Security Governance

Security Governance - Standards and Policy Lead Consultant (Hybrid) At Allstate, great things happen when our people work together to protect families and their belongings from life's uncertainties. For more than 90 years, our innovative drive has kept us a step ahead of our customers' evolving needs, from advocating safer cars to leading in pricing sophistication, telematics, and device and identity protection. Your role in the team The Cyber Resiliency Policy and Standards Lead Consultant is responsible for driving the modernization and efficiency of Cyber Resiliency governance through the strategic use of AI and automation. The role will lead the development, implementation, and continuous improvement of cyber resiliency policies, standards, and supporting documentation to ensure they are streamlined, consumable, and aligned with regulatory and operational requirements. Working closely with cross‑functional teams, the consultant ensures governance processes are auditable, scalable, and adaptable to emerging threats and technologies, while providing thought leadership, mentorship, and expert guidance to foster a resilient and risk‑aware organizational culture. Job Description Key Responsibilities Policy & Standards Lifecycle Optimization: Lead the design and implementation of AI‑ and automation‑driven workflows to streamline the review, update, and approval cycles of cyber resiliency policies and standards, reducing manual overhead and improving traceability between core documents and supporting materials. Governance Framework Development: Collaborate with business and technical stakeholders to define governance models, success metrics, and operational alignment strategies that embed cyber resiliency into enterprise risk management. Automation of Supporting Documentation: Use intelligent document processing and automation tools to ensure supporting materials (e.g., guidelines, procedures, templates) are consumable, contextually linked to policies and standards, and easy to maintain. Compliance Monitoring & Forensic Audits: Conduct ongoing and forensic audits of governance processes to ensure compliance with internal and external requirements, analyze metrics and trends, recommend enhancements, and report findings to leadership. Regulatory Interpretation & Application: Partner with Legal and Compliance teams to interpret regulatory, contractual, and industry requirements, translating these into actionable guidance for technical and business teams to ensure alignment with cyber resiliency goals. Knowledge Management & Accessibility: Oversee the organization and accessibility of governance artifacts, ensuring they are structured for usability, discoverability, and integration with enterprise knowledge platforms. Mentorship & Thought Leadership: Provide guidance and mentorship to junior team members and champion cyber resiliency best practices and innovation across the organization. Essential Skills 4+ years Policy and Standard Development & Governance 4+ years of experience in Cybersecurity Controls, Governance, Risk Management, or resiliency programs 1+ year of experience with AI‑driven automation to streamline the Policy and Standard processes Desirable Skills Relevant certifications such as CISA, CRISC, CISSP, CISM, or equivalent Experience communicating effectively with stakeholders at all levels (analyst to executive) Experience mentoring junior team members Supervisory Responsibilities This job does not have supervisory duties. Posting End date Thursday 4th December 2025 [11:59pm] Benefits A generous, flexible benefits package including annual leave, healthcare and dental cover, pension, and lifestyle discounts Access to world‑class learning platforms and award‑winning L&D Clear career paths, internal mobility, and a strong focus on growth A people‑first culture with flexible working options Be part of a high‑performing, socially responsible organisation where your work has purpose and your growth is supported every step of the way Statement on Fair Employment and Equal Opportunities Allstate NI wishes to ensure equal opportunity is given to all job applicants. This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability. We are an equal opportunities employer and welcome applications from all suitably qualified persons; however, as women are currently under‑represented in our workforce, we would particularly welcome applications from women. All appointments will be made on merit. Applicants will undergo full AccessNI background checks if offered a position. #J-18808-Ljbffr