Governance Delivery Lead (hybrid)

• About Us

   

  The world isn’t standing still, and neither is Allstate. We’re moving quickly, looking across our businesses and brands and taking bold steps to better serve customers’ evolving needs. That’s why now is an exciting time to join our team. You’ll have opportunities to take risks, challenge the status quo and shape the future for the greater good.

   

  You’ll do all this in an environment of excellence and the highest ethical standards – a place where values such as integrity, inclusive diversity and accountability are paramount. We empower every employee to lead, drive change and give back where they work and live. Our people are our greatest strength, and we work as one team in service of our customers and communities.

   

  Allstate operate a very flexible hybrid working policy that will allow you to design your working week in collaboration with your manager with a blend of remote and office working for NI based employees as well as condensed working patterns (4 day week/9 day fortnight).

   

  Join our team and you’ll find challenge and reward in a culture of innovation, support and balance. 

   

   

  Location

   

  Belfast/Derry-Londonderry/Strabane

   

  Your role in the team

   

  The Security Governance Specialist Lead Consultant develops and evaluates compliance with programs, processes, and procedures to mitigate cybersecurity risk and ensure protection of company information and assets; researches and develops interpretations of industry and government regulations, standards, and contract requirements for application to assigned area of operations.

   

   

  This person will be a key contributor managing and supporting company’s efforts to govern and report on cyber risk to the company in close consultation with other Information Security groups and business partners and will have knowledge and understanding of information technology industry trends and emerging technologies, Security Governance protects Allstate assets and information.  The Lead Consultant will understand information security best practices and will work across multi-functional teams.

   

   

   

  Responsibilities

   

  • Works with business and technical leaders to develop governance plan and metrics for assigned area; develops, communicates, and executes programs and processes that provide guidance and promote cybersecurity risk awareness and management in alignment with operational needs
  • Performs ongoing audits of governance process and procedure compliance; tracks metrics, analyzes results, and develops recommendations for changes and enhancements; communicates to business and technical leadership
  • Reviews and validates with Legal resources and communicates interpretations of regulatory, contract, and industry requirements for business and technical managers for cybersecurity governance and suggests application to assigned area; oversees the creation, organization, and maintenance of required filings and documentation
  • Provides leadership and mentoring for less experienced team members on assigned projects and in area of expertise
  • Provides support to stakeholders on requirements for new and existing business/technology solutions to assure compliance to standards and governing policies and procedures
  • Develops and expands knowledge of risk and governance management and demonstrates capability to communicate and explain complex regulatory topics
  • Ensures the strategic alignment of information security with business strategy to support organizational objectives
  • Reporting on governance decisions to stakeholders, auditors, and assessors as evidence of alignment to the established governance framework.
  • Participate and lead new projects as needed

   

  So, what are the essential criteria to apply?

   

  • All candidates must evidence an existing right to work in the UK
  • 4 or more years of related experience
  • Strong understanding of IT security best practices.
  • Knowledge of cybersecurity compliance and control requirements such as: PCI DSS, ISO and NIST.

   

  The ideal candidate will demonstrate the following:

   

  • Demonstrates risk management knowledge in situations of a difficult nature for a large project; demonstrates sufficient knowledge, training, and experience to successfully conduct risk management without requiring support and instruction from others, while training members of the functional area.
  • Ability to describe security practices to users and management; demonstrates mastery of security in practical applications of a difficult nature; possesses sufficient knowledge, training, and experience to be capable of successfully delivering security products and services without requiring support and instruction from others
  • Advanced decision-making skills and ability to escalate when appropriate
  • Ability to establish and manage relationships with internal and external partners
  • Advanced time and project management skills including ability to prioritize and organize
  • Work effectively in a team environment; perform well in a face-paced environment
  • Advanced knowledge of Microsoft Suite (Word, Excel, PowerPoint)
  • Ability to think conceptually, analytically and creatively
  • Good oral and written communication skills
  • Ability to analyze data and apply it to problem resolution

   

  We also have some desirable criteria

   

  • Archer Administration
  • Certified Cloud Security Professional (CCSP)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • Certificate of Cloud Security Knowledge (CCSK)
  • Practitioner (CSX)
  • Project Management Professional (PMP)

   

   

  What we offer

   

  As Digital DNA’s Workplace of the Year 2020 & 2022 winners, we offer a generous benefits package that includes flexible annual leave entitlement, dental and healthcare insurance, an attractive pension package and discounts on gym memberships, public transport and parking.

   

  Allstate invests heavily in your development, as an employee you will have access to multiple world-class learning platforms and courses from our award-winning in-house Learning & Development team.

   

  We pride ourselves in providing clear career paths and opportunities for internal mobility allowing you to further develop within the organisation.

   

  We encourage a better work life balance and you’ll have the opportunity to apply for various flexible working arrangements.

   

   

  Statement on Fair Employment and Equal Opportunities

   

  Allstate NI wishes to ensure equal opportunity is given to all job applicants.  This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability.

   

  We are an equal opportunities employer. We welcome applications from all suitably qualified persons. However, as women are currently under-represented in our workforce, we would particularly welcome applications from women. All appointments will be made on merit.

   

  Applicants should note Allstate NI complete AccessNI background checks on all candidates offered a position.

   

   

  The closing date for receipt of applications is Thursday 22nd September 2022