The Product Security Engineering organization at Allstate is responsible for designing, building, and operating enterprise security controls as software products. The team applies modern software engineering practices to create scalable, reliable, and developer‑friendly security capabilities that are embedded directly into the enterprise technology ecosystem.
Responsibilities
- Design, build, and operate enterprise security controls as software products that integrate directly into the SDLC and core enterprise platforms.
- Own security control capabilities end‑to‑end, including architecture, implementation, deployment, and ongoing operational support in production.
- Write, test, and maintain high‑quality production code while meeting delivery and reliability expectations as a software engineer.
- Apply engineering best practices such as test‑driven development, paired programming, and continuous integration and deployment.
- Contribute to high‑level and low‑level system and component designs with a focus on scalability, reliability, and security outcomes.
- Continuously evaluate and adopt new technologies, frameworks, and patterns to improve the effectiveness and usability of security controls.
- Collaborate closely with product managers, platform teams, and partner engineering groups to align security control capabilities with enterprise needs.
- Participate in agile delivery ceremonies and contribute to a culture of fast feedback, incremental delivery, and continuous improvement.
Essential Skills
- Minimum of 3years of software engineering experience, with demonstrated ownership of production systems throughout the full software development lifecycle.
- Proficiency in one or more modern programming languages (e.g., Java, JavaScript).
- Hands‑on experience designing, building, and operating scalable distributed systems and cloud‑based applications, including microservices architectures.
- Demonstrated ability to design, develop, and integrate APIs and backend services, including REST‑based interfaces.
- Familiarity with modern development workflows and engineering practices such as test‑driven development, paired programming, and continuous integration and deployment.
- Experience collaborating effectively within agile delivery models, working closely with product managers, engineers, and partner teams.
- All applicants must demonstrate a legal right to work in the UK. Allstate is not providing sponsorship for this vacancy.
Additional Criteria for Lead and Expert Levels
- Minimum of 1year of demonstrated experience coaching or mentoring engineers, with evidence of improving individual or team technical capability over time.
- Proven ability to lead technical design and architecture decisions for complex, distributed systems, resulting in measurable improvements to scalability, security, reliability, or performance.
- Track record of driving cross‑team collaboration to deliver integrated solutions, achieving alignment across multiple product portfolios and stakeholder groups.
Desirable Skills
- Working knowledge of application and API security concepts, including common vulnerability classes (e.g., OWASP Top10) and attack techniques (e.g., MITRE ATT&CK).
- Experience implementing or integrating security mechanisms such as authentication, authorization, and identity‑based access controls within applications and services.
- Knowledgeable in secure software development practices and techniques, including behavior‑driven development or security‑focused testing patterns.
- Practical exposure to containerized and cloud‑native environments, including Docker, Kubernetes, and public cloud platforms such as AWS and/or Azure.
- Exposure to large language models (LLMs), machine learning concepts, or systems that incorporate AI‑driven capabilities.
- Ability to leverage AI‑assisted development tools (e.g., Copilot, Cursor) responsibly to improve developer productivity and code quality.
- Demonstrated commitment to building solutions that balance robust security guarantees with an excellent developer experience, without compromising one for the other.
Supervisory Responsibilities
This job does not have supervisory duties.
Benefits
- Competitive annual salary
- Corporate bonus scheme
- Pension scheme
- Annual performance‑related pay reviews
- Life assurance and income protection
- Flexible working options
- Hybrid working
- Private medical and dental insurance
- Access to an employee assistance programme
- Discounted gym membership
- Two paid volunteering days each year
- Cycle to work scheme
Posting closing date: Tuesday21st July2026{11.59pm}
Product Security Engineers (Multiple Levels) Hybrid employer: Allstate NI
At Allstate NI, we pride ourselves on fostering a collaborative and innovative work environment where our employees can thrive. As part of our European Digital Centre of Excellence, you will have access to continuous learning opportunities, mentorship, and a culture that prioritises engineering excellence. With competitive benefits including flexible working options, a corporate bonus scheme, and a commitment to employee well-being, Allstate is an exceptional employer for those looking to make a meaningful impact in the field of security consulting.