At Allstate, great things happen when our people work together to protect families and their belongings from life’s uncertainties. And for more than 90 years, our innovative drive has kept us a step ahead of our customers’ evolving needs. From advocating for seat belts, air bags and graduated driving laws, to being an industry leader in pricing sophistication, telematics, and, more recently, device and identity protection.
Your role in the team
The Product Security Engineer partners in designing and building security solutions that will balance the need for speed and flexibility of the infrastructure and IaaS/PaaS/SaaS applications, with the need to protect Allstate against ongoing and potential security threats. This role needs to have the aptitude to understand new security strategies.
This position has been opened at Senior Consultant II and Lead Consultant.
Cyber Risk Assessment & Governance
Lead and execute enterprise, business-unit, and technology-specific cyber risk assessments, including inherent risk identification, control adequacy evaluation, residual risk determination, and risk prioritization.
Develop, enhance, and operationalize cyber risk assessment methodologies, frameworks, and assessment artifacts aligned to recognized standards (e.g., NIST CSF, NIST SP 800-53, ISO/IEC 27001, CIS, COBIT).
Regulatory, Compliance & Standards Alignment
Research, interpret, and apply global and regional cybersecurity regulations and requirements (e.g., NYDFS 500, GLBA, PCI DSS, SOX ITGCs, data protection and privacy regulations, contractual security requirements).
Program Development & Continuous Improvement
Design, enhance, and execute cybersecurity governance programs, policies, standards, procedures, and control requirements aligned to business and regulatory needs.
Contribute to the evolution of enterprise cybersecurity risk assessment (ECRA) capabilities, including risk taxonomies, metrics, and reporting
Stakeholder Communication & Advisory
Act as a trusted risk advisor to technology, engineering, and business leaders by explaining complex cybersecurity and regulatory topics in a practical, business-relevant manner.
Develop and deliver risk assessment summaries, executive briefings, and governance reports tailoredforsenior leadership, risk committees, and audit stakeholders.
A minimum of 3+yearsof experienceworking withCybersecurity risk management concepts (threats, vulnerabilities, impact, likelihood, controls) Cloud, SaaS, and third-party risk considerations Identity & access management, data protection, network security, vulnerability management, and secure SDLC concepts.
Aminimum of 1 year working withone ofeitherNISTCSF, NIST SP 800-53, ISO 27001/27002, CIS Controls, COBIT Regulatory frameworks relevant to financial services, insurance, or regulated industries.
Supervisory Responsibilities:
Posting Closing date: Wednesday 27th May 2026 {11.59pm}
Skills
Information Security Engineering, IT Security Operations, Risk Management, Security Tools, Stakeholder Engagement
Joining our team isn’t just a job — it’s an opportunity. One that takes your skills and pushes them to the next level. One that encourages you to challenge the status quo. One where you can shape the future of protection while supporting causes that mean the most to you. Joining our team means being part of something bigger – a winning team making a meaningful impact.
Why join us?
Allstate NI is proud to be Allstate’s European Digital Centre of Excellence—recent winners of ‘Best Use of Cloud Services’ at the Belfast Telegraph IT Awards 2024, and recognised for our community and sustainability impact at the 2024 Business in the Community Awards and Gold accreditation for Environmental Responsibility.
We’re a product-driven, cloud-first organisation delivering real outcomes through modern technology, a digital product-centric talent model, and a culture rooted in engineering excellence. Our teams work in cross-functional structures, guided by an outcome-based delivery approach that accelerates speed, agility, and value.
We offer:
• A generous, flexible benefits package including annual leave, healthcare and dental cover, pension, and lifestyle discounts
• Access to world-class learning platforms and award-winning L&D
• Clear career paths, internal mobility, and a strong focus on growth
• A people-first culture with flexible working options
Be part of a high-performing, socially responsible organisation where your work has purpose, and your growth is supported every step of the way.
Statement on Fair Employment and Equal Opportunities
Allstate NI wishes to ensure equal opportunity is given to all job applicants. This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability.
We are an equal opportunities employer. We welcome applications from all suitably qualified persons. However, as women are currently under-represented in our workforce, we would particularly welcome applications from women. All appointments will be made on merit.
Applicants should note Allstate NI complete AccessNI background checks on all candidates offered a position.
