Cyber Risk Security Assessor

• About Us

   

  At Allstate Northern Ireland, we believe it’s more than just a job.  We believe in allowing our people to choose the direction of their careers.  It’s about you, your future and where you want to get to.

   

  Opportunity is the hallmark of the Allstate career experience.  We invest heavily in our employees, offering long term career development, personal growth and investment in new technologies.  Every day is different, with new ideas, challenges, and rewards — no matter which team you join.

   

  We believe that inclusive diversity is crucial to creating a culture of mutual respect where the strengths and talents of each individual are recognised.  We like to leave things better than we found them and deliver results.  We do all of this while having fun and exploring personal passions.

   

  Join our team and you’ll find challenge and reward in a culture of innovation, support and balance.

   

   

  Location

   

  Belfast / Derry / Londonderry / Strabane

   

   

  Your role in the team

   

  Through its breadth of knowledge and understanding of information technology industry trends and emerging technologies, Security Governance protects Allstate assets and information.  Security Governance manages the data protection strategies for the company.  This is accomplished through the development, implementation and administration of programs that help address compliance requirements to state, federal and industry standards, while protecting their stakeholders and related information.
   
  This position is for a Cyber Risk Security Assessor in the Allstate Technology & Strategic Ventures (ATSV) Information Security department.  The Cyber Risk Assessor will be responsible for supporting the company’s efforts to find, assess and quantify security risks through business as usual cyclical assessments and ad hoc consultations.  This individual will be a key contributor managing operational activities to reduce risk to our company in close consultation with other Information Security, ATSV and business partners.  The analyst will have an understanding of information security best practices, risk assessment methodologies, and working across multi-functional teams. 

   

  • Conducts risk assessment at the network, system and application level.
  • Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.
  • Driving the company’s efforts to proactively identify, assess, and communicate the company’s information security risks
  • work in close partnership with internal information security and business representatives to scope assessments, gather documentation, interview clients, identify risks, document findings, and ensure transparent management of risks by following a structured risk assessment methodology.
  • works independently to lead and complete high-quality assessments across a diverse set of technologies, business functions, and complexity
  • This position will also proactively drive process improvements, overcome barriers to success, build professional relationships across the company, brief senior leaders, and mentor others.

   

   

  So, what are the essential criteria to apply?

   

  • Minimum of 4 years of IT experience, 2 of which are in a Security domain.
  • Previous information security risk assessment experience
  • Strong understanding of IT security best practices
  • Demonstrated ability to lead and participate in cross functional teams, including offsite, remote and offshore resources.
  • Ability to effectively communicate with technical and non-technical resources.
  • Direct knowledge and experience working with regulatory and risk frameworks such as: PCI, HIPAA, ISO, NIST, COBIT, US State Cyber Regulation, etc.
  • Demonstrated ability to stay abreast securing evolving technology such as cloud and mobile computing.
  • All candidates must be able to demonstrate their right to work in the UK

   

   

  We also have some desirable criteria

   

  • Knowledge and experience with ArcherGRC a plus
  • CISSP or CISM, or other security industry certification a plus.
  • Experience and knowledge of the Factor Analysis of Information Risk (FAIR) taxonomy is a strong plus.
  • Strong organizational skills.
  • Self-directed, works with minimal guidance, and recognizes when guidance needed.
  • Proficient in MS Office Suite (Word, Excel, Project, PowerPoint, Visio).
  • Experience evaluating and securing payment processing technology.

   

   

  What we offer

   

  As a leading employer we offer a generous benefits package that includes flexible annual leave entitlement, dental and healthcare insurance, an attractive pension package and discounts on gym memberships, public transport and parking.

   

  Allstate invests heavily in your development, as an employee you will have access to multiple world-class learning platforms and courses from our award-winning in-house Learning & Development team.

   

  We pride ourselves in providing clear career paths and opportunities for internal mobility allowing you to further develop within the organisation.

   

  We encourage a better work life balance and you’ll have the opportunity to apply for various flexible working arrangements.

   

   

  Closing Date:  Friday 15^th January 2021

   

   APPLY HERE: https://bit.ly/3pcRqOo 

   

  Statement on Fair Employment and Equal Opportunities

   

  Allstate NI wishes to ensure equal opportunity is given to all job applicants.  This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability.

   

  We are an equal opportunities employer.  We welcome applications from all suitably qualified persons. However, as women are currently under-represented in our workforce, we would particularly welcome applications from women.  All appointments will be made on merit.

   

  Applicants should note Allstate NI complete AccessNI background checks on all candidates offered a position.