Lead Service Incident Manager - Cyber

At Allstate, great things happen when our people work together to protect families and their belongings from life’s uncertainties. And for more than 90 years our innovative drive has kept us a step ahead of our customers’ evolving needs. From advocating for seat belts, air bags and graduated driving laws, to being an industry leader in pricing sophistication, telematics, and, more recently, device and identity protection. 

Your role in the team

You will lead the Threat Detection and Response team for Allstate and our Family of Companies. Your responsibilities will include providing incident command for major enterprise security incidents and represent the Global Security Fusion Center among our key technology and business partners across the enterprise. You will be responsible for ensuring operational and strategic success of the service and team to help deliver on our mission. This team serves as the front door to the Global Security Fusion Center response services. Your role will enable quick response to security events as well as provide meaningful input through key partnerships to improving the security posture across the organization.

Primary Responsibilities

• Lead a team of Incident Handling Managers and their respective teams across a global footprint offering 24x7x365 Cyber Incident Response services.
• Develop, maintain, and evolve metrics.
• Manage relationship with MSSP vendor and ensure that SLAs and quality measures are being met.  Balance MSSP services with in-house response services.
• Maintain and enhance team training and career advancement plans.
• Strategic and fiscal management of response services, resources, and technology.
• Direct teams on process improvement, new technology acquisition, and staffing requirements.
• Responsible for overall ownership of all Cyber Incident Response and Forensics systems, capabilities, reports, and outcomes.
• Serve as a subject matter expert as it pertains to Cyber Incident Response processes and procedures, (e.g. during assessments, strategy development, etc.).
• Build and maintain a positive, high-performance work environment and culture for teams.
• Explain technical security topics and risks to non-technical staff and leaders.

Job Qualifications

Essential skills

• A minimum of 5 years in Incident Response services, Threat services, Forensic Service or Security Operations role
• A minimum of 2 years’ leadership experience including managing direct reports and responsible for a wider team
• Working technical knowledge of network security, operating system security, vulnerability management, common attacker techniques and exploits, encryption, and SIEM.
• Proven experience commanding investigations and directing cybersecurity incidents.
• Previous experience of development of metrics and measures for services and resources

Desirable skills

• Demonstrated ability to build strategic partnerships and lead indirect resources through influence
• Expert ability to adjust written and verbal communication based on audience’s role and technical knowledge level
• 10+ years of experience combined in technology and cybersecurity with progressive roles and leadership.
• Experience developing strategic direction and developing/maintaining financial plan for service area.
• Experience leading global operational services including scheduling, turnover, and team cohesion.
• Experience presenting and representing services to executive leadership and board level reporting.
• Continued self-driven hands-on learning, operations, and development in incident response and other cybersecurity areas.
• History of developing individual contributors into leaders and development plans for leadership level resources.

Supervisory Responsibilities

• This job has supervisory duties

Job posting end date: Monday 9th of December 2024

#LI - EM2 #Hybrid

Joining our team isn’t just a job — it’s an opportunity. One that takes your skills and pushes them to the next level. One that encourages you to challenge the status quo. And one where you can impact the future for the greater good.  

You’ll do all this in a flexible environment that embraces connection and belonging. And with the recognition of several inclusivity and diversity awards, we’ve proven that Allstate empowers everyone to lead, drive change and give back where they work and live. 

Good Hands. Greater Together.

What we offer

As Digital DNA’s Workplace of the Year 2020 & 2022 winners, we offer a generous benefits package that includes flexible annual leave entitlement, dental and healthcare insurance, an attractive pension package and discounts on gym memberships, public transport and parking. 

Allstate invests heavily in your development, as an employee you will have access to multiple world-class learning platforms and courses from our award-winning in-house Learning & Development team. 

We pride ourselves in providing clear career paths and opportunities for internal mobility allowing you to further develop within the organisation. 

We encourage a better work life balance and you’ll have the opportunity to apply for various flexible working arrangements.

Statement on Fair Employment and Equal Opportunities

Allstate NI wishes to ensure equal opportunity is given to all job applicants.  This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability.

We are an equal opportunities employer. We welcome applications from all suitably qualified persons. However, as women are currently under-represented in our workforce, we would particularly welcome applications from women. All appointments will be made on merit. 

Applicants should note Allstate NI complete AccessNI background checks on all candidates offered a position.

Posting End Date: