Senior Technology & Cyber Risk Consultant (hybrid/remote) | Belfast, UK

At Allstate, great things happen when our people work together to protect families and their belongings from life's uncertainties. For more than 90 years, our innovative drive has kept us a step ahead of our customers' evolving needs.

Your role in the team:

The Senior Technology & Cyber Risk Consultant is responsible for executing and supporting activities that help identify, analyse, manage, challenge, aggregate, and report on risks across the organization. This role involves performing comprehensive control design assessments and operating effectiveness testing across technology and cybersecurity domains. The role ensures that the controls are appropriately designed, implemented correctly, and functioning effectively in alignment with NIST 800-53, NIST CSF, COBIT, and internal standards. This position requires solid technical acumen, deep understanding of technology and cyber control environments, and strong analytical capabilities. The ideal candidate is a self-starter, proactive problem solver, and someone able to work with minimal guidance while bringing forward new ideas, improvements, and opportunities to leverage AI and automation.

Key responsibilities:

• Execute assessments of technology and cybersecurity controls, evaluating both control design and operating effectiveness.
• Conduct evidence collection, walkthroughs, sampling, and reperformance activities to verify control behaviour.
• Identify control deficiencies, design weaknesses, operational gaps, and process improvement opportunities.
• Perform risk assessments across technology to identify emerging threats and evaluate the adequacy of control coverage.
• Analyse structured and unstructured data to assess risk trends, detect weaknesses, and support decision making.
• Support cyber resilience validation activities, including incident response, disaster recovery, and ransomware readiness.
• Communicate findings and collaborate with technology, engineering, and cybersecurity teams to support remediation and strengthen control posture.
• Prepare and help deliver simple risk reports for senior leadership, ensuring they are aware of key risks.
• Assist in enhancing methodologies, testing templates, control procedures, and documentation standards.
• Stay informed on evolving NIST 80053 guidance, cyber regulations, technology risk practices, and emerging threat landscapes.
• Identify opportunities to apply AI tools to streamline testing, evidence analysis, reporting, and continuous control monitoring.
• Recommend automation and scripting improvements to enhance testing quality, repeatability, and efficiency.
• Contribute to control standards, policy improvements, and control rationalization efforts.

Essential Skills:

• All applicants must demonstrate they have a legal right to work in the UK for employment at Allstate. Allstate is not providing sponsorship for this vacancy.
• Minimum of 3 years' experience performing IT control design and operating effectiveness testing across technology or cybersecurity domains.
• Demonstrated experience applying NIST 800-53, NIST CSF, or COBIT within risk, audit, or control assessments.
• Experience conducting walkthroughs, evidence collection, sampling, and reperformance, with documented findings and remediation tracking.
• Experience producing clear, structured risk or control reports and communicating results to technical and nontechnical stakeholders.

Desirable Skills:

• Proficiency with Excel (advanced), Power BI, or data analysis methods to identify risk trends.
• Exposure to Python, PowerShell, or automation/AI tools to streamline testing or evidence analysis.
• Hands-on experience with GRC platforms such as ServiceNow GRC, Archer, OneTrust, or LogicGate.
• Relevant certifications such as CRISC, CISA, Security+, ISO 27001 Lead Implementer/Auditor, CCSK/CCSP, or similar.

Supervisory Responsibilities:

This job does not have supervisory duties.

Joining our team isn't just a job - it's an opportunity. One that takes your skills and pushes them to the next level. One that encourages you to challenge the status quo. One where you can shape the future of protection while supporting causes that mean the most to you. Joining our team means being part of something bigger - a winning team making a meaningful impact.

Allstate NI is proud to be Allstate's European Digital Centre of Excellence - recent winners of 'Best Use of Cloud Services' at the Belfast Telegraph IT Awards 2024, and recognised for our community and sustainability impact at the 2024 Business in the Community Awards and Gold accreditation for Environmental Responsibility. We're a product-driven, cloud-first organisation delivering real outcomes through modern technology, a digital product-centric talent model, and a culture rooted in engineering excellence. Our teams work in cross-functional structures, guided by an outcome-based delivery approach that accelerates speed, agility, and value.

We offer:

• A generous, flexible benefits package including annual leave, healthcare and dental cover, pension, and lifestyle discounts.
• Access to world-class learning platforms and award-winning L&D.
• Clear career paths, internal mobility, and a strong focus on growth.
• A people-first culture with flexible working options.

Be part of a high-performing, socially responsible organisation where your work has purpose, and your growth is supported every step of the way.

Statement on Fair Employment and Equal Opportunities: Allstate NI wishes to ensure equal opportunity is given to all job applicants. This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability. We are an equal opportunities employer. We welcome applications from all suitably qualified persons. However, as women are currently under-represented in our workforce, we would particularly welcome applications from women. All appointments will be made on merit. Applicants should note Allstate NI complete AccessNI background checks on all candidates offered a position.