Vulnerability Management Analyst
Company: Allstate Insurance
Posted on: September 15, 2020
The world isn't standing still, and neither is Allstate. We're
moving quickly, looking across our businesses and brands and taking
bold steps to better serve customers' evolving needs. That's why
now is an exciting time to join our team. As a leader in a
corporation with 83,000 employees and agency force members, you'll
have a hand in transforming not only Allstate but a dynamic
industry. You'll have opportunities to take risks, challenge the
status quo and shape the future for the greater good.
You'll do all this in an environment of excellence and the highest
ethical standards - a place where values such as integrity,
inclusive diversity and accountability are paramount. We empower
every employee to lead, drive change and give back where they work
and live. Our people are our greatest strength, and we work as one
team in service of our customers and communities.
Everything we do at Allstate is driven by a shared purpose: to
protect people from life's uncertainties so they can realize their
hopes and dreams. For 89 years we've thrived by staying a step
ahead of whatever's coming next - to give customers peace of mind
no matter what changes they face. We acted with conviction to
advocate for seat belts, air bags and graduated driving laws. We
help give survivors of domestic violence a voice through financial
empowerment. We've been an industry leader in pricing
sophistication, telematics, digital photo claims and, more
recently, device and identity protection. We are the Good Hands. We
don't follow the trends. We set them.
The Vulnerability Management Analyst will ensure continuous
vulnerability lifecycle management within the Allstate environment
including monitoring, collection, reporting, and assessment of
impact for vulnerability related data from vendors and internal
sources. This individual must form strong partnerships with
technical teams and provide strategy and prioritization to control
vulnerabilities in the environment in a timely and effective
* Perform as a vulnerability management SME in one or more of the
following areas: Microsoft platform (Server, workstation,
applications), Open Systems platforms (Linux, UNIX, VM Ware ESX),
Java, Adobe, Web Application, Java web app virtualization platforms
(e.g. WebSphere), Networking, Databases (Oracle, SQL Server, DB2,
IMS), and others.
* Have the ability to understand and develop enterprise policy and
technical standards with specific regard to vulnerability
management and secure configuration.
* Be able to successfully partner with other security and IT
professionals to assess potential impact from vulnerabilities
specific to Allstate's environment, and determine and implement
* Identify and recommend appropriate measures to manage and
remediate vulnerabilities and reduce potential impacts on
information resources to a level acceptable to the senior
management of the company.
* Build strong partnerships with technical teams to promote best
practices for managing vulnerabilities in an agile manner and
within cloud solutions.
* Ability to fully understand business requirements and work with
them to define appropriate solutions security objectives while
meeting the business need.
* Be a champion for vulnerability management and information
security including broadening awareness and use of the team's
services, education of security best practices and integration with
other business areas.
* Providing mentorship and support to teammates with regard to
vulnerability assessment, communication/rapport with other
divisions and various levels of leadership, technical expertise,
and career development.
* Develop and improve KPIs, metrics, and trending for vulnerability
* Participate and lead new projects as needed.
* Other duties as assigned
* Bachelors and/or Masters Degree or equivalent in Information
Security, Engineering, Computer Science, or related field and 2+
years experience in information security field.
* Familiar with industry standard security best practices and
vulnerability management processes including compliance
* Advanced experience with vended security tools.
* Demonstrate knowledge of IT security best practices including
operating systems(Windows, Unix, Linux), end-user application, and
* Demonstrate knowledge of networking concepts and devices
(Firewalls, Routers, Switches, Load Balancers, etc).
* Knowledge of PCI, HIPAA, ISO, NIST, and IT Controls.
* Experience working in very large enterprise environment with
* Self-directed, works with minimal guidance, and recognizes when
* Demonstrate ability to stay abreast securing evolving technology
such as cloud and mobile computing.
* Demonstrated ability to participate in cross functional teams,
including offsite, remote and offshore resources
* CISSP, GCIH, GPEN, or other industry certification or expected
completion of certification within 1 year of hire.
The candidate(s) offered this position will be required to submit
to a background investigation, which includes a drug screen.
Good Work. Good Life. Good Hands--.
As a Fortune 100 company and industry leader, we provide a
competitive salary - but that's just the beginning. Our Total
Rewards package also offers benefits like tuition assistance,
medical and dental insurance, as well as a robust pension and
401(k). Plus, you'll have access to a wide variety of programs to
help you balance your work and personal life -- including a
generous paid time off policy.
Learn more about life at Allstate. Connect with us on Twitter,
Facebook, Instagram and LinkedIn or watch a video.
Allstate generally does not sponsor individuals for
employment-based visas for this position.
Effective July 1, 2014, under Indiana House Enrolled Act (HEA)
1242, it is against public policy of the State of Indiana and a
discriminatory practice for an employer to discriminate against a
prospective employee on the basis of status as a veteran by
refusing to employ an applicant on the basis that they are a
veteran of the armed forces of the United States, a member of the
Indiana National Guard or a member of a reserve component.
For jobs in San Francisco, please click "here" for information
regarding the San Francisco Fair Chance Ordinance.
For jobs in Los Angeles, please click "here" for information
regarding the Los Angeles Fair Chance Initiative for Hiring
It is the policy of Allstate to employ the best qualified
individuals available for all jobs without regard to race, color,
religion, sex, age, national origin, sexual orientation, gender
identity/gender expression, disability, and citizenship status as a
veteran with a disability or veteran of the Vietnam Era.
Keywords: Allstate Insurance, Charlotte , Vulnerability Management Analyst, Executive , Charlotte, North Carolina
Didn't find what you're looking for? Search again!