Cybersecurity Operations Manager

Answer Financial, an Allstate company, is one of the largest independent personal lines agency operations in the nation, providing auto and home insurance products directly to consumers through a broad network of marketing partners. Answer Financial is driven by innovation and focused on delivering great value to thousands of customers every day. We pioneered real-time online insurance quotes comparison and continue to aggressively expand into new technologies and exciting product offerings to better serve our customers. The Cybersecurity Operations Manager position is a hands-on IT administrative role that requires a high level of technical expertise. You will be responsible for a broad range of multi-tasking, including the day-to-day management of information security tools as well as significant responsibilities for the security administration of a wide variety of IT systems across the enterprise. This role interacts closely with associates from various IT teams -- including the application development, infrastructure, and business intelligence teams -- and with many other business areas throughout the organization. Additional responsibilities include access controls, security incident detection and response, security control documentation, and metrics. Working under general direction of the IT Director and his direct reports, you will support all corporate information security needs of 600+ employees in multiple US locations.  Essential Job Duties/Responsibilities: Serve as the subject matter expert (SME) for technical security: solutions, controls and architecture. Provide day-to-day administration and technical support for IT security systems. Provide technical security administrative duties for infrastructure related to firewalls, encryption, intrusion detection systems, vulnerability scanning, security monitoring tools, authentication, web filtering, identity management, access control systems, and their associated logs and processes. Provision and audit access controls on information systems containing sensitive data. Monitor system logs, SIEM tools and network traffic for unusual or suspicious activity. Interpret such activity and make recommendations for resolution. Perform risk and vulnerability assessments, followed by appropriate remedial action, to mitigate risk and ensure that systems are protected from known and potential threats and are free from known vulnerabilities. Contribute to IT risk identification, classification and response processes. Security incident response duties as a member of the Cyber Security Incident Response Team (CSIRT); Respond to critical security issues on a 24x7 on-call basis. Actively contribute to inter-departmental and cross-functional teams for the protection of information assets. Research and stay up-to-date on current securitythreats and vulnerabilities to relevant information systems.  Qualifications and Experience: Advanced knowledge of Windows Server administration; experience as an Active Directory domain administrator. Strong written and verbal communication skills.  Ability to communicate both high level proposals to management as well as detailed technical requirements to developers or administrators.  Familiarity with security best practices and leading enterprise-class tools/solutions for anti-virus, anti-spam, secure email, web filtering, log consolidation, and privileged access management etc. Experience with firewall rulesets, especially Palo Alto. Experience with Cisco network equipment a plus. Knowledge of security frameworks and compliance standards (e.g. NYDFS Cybersecurity Law, GLBA, PCI) desired. Experience with written (self-assessment questionnaire) and in-person securityaudits and assessments desired. Experience with Linux a plus. Working knowledge of regulatory requirements and security best practices.  Working knowledge of vulnerability assessment tools. 7 years in-depth experience in one or more information security domains. Experience administering security technologies and/or programs.   Education: Bachelor's degreerequired, preferably in Computer Science or a related field.
Salary Range: NA
Minimum Qualification
8 - 10 years

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.