with cloud IAM (Azure AD, AWS IAM).
Proficient in scripting/development languages (JavaScript, PowerShell, Python, Perl) for automation.
Experience with Windows and Linux environments.
Basic SQL skills (queries, schemas, connections).
Understanding and use of APIs.
Experience with complex, distributed IAM environments is a plus.
Solid problem‑solving skills and a strong security‑focused mindset.
Ability to stay current on security trends and translate them into actionable improvements.
Strong communication and documentation skills; able to explain technical concepts clearly to both technical and non‑technical audiences, including leadership..
Ability to build and maintain strategic relationships across teams and external partners.
Business Unit:
AFG Enterprise Information Security
Salary Range:
Benefits:
We offer competitive benefits packages for full-time and part-time employees*. Full-time employees have access to medical, dental, and vision coverage, wellness plans, parental leave, adoption assistance, and tuition reimbursement. Full-time and eligible part-time employees also enjoy Paid Time Off and paid holidays, a 401(k) plan with company match, an employee stock purchase plan, and commuter benefits.
Compensation varies by role, level, and location and is influenced by skills, experience, and business needs. Your recruiter will provide details about benefits and specific compensation ranges during the hiring process. Learn more at http://www.gaig.com/careers.
*Excludes seasonal employees and interns.