PhoenixRecruiter Since 2001
the smart solution for Phoenix jobs

Cybersecurity GRC Expert (Security Architect)

Company: Allstate Insurance Company
Location: Phoenix
Posted on: November 23, 2020

Job Description:

The world isn't standing still, and neither is Allstate. We're moving quickly, looking across our businesses and brands and taking bold steps to better serve customers' evolving needs. That's why now is an exciting time to join our team. As a leader in a corporation with 83,000 employees and agency force members, you'll have a hand in transforming not only Allstate but a dynamic industry. You'll have opportunities to take risks, challenge the status quo and shape the future for the greater good. You'll do all this in an environment of excellence and the highest ethical standards - a place where values such as integrity, inclusive diversity and accountability are paramount. We empower every employee to lead, drive change and give back where they work and live. Our people are our greatest strength, and we work as one team in service of our customers and communities. Everything we do at Allstate is driven by a shared purpose to protect people from life's uncertainties so they can realize their hopes and dreams. For 89 years we've thrived by staying a step ahead of whatever's coming next - to give customers peace of mind no matter what changes they face. We acted with conviction to advocate for seat belts, air bags and graduated driving laws. We help give survivors of domestic violence a voice through financial empowerment. We've been an industry leader in pricing sophistication, telematics, digital photo claims and, more recently, device and identity protection. We are the Good Hands. We don't follow the trends. We set them. Job Description LOCATION THIS POSITION IS OPEN NATIONWIDE TO ALL OUR TECHNOLOGY HUBS IN TEMPE, AZ OR CHICAGO, IL OR CHARLOTTE, NC OR IRVING, TX. THIS CAN ALSO BE A REMOTE HOME-BASED WORKER POSITION FOR THE RIGHT RECOURCE Enterprise information security architecture is a key component of the information security technology governance process at any organization of significant size. More and more companies are implementing a formal enterprise security architecture process to support the governance and management of IT. The Cybersecurity GRC Expert will be part of the Cyber Consulting Services team within the Allstate Information Security - Security Innovation, Strategy, Analytics, and GRC division. The mission of Cyber Consulting Services is to provide cross functional capabilities, knowledge transfer, and foster integrated AIS governance strategy that supports organizational objectives while mitigating information security risks across the enterprise. This team also provides technical oversight and expert level guidance to many strategic efforts to expand information security capabilities and improve security outcomes. We help enable our cultural shift left to a "secure from the start" mentality, aligned with Allstate's digital transformation. This role is critical to integrating ITbusiness objectives and effectively managing cyber risk, and meeting compliance requirements. A broad range of technical cybersecurity and architecture skills along with strong interpersonal skills will be required for problem-solving, collaboration with virtual cross-functional work groups, along with tracking and reporting of program status, compliance gaps and risks. Soft skills, technical aptitude, and security knowledge sufficient to help ensure alignment to our AIS guiding principles, strategic framework, and target state maturity goals while adjusting to an ever-changing threat landscape. The successful candidate will contribute to the Information Security Program and architecture by being a trusted advisor that can clearly articulate Allstate security policies, standards, and guidelines to both technical and business audiences alike. This resource is expected to interface with subject matter experts, architects, security engineering, team leads, legal, privacy, senior and executive leadership (business and IT). Key Responsibilities include (but not limited to) Transformative Growth Develop full stack security architecture to support cyber resilience for Quantum (TG) Participate and contribute to the development of a future-focused, technical security architecture Engage with Security Architecture teams to capture security requirements and acceptance criteria, socialize and communicate architectural standards created Enable cultural change to mature compliance-driventactical approaches to risk-based and business-oriented strategic approaches toward security Guidance of information security and assurance best practices across the full stack application and data security, operating system and platform security, network and physical security, policies and procedures Collaborate with security delivery resources, technical SMEs, and various business partners functions to support successful delivery of the overall program Security Strategy and Cybersecurity Step Change Programs Perform collaboration with organizational stakeholders for analysis of the current state to identify program and technology gaps, redundancies, and opportunities for improvement Partnering and collaborating with stakeholders and executives from a technical security engineer architect's viewpoint and evaluating the execution plan of strategic AIS Cybersecurity Step Change Program as follows Security expert rigor on technical control deployment, implementation, adoption, operational effectiveness, and reporting that is representative of progress towards the reduction of risk Conduct an in-depth analysis of program approach, existing solutions and gathered requirements in alignment with risk mitigation and in relation to the complex environment Interrogate initiatives definition of done and mini charters to validate desired outcome and effort is focused on practical risk reduction capabilities and document concerns and or opportunities for improvement Identify potential program and technology gaps, redundancies, risks, and opportunities of improvement to initiativeprogram success including cost benefit and timeline efficiencies Assess whether the state of the program and projects' completion vs. timeline is reasonable, interdependencies between projects and if they are logically sequenced Recommending industry best practices and component solutions while leveraging knowledge of controls, technologies, and capabilities in use within Allstate businesses Key Responsibilities Cont' Cybersecurity, Architecture GRC Consulting Consultative services around the acquisitionselection of appropriate enterprise security controls to be implemented and executed (inclusive of management controls, process controls, technical controls and physical controls) Oversee "Three Lines of Defense" model between various risk control management functions Provide consultative services to control owners across security domains Provide knowledge and expertise to set direction, optimize risks and resources, and monitor performance and compliance to achieve organizational objectives Facilitate and enable assurance functions to ensure that controls are designed and operating effectively, while ensuring compliance requirements are met consistently Consult on tuning, modifying and hardening security policies based on risk and business strategy Help facilitate continuous improvement and integration of GRC services and capabilities including leading in roadmap development, and maturity assessments Promoting a compliant risk-aware culture, ensure efficient and effective risk and compliance management practices by adhering to required standards and processes Job Qualifications Required Over 7 years' of direct experience in Information Security Technology across multiple disciplines and domains including Governance, Risk, and Compliance 3 years of recent Enterprise Information Security Architecture experience Serves as a security expert in application development, database design, network andor platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. In depth knowledge of cybersecurity defense-in-depth best practices, GRC, infrastructure architecture, engineering, operations, DevOps, cloud networking architecture, cloud operations, security, automation and orchestration. Experience with common application security architecture and vulnerabilities (e.g. OWASP Top 10), attack techniques and remediation tacticsstrategies. Experience with common enterprise infrastructure (OS platforms, directory services, networking infrastructure, appliances, middleware, common security infrastructure) Executive communication skills, both written and verbal - Ability to tailor communication of complex and technical issues to cross functional audiences for executive decision making Strong decision-making capabilities, with a call-to-action focus Self-starter with an ability to work independently in a "semi-structured" environment Experience with enterprise level programproject management Preferred Full stack security architecture or experience working as an enterprise level senior security consultant with large scalecomplex environments Relevant post-secondary education andor industry standard certifications (i.e. ISACA- CISA, CISM, CRISC, CGEIT ISC2- CCSP, CSSLP, CISSP, CISSP-ISSAP SANS InstituteGIAC AWS Certified Solutions Architect PCI SSC ISAQSAPCIP SABSA EC-Council CNDA) Proficiency with PCI DSS 3.2, HIPAA applicable security privacy controls, Sarbanes-Oxley (SOX) 404, ISOIEC 27000 family of standards, NIST 800-53, NIST cybersecurity framework, and COBIT The candidate(s) offered this position will be required to submit to a background investigation, which includes a drug screen. Good Work. Good Life. Good HandsRegistered. As a Fortune 100 company and industry leader, we provide a competitive salary - but that's just the beginning. Our Total Rewards package also offers benefits like tuition assistance, medical and dental insurance, as well as a robust pension and 401(k). Plus, you'll have access to a wide variety of programs to help you balance your work and personal life including a generous paid time off policy. Learn more about life at Allstate. Connect with us on Twitter, Facebook, Instagram and LinkedIn or watch a video. Allstate generally does not sponsor individuals for employment-based visas for this position. Effective July 1, 2014, under Indiana House Enrolled Act (HEA) 1242, it is against public policy of the State of Indiana and a discriminatory practice for an employer to discriminate against a prospective employee on the basis of status as a veteran by refusing to employ an applicant on the basis that they are a veteran of the armed forces of the United States, a member of the Indiana National Guard or a member of a reserve component. For jobs in San Francisco, please click "here" for information regarding the San Francisco Fair Chance Ordinance. For jobs in Los Angeles, please click "here" for information regarding the Los Angeles Fair Chance Initiative for Hiring Ordinance. It is the policy of Allstate to employ the best qualified individuals available for all jobs without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identitygender expression, disability, and citizenship status as a veteran with a disability or veteran of the Vietnam Era.

Keywords: Allstate Insurance Company, Phoenix , Cybersecurity GRC Expert (Security Architect), Other , Phoenix, Arizona

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Other Jobs


CDL-A HOUSEHOLD GOODS MOVER OWNER OPERATOR TRUCK DRIVER JOBS
Description: Job Description: Drive How You Want. Drive Where You Want. Whether it's regional or OTR Owner Operator truck driver job opportunities that you're on the hunt for, Mayflower has a number of immediate (more...)
Company: Mayflower
Location: Prescott Valley
Posted on: 12/2/2020

Short Term Special Education Resource Teacher (20/21 SY)
Description: We re looking for an exceptional Special Education Teacher Self-contained for a full-time position in Surprise, AZ for the 2020-2021 School year. Job Requirements for Special Education Teacher: (more...)
Company: TherapyTravelers
Location: Sun City West
Posted on: 12/2/2020

Special Education Teacher - Self-contained (20/21 SY)
Description: We re looking for an exceptional Special Education Elementary Teacher for a self-contained autism program for a full-time position in Sun City, AZ for the 2020-2021 School year. This position will be (more...)
Company: TherapyTravelers
Location: Sun City West
Posted on: 12/2/2020


Special Education Teacher - Severe/Profound (20/21 SY)
Description: We re looking for an exceptional Special Education Teacher for a full-time position in Sun City, AZ for the 2020-2021 School year. The caseload has the highest needs, intellectually disabled, and medically (more...)
Company: TherapyTravelers
Location: Sun City West
Posted on: 12/2/2020

Primary Care Physician - Moon Valley, Phoenix AZ
Description: At OptumCare , we share what might be seen as a surprisingly simple goal: making the health system work better for everyone. We look for people who relentlessly push themselves to go farther. For (more...)
Company: UnitedHealth Group
Location: Sun City
Posted on: 12/2/2020

Special Education Teacher-Self Contained (SY 2020-2021)
Description: We re looking for an exceptional Special Education Teacher Emotional Disability Program: Level D for a full-time position in Phoenix, AZ for the 2020-2021 School year. This special education teacher (more...)
Company: TherapyTravelers
Location: Sun City
Posted on: 12/2/2020

Warehouse Worker - Package Handler
Description: Shift: Sunrise/Preload 3:30 AM - 9:00 AM Evening 5:00 PM - 10:30 PM WAREHOUSE WORKER PACKAGE HANDLER Find out what youll become as a Package
Company: United Parcel Service
Location: Prescott Valley
Posted on: 12/2/2020

Deliver with Uber on your schedule
Description: Deliver with Uber on your schedule Flagstaff, AZ 2854 C2-212216 Deliver with Uber. Earn on your schedule. Work on your schedule. Deliver for a few hours in the mornings, every night, or just on weekends (more...)
Company: Uber Eats
Location: Prescott
Posted on: 12/2/2020

Special Education CCB Teacher (SY 2020-2021)
Description: We re looking for an exceptional Special Education Resource Teacher for a full-time position in Peoria, AZ for the 2020-2021 School year. This teacher will work 37.5 hours per week with 7th and 8th-grade (more...)
Company: TherapyTravelers
Location: Sun City
Posted on: 12/2/2020

RN-ICU/Multi-Care Unit, Seasonal, Nights
Description: Job Description Job Summary Ideal for ICU nurses who want to care for their patients
Company: Yavapai Regional Medical Center
Location: Prescott Valley
Posted on: 12/2/2020

Log In or Create An Account

Get the latest Arizona jobs by following @recnetAZ on Twitter!

Phoenix RSS job feeds