Send me more jobs like this

Cyber Security Assurance Consultant

Keywords / Skills : HIPAA, Information, Security, Risk, IT Security, NIST, Vulnerabilityt, Compliance, Sox, Audit

5 - 10 years
Posted: 2019-06-03

Industry
Insurance
Function
IT
Role
Software Engineer/ Programmer
Team Leader/ Technical Leader
Posted On
3rd Jun 2019
Job Description
• Currently, we have an opening for the position of Cyber Security – Allstate - Bangalore
Allstate Solutions Private Limited (www.allstate.com ): The Allstate Corporation, based in Chicago, USA is the largest publicly quoted personal lines insurer in the USA, with over US$30 billion in annual revenues; Allstate is established in the year 1931. Allstate was number 93 on the Fortune 500 list of largest companies in America. The Allstate Corporation encompasses approximately 70,000 professionals made up of employees, agency owners and staff. Allstate Solutions Private Limited (ASPL) was established in 2012 to provide high-quality software development services and business process outsourcing solutions in support of its U.S. parent's global operations. ASPL is a wholly owned subsidiary of Allstate Corporation. ASPL will play a strategic role in developing, transforming and maintaining the various technology platforms used within Allstate, to support it in its day to day business, looking after the different systems that you might expect one of the world's largest insurance giants to run.
If you are passionate about writing code that will crunch data from different source systems, creating a rock-solid technology and will not give up until the code is best in class, then Allstate is the place for you.
Cybersecurity – Assurance Consultant
Experience: 5 to 9 yrs
Location: Pune/ Bangalore

Key Responsibilities include (but not limited to):
Compliance Assessment support (Enterprise Standards and Policy).
• Help facilitate assessment reviews of individual business unit compliance to above leveraging manual questionnaires and/or Archer GRC compliance module.
• Determines all instances of overlapping questionnaires within silo compliance program efforts (SOX, PCI, HIPAA, etc).
• Contribute to defining Common Control framework capability in Archer GRC to cross map a set of controls to the requirements from different regulations and standards. The ultimate objective is that once control is tested, the test results can contribute to the assessment for multiple regulations and standards without duplicating work.

• Support team members and business processes managing the lifecycle and inventory of critical technology assets (monitoring, enumeration and classification of various regulatory and compliance information assets)
Compliance program support (PCI, HIPAA, SOX, SEC), scope management, along with 1st level triage of consultative requests (engaging lead consultants as required and when appropriate)
• Support senior and lead consultants, and provide triage coverage
• Consult with stakeholders on requirements for new and existing business/technology solutions to assure compliance to PCI, HIPAA, and internal standards and governing policies and procedures
• General consulting (security policy, enterprise standards, supporting documents). Must develop subject matter expertise across multiple security domains to help guide technology and security strategy, and communicate big-picture enterprise-wide security issues to team and decision makers
• Responsible for building effective working relationships, making sound decisions, successfully making changes, initiating action and achieving results.
Qualifications
• 2-3 years of IT security and/or IT audit experience preferred
• 1-2 years of project management/administration, consulting, and/or business security analyst experience
Base understanding of general concepts of PCI DSS, HIPAA applicable security/privacy controls (aligned to NIST/OCR), NIST cybersecurity framework, ISO/IEC 27000 series, general concepts associated with SOX legislation
• Ability to effectively work with technical and non-technical resources
• Demonstrated experience working as part of cross-functional teams, including offsite, remote and offshore resources
• Effective problem solver who processes and detail driven
• Effective communication skills, written and verbal
• Ability to tailor communication style to the audience at hand
• Understanding of IT security best practices
• Relevant postsecondary education and/or industry standard certifications preferred (i.e., CompTIA, Microsoft, EC-Council, ISACA, ISC2, SANS Institute/GIAC, PCIP)
• Ability to effectively manage multiple, competing projects/priorities while achieving targeted completion results
• Self-directed, works with minimal guidance, and recognizes when guidance needed, can work independently in a 'semi-structured' environment
• Ability to stay up to date with the current cybersecurity threat landscape to account for changing circumstances when evaluating security risks
• Ability to develop/enhance partnerships with stakeholders
• Strong organizational skills, ability to write quality documentation and/or presentations
• Ability to maintain technical proficiency via self or formal training
• Proficient in MS Office Suite (Word, Excel, PowerPoint, OneNote, Project, Access, Visio) and SharePoint

Please do send us your updated resume with below(mandatory) :

• Total Exp:

• Current CTC:

• Expected CTC:

• Joining time:

Availability for F2F Interview on Saturday ( 8th June 2019):

• Applied for Allstate within 6 Months:


About Company

Allstate Solutions Private Limited (www.allstate.com ): The Allstate Corporation, based in Chicago, USA is the largest publicly quoted personal lines insurer in the USA, with over US$30 billion in annual revenues; Allstate is established in the year 1931. Allstate was number 93 on the Fortune 500 list of largest companies in America. The Allstate Corporation encompasses approximately 70,000 professionals made up of employees, agency owners and staff. Allstate Solutions Private Limited (ASPL) was established in 2012 to provide high-quality software development services and business process outsourcing solutions in support of its U.S. parent's global operations. ASPL is a wholly owned subsidiary of Allstate Corporation. ASPL will play a strategic role in developing, transforming and maintaining the various technology platforms used within Allstate, to support it in its day to day business, looking after the different systems that you might expect one of the world's largest insurance giants to run.
If you are passionate about writing code that will crunch data from different source systems, creating a rock-solid technology and will not give up until the code is best in class, then Allstate is the place for you.
Similar Jobs
View All Similar Jobs
Walkin for you