At Allstate, we achieve remarkable outcomes when our team collaborates to safeguard families and their possessions from life's uncertainties. For over 90 years, our spirit of innovation has positioned us ahead of our customers' evolving needs, from advocating for safety regulations to leading in pricing sophistication and identity protection. Job Description As the Technology and Security Risk Management Manager, you'll oversee teams dedicated to assessing and validating technology and security controls throughout our organization. We are looking for a candidate with extensive knowledge in technology and cybersecurity risk management, control testing methodologies, and cybersecurity frameworks. Your skills in collaboration and driving continuous improvement will be essential. You will lead the creation and assessment of programs and procedures aimed at minimizing technology and cybersecurity risks, ensuring the safety of company information and assets while adhering to relevant industry regulations. Key Responsibilities • Lead and manage the execution of control testing activities focused on technology and security controls aligned with NIST 800-53. • Develop and sustain testing methodologies, procedures, and documentation standards. • Conduct control assessments, walkthroughs, and evidence reviews to evaluate design and operational effectiveness. • Work collaboratively with control and system owners, as well as cybersecurity teams, to ensure accurate control implementation and remediation. • Provide in-depth reporting on control testing outcomes, including findings, risk ratings, and actionable recommendations. • Monitor and track remediation efforts to validate corrective actions. • Support internal and external audits, regulatory exams, and risk assessments. • Continuously enhance control testing processes and tools to boost efficiency and effectiveness. • Stay updated on regulatory changes, cybersecurity threats, and industry best practices. • Oversee the evaluation and dissemination of guidance related to regulatory, contract, and industry requirements for cybersecurity governance; partner with Legal and business leaders to determine action plans and organize required documentation. • Foster the growth and development of team members in effective communication and interaction with both technical and business peers, and collaborate with Learning and Development to enhance team skill sets responsive to business needs. Experience 7 or more years of experience (Preferred) Experience utilizing NIST & COBIT frameworks (preferred) Supervisory Responsibilities This position has supervisory responsibilities. Skills Controls Testing, Cybersecurity, Employee Supervision, Information Security, Leadership, NIST 800-53, NIST Standards, Problem Resolution, Risk Assessments, Risk Management, Security Controls Compensation The compensation for this role is between $104,000.00 - $187,625.00 annually, based on experience and qualifications. The selected candidate will be required to undergo a background investigation. Joining our team is not just taking a job; it is a chance to elevate your skills, challenge the status quo, and influence the future of protection while advocating for causes that matter to you. Joining us means being a part of a greater mission, contributing to a winning team with a significant impact. Allstate does not typically sponsor employment-based visas for this position. It is against Indiana law for employers to discriminate against applicants based on veteran status. To view the EEO Know Your Rights poster for filing complaints regarding contract compliance, or the FMLA poster summarizing the Family and Medical Leave Act (FMLA), please refer to the respective resources. The Company is committed to hiring the most qualified individuals regardless of ancestry, age, color, disability, genetic information, gender, gender identity, gender expression, sexual orientation, marital status, and additional protected statuses.