Skip to main content

This job has expired

GRC Cloud Lead Consultant

Employer
Allstate Insurance Company
Location
Northbrook, Illinois
Salary
Not Specified
Closing date
Apr 3, 2019

View more

Category
IT
Job Type
Not Specified
Career Level
Not Specified

Job Details

Where good people build rewarding careers.

Think that working in the insurance field cant be exciting, rewarding and challenging? Think again. Youll help us reinvent protection and retirement to improve customers lives. Well help you make an impact with our training and mentoring offerings. Here, youll have the opportunity to expand and apply your skills in ways you never thought possible. And youll have fun doing it. Join a company of individuals with hopes, plans and passions, all using and developing our talents for good, at work and in life.

Job Description

**In addition to our home office in Northbrook, IL, we are open to candidates in the Dallas/Ft. Worth, TX, Charlotte, NC, & Phoenix, AZ markets to work in our offices there. Strong qualified candidates in other US geographic markets will also be given consideration as potential home-based professionals.**

This is your chance to join the team responsible for helping to integrate security into the development of Allstates cloud based applications that run and support the largest publicly held personal-lines insurer, which insures more than 17 million households with over 32 billion in annual revenues and 37,000+ employees internationally. The GRC Cloud Lead Consultant will be part of the Allstate Information Security - Assurance, Policy, Monitoring & Reporting (AIS-APMR) team and lead Cloud Information Security Governance activities. This includes working closely with the product, software, and infrastructure development teams to implement best practices within the cloud based environments. The individual will work closely with developers and system architects to diagnose, document, solution, and remediate any deviations from governance standards. Additional responsibility includes contributing to the evaluation, recommendations, and implementations of cloud security controls in an automated continuous integration/deployment environment.

In addition, this individual will have extensive client interactions relating to technical security controls with a wide range of technology-based functions and business groups. Relevant skills include an understanding of business/technology risk, thought leadership in designing and executing cloud / technology controls that mitigate those risks, and ability to keep up-to date with the latest technologies and potential cyber-threats.

A broad range of professional skills along with strong interpersonal skills will be required for problem-solving, collaboration with virtual cross-functional work groups, along with tracking and reporting of critical gaps to closure & final resolution. He/she is expected serve as a trusted advisor that can clearly articulate Allstate security policies, standards, and guidelines to both technical and business audiences alike.

Key Responsibilities

Work closely with Application Development, Cloud, Governance, and Compliance teams to help formulate and implement a strategy for cloud based security that is tailored to the specific risks facing the organization, including threat modeling and applications security advisement services.
Develop and maintain a balanced cloud security governance framework based on industry standards.
Ensure compliance with society, regulatory, and industry standards for cloud based security.
Continuously evaluate the organizations existing cloud security practices, define and measure security-related activities, and demonstrating improvements to the cloud programs within the organization.
Evaluate business strategies, requirements, and user needs, existing usage cloud platforms, technical capabilities, and overall cloud application maturity, and provides strategic guidance and best-practices based recommendations for implementing governance boards and proven best practices for cloud based application/platform development, deployment, and support.
Support lead security consultants in promoting and consulting on the positions that help strengthen and secure the organization by either following standards or helping direct others on technology positions.
Help facilitate review of changes in company processes, standards and technology to ensure the effectiveness of security controls to meet compliance requirements.
Help consult with stakeholders on requirements for new and existing business / technology solutions to assure compliance to compliance frameworks and internal standards and governing policies and procedures.
Responsible for building effective working relationships, making sound decisions, successfully making changes, initiating action and achieving results as a trusted advisor.

Job Qualifications

  • 5+ years of experience in secure application/platform development and security
  • 3+ years of project management, consulting, and/or application security analyst experience
  • Relevant postsecondary education and/or industry standard certifications preferred (i.e., CompTIA, Microsoft, EC-Council, ISACA, ISC2, SANS Institute/GIAC, EMC, Amazon, VMware), AWS Certified Solutions Architect, CompTIA Cloud+ Certification, CISSP, Certificate of Cloud Security Knowledge (CCSK)
  • Strong understanding of cloud security governance
  • Practical understanding and use of cloud computing and cloud security tools
  • Experience with establishing cloud security governance across an organization
  • Strong self-starter who has the ability to operate independently and demonstrates complete ownership over assigned objectives in a "semi-structured" environment, but also recognizes when guidance is needed
  • Strong understanding of IT security best practices by applying depth and breadth of expertise in multiple related disciplines
  • Understanding and Passion for Agile/XP/Scrum/Kanban, Test Driven Development built on User Stories and Continuous Integration/Testing/Delivery
  • Demonstrated success at leading cross-functional projects leveraging SDLC methodology. Basic knowledge of Security Analysis (manual and leveraging automated scanning tools). Familiarity with both static analysis and/or dynamic scanning tools
  • Excellent oral/written presentation skills with ability to communicate effectively with senior executive leadership; proficiency in preparation of presentations, analytical reports, and documents regarding program operational status, achievement and performance
  • Strong organizational skills, ability to effectively manage multiple, competing projects/priorities while achieving targeted completion results
  • Ability to stay up to date with the current cybersecurity threat landscape to account for changing circumstances when evaluating security risks
  • Ability to develop/enhance partnerships with key stakeholders
  • Ability to maintain technical proficiency via self or formal training
  • Proficient in MS Office Suite (Word, Excel, PowerPoint, OneNote, Project, Access, Visio) and SharePoint


The candidate(s) offered this position will be required to submit to a background investigation, which includes a drug screen.

Good Work. Good Life. Good Hands.

As a Fortune 100 company and industry leader, we provide a competitive salary but thats just the beginning. Our Total Rewards package also offers benefits like tuition assistance, medical and dental insurance, as well as a robust pension and 401(k). Plus, youll have access to a wide variety of programs to help you balance your work and personal life -- including a generous paid time off policy.

Learn more about life at Allstate. Connect with us on Twitter, Facebook, Instagram and LinkedIn or watch a video.

Allstate generally does not sponsor individuals for employment-based visas for this position.

Effective July 1, 2014, under Indiana House Enrolled Act (HEA) 1242, it is against public policy of the State of Indiana and a discriminatory practice for an employer to discriminate against a prospective employee on the basis of status as a veteran by refusing to employ an applicant on the basis that they are a veteran of the armed forces of the United States, a member of the Indiana National Guard or a member of a reserve component.

For jobs in San Francisco, please click "here" for information regarding the San Francisco Fair Chance Ordinance.

For jobs in Los Angeles, please click "here" for information regarding the Los Angeles Fair Chance Initiative for Hiring Ordinance.

It is the policy of Allstate to employ the best qualified individuals available for all jobs without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identity/gender expression, disability, and citizenship status as a veteran with a disability or veteran of the Vietnam Era.


Company

COMPANY INFORMATION The Allstate Corporation (NYSE: ALL) protects people from life's uncertainties with more than 113 million proprietary policies. Allstate offers a broad array of protection products through multiple brands and diverse distribution channels, including auto, home, life and other insurance offered through its Allstate, Esurance, Encompass, SquareTrade and Answer Financial brands. Allstate is widely known from the slogan "You're in Good Hands with Allstate." The Allstate Corporation is the largest publicly held personal lines property and casualty insurer in America. Allstate was founded in 1931 and became a publicly traded company in 1993. In 2023, Allstate was number 84 on the Fortune 500 list of largest companies in America. WHAT WE DO We’re more than insurance agents and claims representatives. We’re individuals with hopes, plans and passions. The biggest of which is helping people live smarter, safer lives. Doing so means continuing to re-imagine how we do what we do, the impact we can make on the world, ways we can each succeed in our own careers and actions we can take as a company that are good for all. To do that, we need all kinds of people – including lawyers, accountants, building engineers, project managers, marketing professionals, human resource specialists and so many more. WHO WE ARE – INCLUSIVE DIVERSITY    We hold each other accountable to encourage and embrace our collective differences. It’s our individual characteristics, values and beliefs, along with backgrounds and experiences that give us fresh perspective and purpose. We work harder, meet customer needs more effectively, share better, and identify more innovative ideas when we are accepted for who we are by the world around us. Our success comes from a chorus of many different voices. At Allstate, every voice counts.​ In our stand against racism, we’ve been making changes within Allstate. We’ve been listening, learning and engaging in change. We are focused on improving equity for all. Allstate is committed to long-term change not only in the way we conduct our business, but also for our employees. There’s a dynamic environment waiting for you here. You’ll find people with similar interests, as well as the many who’ll help expand your horizons. We believe in the power of connections. That’s why Allstate promotes diversity through a robust network of employee resource groups. It helps connect us all and supports our unique talents. Here are some of the available resource groups that actively support our employees: Abilities Beyond Limitations & Expectations African American Working Network Allstate Asian American Network Allstate Foster and Adoption Network Allstate PRIDE Allstate Veterans Engagement Team and Supporters Allstate Women’s Information Network Entrepreneurs at Allstate Families at Allstate Matter Native American Peoples at Allstate Professional Latino Allstate Network Young Professionals Organization WHY JOIN OUR COMPANY Allstate has been protecting people from life's uncertainties since 1931. We continuously develop and improve products and services so our customers can live well protected. For employees, we offer an environment that fosters innovative thinking and collaboration - where you'll be able to explore your ideas and feel proud of the work you do.  Our Benefits Allstate is dedicated to helping employees live happier and healthier lives. As a Fortune 100 company and industry leader, we provide a competitive salary and a benefits package that includes medical and dental insurance, tuition assistance, as well as a robust pension and 401(k). Plus, you'll have access to a wide variety of programs to help you balance your work and personal life - including a generous paid time off policy.  Growth and Development We support your desire to grow and provide opportunities to learn, explore new horizons, and follow your passion in a meaningful career. From access to hundreds of learning opportunities to in-house networking and rotational work experiences, Allstate is a place where you can forge your own path and expand your personal and professional potential. 
Company info
Website

Get job alerts

Create a job alert and receive personalized job recommendations straight to your inbox.

Create alert