Where good people build rewarding careers.
Think that working in the insurance field can't be exciting, rewarding and challenging? Think again. You'll help us reinvent protection and retirement to improve customers' lives. We'll help you make an impact with our training and mentoring offerings. Here, you'll have the opportunity to expand and apply your skills in ways you never thought possible. And you'll have fun doing it. Join a company of individuals with hopes, plans and passions, all using and developing our talents for good, at work and in life.
As an Active Directory Data Security Engineer, you will assess risk and design and build security solutions needed to that will protect Allstate against ongoing and potential security threats. This critical role requires the ability to synthesize radical ideas, the aptitude to define new security strategies and the tenacity to get the job done Globally.
Drive Active Directory Data Security engineering for our enterprise
Research and evaluate emerging trends, threats and assess the overall security risks to the system
Identify and recommend appropriate measures to manage and mitigate risks and reduce potential impacts
Engineer and implement solutions to reduce risk
Work directly with IT and business partners to establish and enforce best practices, protection objectives, process improvements and effective security controls
Partner with governance, compliance, and risk management teams to ensure the system consistently meets the requirements for certification and accreditation
Develop and improve KPIs and metrics
Develop and refine procedures and techniques used by the team
3+ years of experience managing Active Directory as a "Data Administrator" and has intimate knowledge of Active Directory Security. (Users and Groups, understand ACLs/DACL, SIDs, and SDDL and AD authentication)
Ability to craft and execute complex AD queries using LDAP, understand AD Objects, classes, attributes and strong working knowledge on how common attributes work in the AD security space
Experience integrating applications with Active Directory (AuthN, AuthZ)
Experience managing the AD and understanding the complexities and challenges common to AD administration (Recycle bin, Nested Groups, Circular Groups, SIDhistory, Token Bloat etc.)
Expert PowerShell skills, particularly to manage users and groups using the AD cmdlets, the quest cmdlets and/or [system.directoryservices]
Strong logical, written and oral communication skills
Clear understanding of security protocols and standards and have experience with software and security architectures
Understanding of designing and implementing security tests in accordance with stated criteria
Understanding protocols, such as, SSL/TLS, CIFS, HTTP/S, DHCP, SMTP, LDAP/S, NFS, SNMP and DNS
Experience in networking concepts and services, such as, VPNs, IPsec, PKI and TCP/IP
Demonstrates an ability to bridge technology knowledge gaps between IT staff and corporate staff such as Legal, Compliance and Audit organizations