Job Opening ID
Sec Analyst – Info Sec Spec
# of Positions
Location – City, State
Why State Farm®?
Our commitment to customers makes us the No. 1 insurer of cars and homes in the United States.
This same commitment to our work force is how we got here and how we stay here. Our 90-year track record highlights State Farm as an employer of choice committed to providing career opportunities that last a lifetime.
From diverse backgrounds and talent, to meaningful work and comprehensive benefits, “Like a good neighbor…” isn’t just a slogan. It’s who we are and how we do business.
Check out our Video Gallery to learn more.
WHAT ARE THE DUTIES AND RESPONSIBILITIES OF THIS POSITION?
Analyzes, designs, and facilitates capabilities, solutions, or preventative/remediation controls to protect proprietary/confidential data and systems in accordance with industry standards and governance/compliance requirements
Synthesizes solution design, architectural patterns, policy and regulatory frameworks, privacy considerations, and risks in the creation of holistic solutions that span technologies and capabilities
Develops end-to-end security solutions leveraging existing or new capabilities, patterns, and/or processes
Works across platforms and technologies to design holistic security designs that treat identified risks and enable strategic and/or tactical business or IT solutions
Researches/investigates emerging business application security topics, threats, capabilities, and solution options to create/update policy and governance, technology strategies, solution architecture, and vulnerability assessments
Applies industry standard risk management techniques and knowledge across various business application security capabilities (i.e. technical, application, data and mobile) to determine effectiveness of controls and to create action plans that remediate identified risks
WHAT KNOWLEDGE AND SKILLS ARE NEEDED TO BE SUCCESSFUL IN THIS POSITION?
Demonstrates sound judgment in making decisions with respect to matters of moderate to high complexity and importance
Assists in budgeting and component/project planning
Participates in and/or leads vendor product reviews, evaluations, demonstrations, proofs of concept and implementations
Applies broad-based knowledge of security technologies with an in-depth/specialized knowledge of at least one security tool to perform daily tasks
Conducts architecture reviews to ensure security issues are appropriately addressed
Coordinates security related activities
Keeps abreast of business and IT industry trends and best practices to modify processes to meet changing needs and influence the direction of solutions
Applies systems analysis techniques, including consultations with users to determine security specifications
ITEMS OF NOTE
This architecture position will develop the vision, strategic direction, and road mapping for the Detect Respond Recover control architecture. Primary responsibilities include maturing the security architecture focusing on advancing threat detection/mitigation and engaging other areas to mature these capabilities.
*Lead product/technology evaluation and solution prototyping
*Become a SME for DRR Security capabilities
*Mature DRR Security architecture through industry research/trends, regulatory changes, & new capabilities
*Collaborate across business/architect communities to ensure complete & effective architecture definition
*Consult with architecture efforts outside of InfoSec to ensure the direction is understood and enabled
*Participate in DRR planning processes to prioritize and manage roadmaps
*Engage with Sectors to align Security capabilities with future strategies
*Engage with DRR enablement teams to align strategy/enablement/execution work
Previous experience/understanding in the following are required:
*Extensive experience with open source tools
*Ability to integrate/extend native functionality of products by developing code (Java, Python etc.)
*InfoSec education and/or security certs including CISSP/CRISC/GSEC/etc.
*Experience with Hadoop and other Big Data technologies
*Hands-on Unix/Linux experience to rapidly prototype via open source tools
*Past architecture experience developing strategies for security detection, incident response, and business recovery
*Leading research with internal/external entities and strategy creation
*Ability to navigate the organization and collaborate across locations
*Ability to build relationships across various levels of the organization
*Ability to cultivate effective working relationships & empower others
*Ability to adapt to a changing environment
*Ability to coach/mentor others
*Ability to foster innovation/encourage diversity of thought
*Strong familiarity with Systems technologies and processes
This position will have an 18-month incumbency period for a lateral move and a 6-month incumbency period for a promotional opportunity (beginning on the effective date of the position) which must be met before the employee can post for any other State Farm position. The incumbency period does not affect the at will relationship between State Farm and the employee and does not create an employment contract, nor contractual rights.
BENEFITS: TOTAL REWARDS
Our Total Rewards benefits package includes:
Competitive starting salary
Annual merit reviews
Annual bonus potential
You may also be eligible to participate in Medical, Dental, Life and Disability Insurance, Vision, 401(k) Plan, Credit Union, a fully funded retirement pension plan, and more.