Cybersecurity Risk Reporting Lead

Where good people build rewarding careers.

Think that working in the insurance field can't be exciting, rewarding and challenging? Think again. You'll help us reinvent protection and retirement to improve customers' lives. We'll help you make an impact with our training and mentoring offerings. Here, you'll have the opportunity to expand and apply your skills in ways you never thought possible. And you'll have fun doing it. Join a company of individuals with hopes, plans and passions, all using and developing our talents for good, at work and in life.

Job Description

The Cybersecurity Risk Reporting resource will be part of the Allstate Information Security - Policy & Reporting team and lead metrics & reporting Information Security Governance activities. The Risk Reporting Lead is responsible for leading the development and reporting of key cybersecurity metrics collected and monitored by Allstate's Information Security (AIS) organization. Additionally, the Cybersecurity Reporting Analyst will support management in recommending and implementing additional metrics and furthering analytics capabilities using industry best practices. An ideal candidate will possess strong analytical and technical skills (cybersecurity-specific technical expertise preferred but not required), as well as business acumen. The role will work cross-functionally and the candidate should have excellent collaboration, influencing, and team building skills. The role will support the Security Assurance, Policy and Monitoring team in a cross-functional business analyst position. Focus areas will be metrics and reporting.

In addition, the lead will have extensive client interactions relating to technical security controls with a wide range of technology-based functions and business groups. Relevant skills include an understanding of business/technology risk, KPIs, thought leadership in designing and executing technology controls that mitigate those risks, and ability to keep up-to date with the latest technologies and potential cyber-threats.

A broad range of professional skills along with strong interpersonal skills will be required for problem-solving, collaboration with virtual cross-functional work groups, along with tracking and reporting of critical gaps to closure & final resolution. This resource is expected serve as a trusted advisor that can clearly articulate Allstate security policies, standards, and guidelines to both technical and business audiences alike.

In addition to the Dallas/Fort Worth area, we are open to candidates in the Charlotte, NC market to work in our offices there. Strong qualified candidates in other US geographic markets will also be given consideration as potential home-based professionals.

Job Qualifications

  • Minimum 5-7 years of experience in cyber performance metrics and reporting
  • Minimum 5-7 years of project management, consulting, and/or application security analyst experience
  • Practical experience delivering security consulting services to enterprise, typically obtained in 5-7 year, or related experience in information security
  • Knowledge of Information Security Industry frameworks as well as SAP Business objects/Data warehousing skills
  • Experience in performing data mining on large data sets using SAP Business object analysis tools
  • Knowledge and prior experience of statistical data analysis and acquiring data from various sources, analyzing results using statistical techniques and developing reporting capabilities with scripting, Tableau or alternate platform
  • Proficiency in Excel and relational database modeling
  • Excellent analytical & technical skills, able to research problems, determine root causes and solutions
  • Ability to build KPIs, KGIs, KRIs reports and balance scorecard from conceptualization through presentation
  • Experience in risk management in highly technical environments
  • Existing information security certifications desired, such as CISSP, CCSP, CISM, CISA
  • Be responsible for establishing strong working relationships within Allstate Information Security (AIS), outside AIS, as well as other brand/affiliate organizations
  • Demonstrate practical experience evaluating technical data or security analytics
  • Experience designing and implementing Information Security reporting and metrics
  • Excellent communication skills, written and verbal - this role requires interaction across the enterprise and regular interface with people at all organization levels
  • Coordinate Business As Usual (BAU) activities, overseeing monthly and quarterly metrics program. Provide assistance to management team to Identify metric anomalies/trends/outliers and challenge these accordingly
  • Proactively identify enhancement that will improve the security posture and identify cyber security control deficiencies within the organization
  • Ability to act independently and exercise good judgment as well as the ability to work cross functionally and create virtual teams is essential
  • Knowledge of security technologies (authentication, encryption, key management, sandboxing, VPNs, firewalls, intrusion detection/prevention), and security controls
  • Ability to evaluate technical risk and business impact and explain the impact of security issues to both technical and non-technical audiences
  • Superior attention to detail and focus on quality work packet delivery
  • Ability to work in a fast-paced & team environment, prioritize workload and meet deadlines
  • Work ethic based on a strong desire to exceed expectations. Experience working successfully in a very fast-paced, results-oriented environment
  • Excellent time management skills, ability to juggle multiple, competing priorities, with strength in identifying and implementing solutions to address the critical needs

In addition to the Dallas/Fort Worth area, we are open to candidates in the Charlotte, NC market to work in our offices there. Strong qualified candidates in other US geographic markets will also be given consideration as potential home-based professionals.

The candidate(s) offered this position will be required to submit to a background investigation, which includes a drug screen.

Good Work. Good Life. Good Hands®.

As a Fortune 100 company and industry leader, we provide a competitive salary - but that's just the beginning. Our Total Rewards package also offers benefits like tuition assistance, medical and dental insurance, as well as a robust pension and 401(k). Plus, you'll have access to a wide variety of programs to help you balance your work and personal life -- including a generous paid time off policy.

Learn more about life at Allstate. Connect with us on Twitter, Facebook, Instagram and LinkedIn or watch a video.

Allstate generally does not sponsor individuals for employment-based visas for this position.

Effective July 1, 2014, under Indiana House Enrolled Act (HEA) 1242, it is against public policy of the State of Indiana and a discriminatory practice for an employer to discriminate against a prospective employee on the basis of status as a veteran by refusing to employ an applicant on the basis that they are a veteran of the armed forces of the United States, a member of the Indiana National Guard or a member of a reserve component.

For jobs in San Francisco, please click "here" for information regarding the San Francisco Fair Chance Ordinance.

For jobs in Los Angeles, please click "here" for information regarding the Los Angeles Fair Chance Initiative for Hiring Ordinance.

It is the policy of Allstate to employ the best qualified individuals available for all jobs without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identity/gender expression, disability, and citizenship status as a veteran with a disability or veteran of the Vietnam Era.

Back to top