Jobs

Apply Now

Applications processed via employer's online application form

Job Details

Location

Belfast, Northern Ireland

Posted

Dec 6, 2018

Closing Date

Dec 11, 2018

Share

Information Security Governance - InfoSec Business Office Manager- Northern Ireland

  • We build solutions that touch 16 million customers on a daily basis.

    You will work alongside people as passionate as you, focused on delivering the best possible user experiences.

    You will work in a highly collaborative environment primed to adapt to an ever-changing landscape and which places technology solutions at its core.

    You will thrive, you will think differently, you will challenge convention and have the freedom to act with integrity, intention and speed; you will be at the forefront of developing capabilities in support of Allstate’s global business model; you will deliver results and you will leave things better than you found them.

    Location

    Belfast/L’Derry/Strabane

    Job Description

    The successful candidate for the InfoSec Business Office Manager will contribute to the Information Security Program by being a trusted advisor to our business partners, ensure execution of business office services, and lead management of both the business office teams and operations of the Information Security Program/Council. A broad range of professional skills along with strong interpersonal skills will be required for problem-solving, collaboration with virtual cross-functional work groups, along with tracking and reporting of program status, compliance gaps and risks.  This resource is expected to serve as an advisor that can clearly articulate Allstate security policies, standards, and guidelines to both technical and business audiences alike.

    Responsibilities include (but aren't limited to): 

    • Oversight and coordination of AIS GRC program; metrics & reporting; enterprise security policy & standards; audit management; human capital planning and financial management (budget, CRE, ERE); support, track, and manage the security program; and security project prioritization/delivery process
    • Coordinating and liaising across multiple functional areas to facilitate the accomplishments of Information Security decisions and strategic goals.
    • Driving/ coordinating/ facilitating various work streams to deliver a more accountability for the Information Security framework and related processes
    • Managing typical critical / project-related tasks, including the coordination of risk, compliance & assurance activities
    • Working collaboratively with security delivery resources, technical SMEs, and various business partners / functions to support successful delivery of the overall program
    • Leading the day-to-day planning, preparation, coordination, communication and follow up for the Information Security Council
    • Participating in activities pertaining to portfolio management and execution
    • Developing and produce management reporting and associated metrics
    • Providing high-level guidance on security and information risk management approaches and outcomes as defined by program stakeholders and information security strategy
    • Maintaining, managing and monitoring stakeholder relationships, meeting schedules, minutes, RACI and partnering accountability
    • Promoting a compliant & risk-aware culture, ensure efficient and effective risk and compliance management practices by adhering to require standards and processes
    • Establishing and maintaining communication channels with stakeholders
    • Preparing presentations, reports, and other formal and informal communications to internal business partners and direct management.
    • Designing an approach to enable the enterprise to be proactive, make risk-based security decisions, meet regulatory and contractual requirements, and industry-accepted best practices
    • Recommending operationally feasible and cost-effective solutions to reduce risk, as appropriate
    • Promote sound security practice and accountability across Allstate business units, brands, and family of companies
    • Helping partners proactively maintain a strong cybersecurity preparedness and response posture
    • General assurance compliance program support, partnering with external auditors, security architects/engineers, and various program management areas as required
    • Responsible for building effective working relationships, making sound decisions, successfully making changes, initiating action and achieving results as a trusted advisor


    Essential Criteria 
    candidates should clearly state on their application form how they meet each of the essential criteria as these will be assessed during shortlisting and only these deemed to meet all of the below criteria will move forward to the next stage. 

    • Must be an EU citizen or possess a current UK Tier 1 Visa or Tier 2 visa and eligible to take up full time, permanent employment
    • Minimum 7 years of GRC (Governance Risk and Compliance) experience,
    • 5-7 years managing global direct reports 
    • Relevant postsecondary education and/or industry standard certifications preferred (i.e. ISACA- CISA, CISM; ISC2-CISSP; SANS Institute/GIAC; PCIP)
    • Previous program/project management and/or IT/Security experience
    • Previous experience of executive stakeholder management
    • practical working knowledge of cross-domain information security and risk management best-practices - basic understanding of IT security best practices by applying depth and breadth of expertise in multiple domains and security disciplines
    • Previous experience of writing quality documentation and/or presentations - Proficient in MS Office Pro Suite –  Power Point, Excel and Sharepoint


    Desirable Criteria
     

    • Basic knowledge of: PCI DSS 3.2, HIPAA applicable security / privacy controls, Sarbanes-Oxley (SOX) 404, ISO/IEC 27000 family of standards, NIST 800-53, NIST cybersecurity framework, and COBIT


    Closing Date:  Tuesday 11th December 2018

    Statement on Fair Employment and Equal Opportunities:

    Allstate NI wishes to ensure equal opportunity is given to all job applicants.  This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability.

    Applicants should note Allstate NI complete AccessNI background checks on all candidates offered a position.

     

Apply Now

Applications processed via employer's online application form