Product Security Engineers (Multiple Levels) Hybrid

At Allstate, great things happen when our people work together to protect families and their belongings from life's uncertainties. For more than 90 years, our innovative drive has kept us a step ahead of our customers' evolving needs.

The Product Security Engineering organization is responsible for designing, building, and operating enterprise security controls as software products. The group applies modern software engineering practices to create scalable, reliable, and developer-friendly security capabilities that are embedded directly into the enterprise technology ecosystem, enabling secure-by-default behaviours while minimizing friction for product and platform teams.

Product Security Engineers are software engineers who own the full software development lifecycle - from design and implementation through deployment and production support. They write and maintain production code, operate their services in real-world environments, and are accountable for the reliability, adoption, and effectiveness of the security controls they deliver. Success in this role is measured through outcomes such as control adoption, system reliability, and meaningful reduction of security risk.

• Design, build, and operate enterprise security controls as software products that integrate directly into the SDLC and core enterprise platforms.
• Own security control capabilities end-to-end, including architecture, implementation, deployment, and ongoing operational support in production.
• Write, test, and maintain high-quality production code while meeting delivery and reliability expectations as a software engineer.
• Apply engineering best practices such as test-driven development, paired programming, and continuous integration and deployment.
• Contribute to high-level and low-level system and component designs with a focus on scalability, reliability, and security outcomes.
• Continuously evaluate and adopt new technologies, frameworks, and patterns to improve the effectiveness and usability of security controls.
• Collaborate closely with product managers, platform teams, and partner engineering groups to align security control capabilities with enterprise needs.
• Participate in agile delivery ceremonies and contribute to a culture of fast feedback, incremental delivery, and continuous improvement.

• All applicants must demonstrate they have a legal right to work in the UK for employment at Allstate. Allstate is not providing sponsorship for this vacancy.
• Minimum of 3 years of software engineering experience, with demonstrated ownership of production systems throughout the full software development lifecycle which must include proficiency in one or more modern programming languages (e.g., Java, JavaScript).
• Hands-on experience designing, building, and operating scalable distributed systems and cloud-based applications, including microservices architectures.
• Demonstrated ability to design, develop, and integrate APIs and backend services, including REST-based interfaces.
• Familiarity with modern development workflows and engineering practices such as test-driven development, paired programming, and continuous integration and deployment.
• Experience collaborating effectively within agile delivery models, working closely with product managers, engineers, and partner teams to deliver outcomes.

• Minimum of 1 year demonstrated experience coaching or mentoring engineers, with evidence of improving individual or team technical capability over time.
• Proven ability to lead technical design and architecture decisions for complex, distributed systems, resulting in measurable improvements to scalability, security, reliability, or performance.
• Track record of driving cross-team collaboration to deliver integrated solutions, achieving alignment across multiple product portfolios and stakeholder groups.

• Working knowledge of application and API security concepts, including common vulnerability classes (e.g., OWASP Top 10) and attack techniques (e.g., MITRE ATT&CK).
• Experience implementing or integrating security mechanisms such as authentication, authorization, and identity-based access controls within applications and services.
• Knowledgeable in secure software development practices and techniques, including behaviour-driven development or security-focused testing patterns.
• Practical exposure to containerized and cloud-native environments, including Docker, Kubernetes, and public cloud platforms such as AWS and/or Azure.
• Exposure to large language models (LLMs), machine learning concepts, or systems that incorporate AI-driven capabilities.
• Ability to leverage AI-assisted development tools (e.g., Copilot, Cursor) responsibly to improve developer productivity and code quality.
• Demonstrated commitment to building solutions that balance robust security guarantees with an excellent developer experience, without compromising one for the other.

This job does not have supervisory duties.

Joining our team isn't just a job - it's an opportunity. One that takes your skills and pushes them to the next level. One that encourages you to challenge the status quo. One where you can shape the future of protection while supporting causes that mean the most to you.

Why join us? Allstate NI is proud to be Allstate's European Digital Centre of Excellence - recent winners of 'Best Use of Cloud Services' at the Belfast Telegraph IT Awards 2024, and recognised for our community and sustainability impact at the 2024 Business in the Community Awards and Gold accreditation for Environmental Responsibility.

We're a product-driven, cloud-first organisation delivering real outcomes through modern technology, a digital product-centric talent model, and a culture rooted in engineering excellence. Our teams work in cross-functional structures, guided by an outcome-based delivery approach that accelerates speed, agility, and value.

We offer a generous, flexible benefits package including annual leave, healthcare and dental cover, pension, and lifestyle discounts. Access to world-class learning platforms and award-winning L&D. Clear career paths, internal mobility, and a strong focus on growth. A people-first culture with flexible working options. Be part of a high-performing, socially responsible organisation where your work has purpose, and your growth is supported every step of the way.

Statement on Fair Employment and Equal Opportunities: Allstate NI wishes to ensure equal opportunity is given to all job applicants. This company will not discriminate on the grounds of race, gender (including gender reassignment status), sexual orientation, religious belief, political opinion, marital status, age or disability. We are an equal opportunities employer. We welcome applications from all suitably qualified persons. However, as women are currently under-represented in our workforce, we would particularly welcome applications from women. All appointments will be made on merit. Applicants should note Allstate NI complete AccessNI background checks on all candidates offered a position.