At Allstate, great things happen when our people work together to protect families and their belongings from life’s uncertainties. And for more than 90 years our innovative drive has kept us a step ahead of our customers’ evolving needs. From advocating for seat belts, air bags and graduated driving laws, to being an industry leader in pricing sophistication, telematics, and, more recently, device and identity protection.
Job Description
Job Responsibilities
Conducts risk assessment at the network, systems, platforms and application level.
Involved in addressing and providing guidance on wide range of security issues including architectures, platforms including Public Cloud, electronic data traffic, and network access.
Driving the company’s efforts to proactively identify, assess, and communicate the company’s information security risks to leadership and board.
Ensure compliance with security policies and standards.
Deep understanding of Cyber programs such as Threat Management, Secure SDLC, Security Architecture, Network and Data Protection.
Work in close partnership with internal information security and business representatives to scope assessments, gather documentation, interview clients, identify risks, document findings, and ensure transparent management of risks by following a structured risk assessment methodology
Works independently to lead and complete high quality threat-based risk assessments across a diverse set of technologies, business functions, and platforms.
This position will also proactively drive process improvements, overcome barriers to success, build professional relationships across the company, brief senior leaders, and mentor others.
Experience
Experience with information security risk management framework, assessment, audit and controls based on industry standard frameworks (i.e. NIST CSF; ISO; HiTrust, FAIR)
Experience with regulatory requirements (i.e. PCI; GDPR; HIPPA; CCPA; etc.)
Experience using GRC tools and technologies in support of the assessment/audit process (RSA Archer, Security Scorecard, Bitsight, etc.)
Experience gathering information from a range of different sources to help identify weaknesses in security controls
Expert with security control design, development, implementation, and monitoring
Minimum of 5 years of IT experience in either an infrastructure or development background with proficiency in Cyber Risk Assessments.
Certifications: CISSP/ CISA/ CEH
Hours of work
1Pm to 9.30Pm, Mon – Fri;
Flexibility to meet business needs as required.
Full time only.
Primary Skills
Customer Centricity, Digital Literacy, Inclusive Leadership, Learning Agility, Results-Oriented
Joining our team isn’t just a job — it’s an opportunity. One that takes your skills and pushes them to the next level. One that encourages you to challenge the status quo. And one where you can impact the future for the greater good.
You’ll do all this in a flexible environment that embraces connection and belonging. And with the recognition of several inclusivity and diversity awards, we’ve proven that Allstate empowers everyone to lead, drive change and give back where they work and live.
Good Hands. Greater Together.®
The Allstate Corporation is one of the largest publicly held insurance providers in the United States. Ranked No. 84 in the 2023 Fortune 500 list of the largest United States corporations by total revenue, The Allstate Corporation owns and operates 18 companies in the United States, Canada, Northern Ireland, and India. Allstate India Private Limited, also known as Allstate India, is a subsidiary of The Allstate Corporation. The India talent center was set up in 2012 and operates under the corporation's Good Hands promise. As it innovates operations and technology, Allstate India has evolved beyond its technology functions to be the critical strategic business services arm of the corporation. With offices in Bengaluru and Pune, the company offers expertise to the parent organization’s business areas including technology and innovation, accounting and imaging services, policy administration, transformation solution design and support services, transformation of property liability service design, global operations and integration, and training and transition.
Learn more about Allstate India here.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Other
Industries
Technology, Information and Internet
Referrals increase your chances of interviewing at Allstate by 2x