IT Security Governance Sr. Analyst

Northbrook, Illinois
Not Specified
Sep 02, 2016
Nov 01, 2016
Job Type
Not Specified
Career Level
Not Specified

Where good people build rewarding careers.

Think that working in the insurance field can't be exciting, rewarding and challenging? Think again. You'll help us reinvent protection and retirement to improve customers' lives. We'll help you make an impact with our training and mentoring offerings. Here, you'll have the opportunity to expand and apply your skills in ways you never thought possible. And you'll have fun doing it. Join a company of individuals with hopes, plans and passions, all using and developing our talents for good, at work and in life.

Job Description

The IT Security Governance Sr Analyst is responsible for managing and executing activities that support protection of data and information. The position manages projects to mitigate risks, conducts research to identify emerging trends in data protection, and implements programs that ensure or improve the effectiveness of risk management and protection strategies. Has a thorough understanding to stated security policies and how they are tested and adhered to in-line with industry best practices.

Allstate Investments manages approximately $78 Billion of assets. Our goal is to provide sustainable, competitive, risk-adjusted investment returns and investment-related services for the benefit of The Allstate Corporation. Investment performance for our portfolios has consistently provided excess returns for our customers, and we attribute that success in large part to the quality of our people. The size of the investment group exceeds 300 individuals across a variety of investment disciplines including, fixed income, equities, private debt and equity securities and commercial mortgages, as well as, finance, risk and technology. We recognize that our employees are our ultimate advantage and we seek to attract and retain highly qualified individuals with strong academic backgrounds, a deep interest in investments and a desire to be challenged. For additional information about Allstate Investments, LLC, visit our website at

Job Responsibilities

Conduct and manage business impact and / or risk assessment analysis both inside and outside the company (examples include physical threats, internet attacks, malicious code attacks, national security issues, and compliance with regulations) and assist with recommendations and / or mitigation strategies to management.

Review complex changes in company processes, standards and technology to ensure the effectiveness of risk mitigation strategies.

Conduct the analysis necessary to isolate, describe and resolve both real and potential threats that affect Allstate's assets.

Implement programs to assess, prevent and mitigate risk.

Develop and implement systems and business control procedures, programs and plans for key areas of the company.

Plan and monitor systems and business exercising and testing for controls and compliance; exercise and test the control procedures and strategies for different functional areas.

Develop, implement, document and administer standards and procedures to secure and protect Allstate assets.

Communicate between the business and technology areas for general requests associated with standards and governing policies and procedures.

Manage support to stakeholders on requirements for new and existing business / technology solutions to assure compliance to standards and governing policies and procedures.

Administer, maintain, develop and / or implement technology solutions related to access management plans, policies and / or procedures in support of ensuring compliance to standards and governing policies and procedures.

Lead in developing information asset protection policies and procedures and / or researching technology positions (trends, strategy and direction).

Job Qualifications

Education: College degree or equivalent work experience. 3-5 years work experience in application security or risk management, project management, or data protection.

Certifications in area of specialty are preferred. Examples include: CISSP, CSSLP, CISA, CISM, GIAC certs, CFE, CNP, CEH

The candidate(s) offered this position will be required to submit to a background investigation, which includes a drug screen.

Good Work. Good Life. Good Hands®.

As a Fortune 100 company and industry leader, we provide a competitive salary – but that's just the beginning. Our Total Rewards package also offers benefits like tuition assistance, medical and dental insurance, as well as a robust pension and 401(k). Plus, you'll have access to a wide variety of programs to help you balance your work and personal life -- including a generous paid time off policy.

Learn more about life at Allstate. Connect with us on Twitter, Facebook, Instagram and LinkedIn or watch a video.

Allstate generally does not sponsor individuals for employment-based visas for this position.

Effective July 1, 2014, under Indiana House Enrolled Act (HEA) 1242, it is against public policy of the State of Indiana and a discriminatory practice for an employer to discriminate against a prospective employee on the basis of status as a veteran by refusing to employ an applicant on the basis that they are a veteran of the armed forces of the United States, a member of the Indiana National Guard or a member of a reserve component.

For jobs in San Francisco, please see the notice regarding the San Francisco Fair Chance Ordinance.

It is the policy of Allstate to employ the best qualified individuals available for all jobs without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identity/gender expression, disability, and citizenship status as a veteran with a disability or veteran of the Vietnam Era.