Information Security Risk Assessment Delivery Lead (hybrid)

• About Us

   

  The world isn’t standing still, and neither is Allstate. We’re moving quickly, looking across our businesses and brands and taking bold steps to better serve customers’ evolving needs. That’s why now is an exciting time to join our team. You’ll have opportunities to take risks, challenge the status quo and shape the future for the greater good.

   

  You’ll do all this in an environment of excellence and the highest ethical standards – a place where values such as integrity, inclusive diversity and accountability are paramount. We empower every employee to lead, drive change and give back where they work and live. Our people are our greatest strength, and we work as one team in service of our customers and communities.

   

  Allstate operate a very flexible hybrid working policy that will allow you to design your working week in collaboration with your manager with a blend of remote and office working for NI based employees as well as condensed working patterns (4 day week/9 day fortnight). Employees based in GB will be employed on a permanent remote working contract.

   

  Join our team and you’ll find challenge and reward in a culture of innovation, support and balance. 

   

   

  Location

   

   

  Belfast / Derry / Londonderry / Strabane

   

   

  Your role in the team

   

  The Information Security Risk Assessment Delivery Lead directs and leads a team of assessors to proactively identify, assess, and communicate the company’s information security risks as a key component of the enterprise’s overall risk management program.

   

   

  • Independently oversee the delivery of high-quality assessments across a diverse set of technologies, business functions, and complexity. This includes but is not limited to assessments for internal and SAAS applications, network devices, control processes, business functions, and facilitating the ongoing analysis of enterprise-wide risks across Allstate and its family of companies.
  • Research and identify emerging trends in data threats and data protection; and implement programs that ensure or improve the effectiveness of risk management and protection strategies.
  • Collaborates in close partnership with internal auditors, privacy, legal, and information security and business representatives to scope, plan, and schedule assessment engagements to meet enterprise goals.
  • Maintain accountability for ensuring the quality and timeliness of all risk assessment and consulting deliverables and act as an initial escalation point to overcome barriers to success and roadblocks impeding the work.  
  • Build professional relationships across the company and work closely with and influence senior decision makers in other departments to identify, recommend, develop, implement, and support a risk informed decision and action framework.
  • Act as a change catalyst for a risk-based approach to delivery of services and systems.  Partner with cross functional teams to set and manage expectations; continually seeks opportunities to be a thought partner and increase internal business partner satisfaction and deepen relationships.
  • Develop and improve metrics, KPIs, and trending for the risk management activities and drive visibility and transparency of business value for completed work.

   

   

   

  So, what are the essential criteria to apply?

   

   

  • All candidates must evidence an existing right to work in the UK'
  • Bachelor’s degree or equivalent experience
  • 5+ years of experience in information technology or information security
  • Demonstrated ability to participate in and lead cross functional teams, including offsite, remote and offshore resources.
  • Direct experience conducting information security risk assessments.  Risk assessment experience may be waived if applicant can show experience in senior infrastructure or development roles where they have a deep understanding of technologies and platforms.
  • Strong understanding of IT security best practices
  • Excellent written and verbal communication skills, with the ability to tailor your communication style to the audience
  • Knowledge of Security Frameworks and how they map to risks.

   

   

   

   

  We also have some desirable criteria

   

   

  • Exposure to threat modeling
  • Direct experience with Archer GRC a plus
  • Demonstrated ability to stay abreast securing evolving technology such as cloud and mobile computing
  • Strong organizational skills
  • Self-directed, works with minimal guidance, and recognizes when guidance needed
  • Ability to effectively communicate with technical and non-technical resources

   

   

  What we offer

   

  As Digital DNA’s Workplace of the Year 2020 winners, we offer a generous benefits package that includes flexible annual leave entitlement, dental and healthcare insurance, an attractive pension package and discounts on gym memberships, public transport and parking.

   

  Allstate invests heavily in your development, as an employee you will have access to multiple world-class learning platforms and courses from our award-winning in-house Learning & Development team.

   

  We pride ourselves in providing clear career paths and opportunities for internal mobility allowing you to further develop within the organisation.

   

  We encourage a better work life balance and you’ll have the opportunity to apply for various flexible working arrangements.

   

   

   

  Apply Here: https://bit.ly/3H9Vqcu 

   

   

  Statement on Fair Employment and Equal Opportunities

   

  Allstate NI wishes to ensure equal opportunity is given to all job applicants.  This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability.

   

  We are an equal opportunities employer. We welcome applications from all suitably qualified persons. However, as women are currently under-represented in our workforce, we would particularly welcome applications from women. All appointments will be made on merit.

   

  Applicants should note Allstate NI complete AccessNI background checks on all candidates offered a position.

   

   

  The closing date for receipt of applications is Tuesday 23rd November 2021