Description

At Allstate, great things happen when our people work together to protect families and their belongings from life's uncertainties. And for more than 90 years, our innovative drive has kept us a step ahead of our customers' evolving needs. From advocating for seat belts, air bags and graduated driving laws, to being an industry leader in pricing sophistication, telematics, and, more recently, device and identity protection.

Job Description
We are seeking a highly skilled engineer with deep expertise in cloud technologies, infrastructure automation, cybersecurity, and security tool development. This role is primarily hands-on, involving the design, implementation, and maintenance of advanced security architectures and automation pipelines. The engineer will work closely with global stakeholders to drive innovation, automation, and operational efficiency.

The Allstate Information Security (AIS) organization is responsible for managing cybersecurity across Allstate. This includes Governance, Risk & Compliance (GRC), Access Management, Network Security, and Threat Response Services. AIS ensures the confidentiality, integrity, and availability of Allstate's systems and data.

This position is part of the Automation Enablement team within the Global Security Fusion Center. As a Service Consultant, Automation Enablement Security Engineer Expert, you will focus on improving service delivery by partnering with incident response, threat intelligence, and other security teams to identify automation opportunities. You will develop solutions that enhance response capabilities, streamline repeatable tasks, and strengthen integration between service areas and their internal customers.

This role reports to the Service Manager of Automation Enablement.

Key Responsibilities - What You Will Be Doing

• Lead collaboration efforts with product owners and stakeholders to define user stories and translate business requirements into scalable technical solutions using industry's best practices and modern technologies.
• Drive project execution by managing timelines, proactively addressing challenges, and contributing both independently and as a senior member of cross-functional teams.
• Develop secure, maintainable, and high-performance code that meets all functional and non-functional requirements, ensuring alignment with stakeholder expectations and quality standards.
• Deliver enterprise-grade software solutions in compliance with established release and change management protocols.
• Perform advanced automation and web development across multiple languages and platforms, providing technical leadership and mentoring to junior developers as needed.
• Architect and implement CI/CD pipelines, integrating source control, automated testing, and deployment workflows for both on-premises and cloud-based environments.

Essential Qualifications:

• 7 years or more of professional software development experience
• Hands-on experience with cloud platforms such as Microsoft Azure, AWS, or equivalent expertise.
• Proven ability to design and deliver scalable software architectures, including RESTful APIs, microservices, and cloud-native solutions.
• Strong programming expertise with significant experience in Java or Python, Spring, JavaScript, and/or SQL/NoSQL databases.
• Deep understanding of secure software design patterns, secure coding practices, and software supply chain security.
• Practical experience applying cryptographic concepts, including encryption, hashing, and key management using industry-standard libraries.
• Solid knowledge of identity and access management (IAM) and authentication/authorization standards, including SSO, OAuth 2.0 / OpenID Connect (OIDC), SAML, and JWT.
• Strong experience with cloud infrastructure services, including networking, compute, storage, monitoring, and IAM.
• Proficiency with Infrastructure as Code and DevOps practices, including Terraform (env0 preferred) and tools such as Jenkins, Ansible, or Puppet.
• Hands-on experience with containerization and virtualization technologies, including Docker, Podman, and VMware. (Or equivalent)

Desired Qualifications:

• Microsoft Azure Solutions Architect Expert certification (AZ-305) or AWS Solution Architect certification.
• Experience with Security Orchestration, Automation, and Response (SOAR) platforms, such as Microsoft Sentinel/Defender, IBM Resilient, Palo Alto Cortex XSOAR, or Splunk Phantom.
• Background across core cybersecurity domains, including threat intelligence, vulnerability management, penetration testing, and incident response.
• Oracle Certified Associate (OCA) Java certification or equivalent Java experience.
• Industry-recognized security certifications, such as CISSP, CEH, or CompTIA Security+.
• Experience working with containerization and orchestration platforms, including Kubernetes. (or equivalent)

Experience• 7 or more years of experience (Preferred)Supervisory Responsibilities• This job does not have supervisory duties.
#LI-MF1



Skills
Access Management, Cloud Computing, Cloud Infrastructure, Cloud Infrastructure Services, Cloud Platform, Containerization, Cybersecurity, Cyber Threat Intelligence, Identity Access Management (IAM), Information Security, Java, JavaScript, Kubernetes, Microservices Architecture, Microsoft Azure, Network Security, Python (Programming Language), RESTful APIs, Software Design, Software Design Patterns, Software Development, Software Solutions, Spring Framework

Compensation
Compensation offered for this role is 110,000.00 - 181,025.00 annually and is based on experience and qualifications.

The candidate(s) offered this position will be required to submit to a background investigation.

Joining our team isn't just a job - it's an opportunity. One that takes your skills and pushes them to the next level. One that encourages you to challenge the status quo. One where you can shape the future of protection while supporting causes that mean the most to you. Joining our team means being part of something bigger - a winning team making a meaningful impact.

Allstate generally does not sponsor individuals for employment-based visas for this position.

Effective July 1, 2014, under Indiana House Enrolled Act (HEA) 1242, it is against public policy of the State of Indiana and a discriminatory practice for an employer to discriminate against a prospective employee on the basis of status as a veteran by refusing to employ an applicant on the basis that they are a veteran of the armed forces of the United States, a member of the Indiana National Guard or a member of a reserve component.

For jobs in San Francisco, please click " here " for information regarding the San Francisco Fair Chance Ordinance.

For jobs in Los Angeles, please click " here " for information regarding the Los Angeles Fair Chance Initiative for Hiring Ordinance.

To view the "EEO Know Your Rights" poster click " here ". This poster provides information concerning the laws and procedures for filing complaints of violations of the laws with the Office of Federal Contract Compliance Programs.

To view the FMLA poster, click " here ". This poster summarizing the major provisions of the Family and Medical Leave Act (FMLA) and telling employees how to file a complaint.

It is the Company's policy to employ the best qualified individuals available for all jobs. Therefore, any discriminatory action taken on account of an employee's ancestry, age, color, disability, genetic information, gender, gender identity, gender expression, sexual and reproductive health decision, marital status, medical condition, military or veteran status, national origin, race (include traits historically associated with race, including, but not limited to, hair texture and protective hairstyles), religion (including religious dress), sex, or sexual orientation that adversely affects an employee's terms or conditions of employment is prohibited. This policy applies to all aspects of the employment relationship, including, but not limited to, hiring, training, salary administration, promotion, job assignment, benefits, discipline, and separation of employment.

Requisition #: 340772686

dz1rbepqf