Senior Data Protection Engineer

The Hanover Insurance Group·Remote(Australia, Canada, Germany, United Kingdom, United States)
Software Development
Excel

WFA Digital Insight

The demand for skilled data protection engineers has surged in recent years, with a reported 28% increase in job postings in 2025 alone. As companies navigate the complexities of remote work and rising cyber threats, professionals with expertise in security information and event management (SIEM) and intrusion detection/prevention systems (IDS/IPS) are in high demand. The Hanover Insurance Group, with its rich history of delivering on promises, is now seeking a Senior Data Protection Engineer to bolster its IT security organization. This role stands out for its emphasis on strategic alignment and continuous improvement, making it an attractive opportunity for those looking to make a meaningful impact in the industry. Before applying, candidates should be aware that a strong understanding of SIEM architecture, log ingestion pipelines, and event normalization is essential, as well as expertise with IDS/IPS technologies and signature tuning.

Job Description

About the Role

The Senior Data Protection Engineer will play a critical role in The Hanover Insurance Group's IT Security organization, focusing on the administration, maintenance, and optimization of the company's on-premise Security Information and Event Management (SIEM) platform and Intrusion Detection/Prevention Systems (IDS/IPS). This position will work closely with cybersecurity, infrastructure, and governance teams to ensure robust, reliable, and continuously improving threat detection, alerting, and response capabilities. The ideal candidate will have a strong background in managing and maintaining on-premise SIEM and IDS/IPS security solutions, with a deep understanding of security log formats, network protocols, and enterprise network architecture.

Day-to-day responsibilities will involve managing the end-to-end administration of the SIEM platform, including log ingestion, parsing, correlation rules, dashboards, and alerting, as well as administering and maintaining on-premise IDS/IPS platforms to ensure accurate detection and prevention of malicious activity. The role will also involve working closely with network and security teams to implement policy updates, rule changes, and architectural improvements.

The Senior Data Protection Engineer will be part of a dynamic team that values collaboration, innovation, and continuous learning. With a strong emphasis on operational excellence and governance, this role offers the opportunity to make a significant impact on the company's security posture and contribute to the development of its security strategies.

What You Will Do

  • Manage, maintain, and optimize the on-premise SIEM platform, including log ingestion, parsing, correlation rules, dashboards, and alerting
  • Develop and tune detection rules, correlation logic, and use cases aligned with threat intelligence and organizational risk
  • Oversee log source onboarding, configuration, and validation across servers, applications, network devices, and security tools
  • Conduct regular SIEM health checks, capacity planning, and lifecycle management
  • Administer and maintain on-premise IDS/IPS platforms, ensuring accurate detection and prevention of malicious activity
  • Tune signatures, policies, and rulesets to reduce false positives while maintaining strong detection coverage
  • Monitor IDS/IPS performance, availability, and event trends to identify anomalies or operational issues
  • Coordinate with network and security teams to implement policy updates, rule changes, and architectural improvements
  • Ensure both SIEM and IDS/IPS solutions are aligned with security governance frameworks, compliance requirements, and organizational policies
  • Maintain documentation for system configurations, processes, runbooks, and governance controls

What We Are Looking For

  • Minimum 5 years of hands-on experience administering, managing, and maintaining on-premise SIEM and IDS/IPS security solutions
  • Demonstrated experience ensuring high availability, governance alignment, and operational effectiveness of security monitoring technologies
  • Strong understanding of SIEM architecture, log ingestion pipelines, correlation logic, and event normalization
  • Expertise with IDS/IPS technologies, signature tuning, network traffic analysis, and threat detection methodologies
  • Proficiency with security log formats (syslog, JSON, CEF, LEEF, etc.)
  • Familiarity with network protocols, firewall rules, and enterprise network architecture
  • Experience with Linux/Windows server administration as it relates to security tooling
  • Ability to analyze complex security issues and develop effective solutions
  • Strong communication and collaboration skills, with the ability to work effectively with technical and non-technical teams

Nice to Have

  • Experience with cloud-based SIEM and IDS/IPS solutions
  • Knowledge of emerging threats and technologies, such as AI-powered security tools
  • Familiarity with IT service management frameworks, such as ITIL
  • Certification in security-related fields, such as CISSP or CEH

Benefits and Perks

  • Competitive salary and benefits package
  • Opportunity to work with a dynamic and innovative team
  • Collaborative and supportive work environment
  • Professional development opportunities, including training and certification programs
  • Flexible working arrangements, including remote work options
  • Access to cutting-edge security technologies and tools
  • Comprehensive health and wellness programs
  • Generous paid time off and holiday package

How to Stand Out

  • Tip: Make sure to highlight your experience with SIEM and IDS/IPS systems in your resume and cover letter, and be prepared to provide specific examples of your work in these areas during the interview process.
  • To stand out, consider creating a portfolio of your work, including examples of your experience with security log formats, network protocols, and enterprise network architecture.
  • When preparing for the interview, research the company's security posture and be prepared to discuss your thoughts on how to improve it.
  • Don't be afraid to ask questions during the interview process, such as what the typical career path is for a Senior Data Protection Engineer, or what opportunities there are for professional development and growth.
  • Be prepared to negotiate salary and benefits, and consider factors such as the cost of living in your area and the industry standard for similar positions.
  • When evaluating the company and role, consider factors such as the company culture, the team you will be working with, and the opportunities for growth and development.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.