AI SecOps Engineer

Nelnet is a diversified and innovative company committed to enriching lives through the power of service as a student loan servicer, professional services company, consumer loan originator and servicer, payments processor, renewable energy solutions, and K-12 and higher education expert.  For over 40 years, Nelnet has been serving its customers, associates, and communities.

The perks of working at Nelnet go beyond our benefits package. When you join the Nelnet team, you're part of a community invested in the success of each individual. That support comes through in our work, as we are united by our mission of creating opportunities for people where they live, learn, and work.

About Nelnet, Inc. Nelnet (NYSE: NNI) is a publicly  traded financial services and technology company  headquartered in Lincoln, Nebraska. Founded with roots in education finance,  Nelnet has grown into a diversified holding company  with primary businesses spanning  consumer lending, loan servicing, payments, and technology.

About the Role Nelnet is seeking an AI Sec Ops Engineer to own the security and compliance posture of our Enterprise  AI program. Reporting to the IT Director of AI Delivery, this role is the technical bridge between AI governance  policy and platform implementation

- embedded  in Shared Services and partnered closely with our Cyber Security  Group

(CSG).

This is not a policy role. You will be hands on keyboard, building and developing solutions directly - defining architecture standards, translating compliance requirements  into engineering guardrails, and making sure secure, responsible AI is baked in from the start - not bolted on at the end. You will start with Claude and scale to the full EA portfolio and custom Agent builds as the enterprise grows.

** Wh*
* ** a*
* ** t*
* ** Y*
* ** o*
* ** u Wi*
* ** l*
* ** l*
* ** O*
* ** w*
* ** n*
* +  
** C*
* ** S*
* ** G*
* ** P*
* ** a*
* ** r*
* ** tn*
* ** e*
* ** r*
* ** sh*
* ** ip:
** Own the working relationship with CSG on data residency, PII handling, access governance, and model security controls. Translate policy into guardrails  the delivery team and citizen developers can act on.

+  
** Se*
* ** c*
* ** u*
* ** r*
* ** ity*
* ** T*
* ** oo*
* ** l*
* ** i*
* ** n*
* ** g &*
* ** A*
* ** u*
* ** t*
* ** o*
* ** m*
* ** a*
* ** t*
* ** i*
* ** o*
* ** n**  **:
** Build and maintain security tooling, guardrail enforcement, and policy-as-code integrations across Enterprise AI platforms. Reduce manual review through automation where possible.

+  
** R*
* ** e*
* ** f*
* ** e*
* ** r*
* ** en*
* ** c*
* ** e I*
* ** m*
* ** p*
* ** l*
* ** e*
* ** men*
* ** t*
* ** a*
* ** ti*
* ** o*
* ** ns**  **:
** Develop reusable security components and patterns that delivery teams and citizen developers can drop into Agent builds  - making the secure  path the easy path.

+  
** Se*
* ** c*
* ** u*
* ** r*
* ** ity*
* ** O*
* ** b*
* ** s*
* ** er*
* ** v*
* ** a*
* ** bi*
* ** l*
* ** it*
* ** y**  **:
** Instrument AI platforms to detect anomalous behavior, access patterns, and policy violations. Build the detection layer, not just consume it.

** Y*
* ** o*
* ** u Wi*
* ** l*
* ** l*
* ** T*
* ** hr*
* ** i*
* ** v*
* ** e*
* ** H*
* ** e*
* ** r*
* ** e If*
* + You see security as an engineering discipline, not a compliance checkbox

+ You are energized by building systems that make compliance easier to do right than to skip

+ You default to "here's how we do this safely" rather than just "no"

+ You can hold a technical conversation with a developer and a risk conversation with a compliance stakeholder in the same day

** Wh*
* ** a*
* ** t*
* ** Y*
* ** o*
* ** u*
* ** B*
* ** r*
* ** i*
* ** n*
* ** g*
* _R_  _e_  _q_  _u_  _ir_  _e_  _d:_

+ 1-2 years hands-on experience applying security and compliance controls  to AI or

+ ML systems

+ Familiarity  with LLM-specific risks: prompt injection, data leakage,  model access control, output filtering

+ Experience defining architecture standards or technical guardrails

+ Familiarity  with data residency requirements, PII handling, and access governance in enterprise environments

+ Ability to translate security requirements into developer-facing guidance

+ Demonstrated ability to build and implement solutions directly, not just document or advise

_P_  _r_  _e_  _f_  _e_  _r_  _r_  _e_  _d:_

+ 2-4 years of industry experience

+ Familiarity  with Anthropic's  enterprise security model and data residency options

+ Cloud security background (AWS/Azure) applied to AI workloads

+

Experience with SOC I/II, FedRAMP, ISO 42001/42005, or NIST AI RMF

+ Experience working in SIEM or log aggregation platforms (e.g., Sentinel,  Splunk, Google Sec Ops) to investigate AI-related signals and anomalies

+ Relevant certifications: CISSP, CCSP, or AI-specific security credentials

** Pay range for this role is- $100,000 - $150,000 depending on experience

Our benefits package includes medical, dental, vision, HSA and FSA, generous earned time off, 401K/student loan repayment, life insurance & AD&D insurance, employee assistance program, employee stock purchase program, tuition…