ATSV - Security Governance
11d ago

Risk Management

  • Ensure the strategic alignment of information security with business strategy to support organizational objectives.
  • Identify and recommend appropriate measures to manage and mitigate risks and reduce potential impacts on information resources to a level acceptable to the senior management of the company.
  • Manage the review of changes in company processes, standards and technology to ensure the effectiveness of security controls to meet compliance requirements
  • Integrate security risk assessment activities into Allstate day to day processes.
  • Perform periodic assessments of information security risk.
  • Consult with stakeholders on requirements for new and existing business / technology solutions.
  • Ability to fully understand business requirements and work with them to define appropriate solutions security objectives while meeting the business need.
  • Partner with all areas of the business, including internal auditors, legal, IT and business partners
  • Develop and improve KPIs, metrics, and trending for the risk management and consulting function.
  • Respond to and assist with audits, assessments and compliance requests.
  • Participate and lead new projects as needed.
  • Serve as client liaison as needed on matters pertaining to Risk Management.
  • Promote and consult on the positions that help strengthen and secure the organization by either following standards or helping direct others on technology positions.
  • Act as a subject matter expert for the organization's information asset protection policies and procedures, and information technology best practices.
  • Provide mentoring and guidance to a team of risk professionals.
  • Develop and refine procedures and techniques used by the team.
  • Other duties as assigned.
  • Qualifications

  • Minimum 5 years of IT security experience
  • Strong people management skills and experience.
  • Experience in the insurance and / or financial industries required.
  • Demonstrated ability to participate in cross functional teams, including offsite, remote and offshore resources
  • Effective written, verbal communication skills. Ability to tailor communication style to audience at hand
  • Ability to effectively communicate with technical and non-technical resources
  • Strong organizational skills
  • Self-directed, works with minimal guidance, and recognizes when guidance needed
  • Proficient in MS Office Suite (Word, Excel, Project, PowerPoint, Visio)
  • Demonstrated ability to stay abreast securing evolving technology such as cloud and mobile computing.
  • Experience evaluating and securing payment processing technology.
  • Knowledge of PCI DSS, HIPAA, ISO, NIST, and IT Controls
  • Strong understanding of IT security best practices
  • CISSP or CISM, or other industry certification or expected completion of certification within 1 year of hire.
  • Shift timings : 11 AM - 8 PM

    Add to favorites
    Remove from favorites
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form