Active Directory Data Security Engineer

• Job Title: Active Directory Data Security Engineer

  Ref: 27/10/ADD

  About Us

   

  At Allstate Northern Ireland, we believe it’s more than just a job.  We believe in allowing our people to choose the direction of their careers.  It’s about you, your future and where you want to get to.

   

  Opportunity is the hallmark of the Allstate career experience.  We invest heavily in our employees, offering long term career development, personal growth and investment in new technologies.  Every day is different, with new ideas, challenges, and rewards — no matter which team you join.

   

  We believe that inclusive diversity is crucial to creating a culture of mutual respect where the strengths and talents of each individual are recognised.  We like to leave things better than we found them and deliver results.  We do all of this while having fun and exploring personal passions.

   

  Join our team and you’ll find challenge and reward in a culture of innovation, support and balance.

   

   

  Location

   

  Belfast / Derry / Londonderry / Strabane

   

   

  Your role in the team

   

  The Active Directory team safeguards the confidentiality, integrity, and availability of information by mitigating security risks and threats to Allstate.  We help protect Allstate’s information assets in order to maintain customer and employee trust, enable the business to achieve its objectives, and contribute to shareholder value.

   

  As an Active Directory Data Security Engineer, you will assess risk and design and build security solutions that will protect Allstate against ongoing and potential security threats.  This role requires the ability to synthesize radical ideas, the aptitude to define new security strategies and the tenacity to get the job done — globally.

   

  • Drive Active Directory Data Security engineering for our enterprise
  • Research and evaluate emerging trends, threats and assess the overall security risks to the system
  • Identify and recommend appropriate measures to manage and mitigate risks and reduce potential impacts
  • Engineer and implement solutions to reduce risk
  • Work directly with IT and business partners to establish and enforce best practices, protection objectives, process improvements and effective security controls
  • Partner with governance, compliance, and risk management teams to ensure the system consistently meets the requirements for certification and accreditation
  • Develop and improve KPIs and metrics
  • Develop and refine procedures and techniques used by the team

   

   

  So, what are the essential criteria to apply?

   

  • Minimum of 4 years’ experience in a technical role
  • 2 years’ experience managing Active Directory as a data administrator with intimate knowledge of Active Directory Security (e.g. Users & Groups, ACLs/DACL, SIDs, SDDL and AD authentication)
  • Experience of queries using LDAP (Understand AD Objects, Classes, Attributes and have excellent knowledge on how common attributes work in the AD security space)
  • Experience in integrating applications with Active Directory (e.g. AuthN, AuthZ)
  • Experience in managing Active Directory understanding the complexities and challenges common to AD administration (e.g. Recycle bin, Nested Groups, Circular Groups, SID history, Token Bloat etc)
  • Clear understanding of security protocols and standards experienced in software and security architectures.
  • Must be a UK/RoI/EU citizen or possess a current UK visa and eligible to take up full time, permanent employment.  EU candidates must also demonstrate they are eligible to take up UK employment post-Brexit.

   

   

  We also have some desirable criteria

   

  • Expert PowerShell skills, particularly to manage users and groups using the AD cmdlets, the quest cmdlets and/or [system.directoryservices]
  • Strong logic, written and oral communication skills
  • Understands how to design and implement security tests in accordance with stated criteria
  • Experience understanding protocols, such as, SSL/TLS, CIFS, HTTP/S, DHCP, SMTP, LDAP/S, NFS, SNMP and DNS
  • Experience in networking concepts and services, such as, VPNs, IPsec, PKI and TCP/IP
  • Demonstrates an ability to bridge technology knowledge gaps between IT staff and corporate staff such as Legal, Compliance and Audit organizations
  • Able to work independently or within a team
  • Organized, responsive and highly thorough problem solver

   

   

  What we offer

   

  As Digital DNA’s Workplace of the Year 2020 winners, we offer a generous benefits package that includes flexible annual leave entitlement, dental and healthcare insurance, an attractive pension package and discounts on gym memberships, public transport and parking.

   

  Allstate invests heavily in your development, as an employee you will have access to multiple world-class learning platforms and courses from our award-winning in-house Learning & Development team.

   

  We pride ourselves in providing clear career paths and opportunities for internal mobility allowing you to further develop within the organisation.

   

  We encourage a better work life balance and you’ll have the opportunity to apply for various flexible working arrangements.

   

   

  Closing Date:  Tuesday 10th November 2020

   

  Apply Here: https://bit.ly/2G3ybGd 

   

  Statement on Fair Employment and Equal Opportunities

   

  Allstate NI wishes to ensure equal opportunity is given to all job applicants.  This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability.

   

  We are an equal opportunities employer.  We welcome applications from all suitably qualified persons. However, as women are currently under-represented in our workforce, we would particularly welcome applications from women.  All appointments will be made on merit.

   

  Applicants should note Allstate NI complete AccessNI background checks on all candidates offered a position.