Info Sec Consultant

---

Job description

Overview:
We are not just offering a job but a meaningful career! Come join our passionate team!

As a Fortune 50 company, we hire the best employees to serve our customers, making us a leader in the insurance and financial services industry. State Farm embraces diversity and inclusion to ensure a workforce that is engaged, builds on the strengths and talents of all associates, and creates a Good Neighbor culture.

We offer competitive benefits and pay with the potential for an annual financial award based on both individual and enterprise performance. Our employees have an opportunity to participate in volunteer events within the community and engage in a learning culture. We offer programs to assist with tuition reimbursement, professional designations, employee development, wellness initiatives, and more!

Visit our Careers page for more information on our , and of joining the State Farm team!

OFFICE LOCATION: Bloomington, IL - Richardson, TX - Tempe, AZ - Dunwoody, GA

Hybrid Work Environment: Selected applicants should plan to spend time working from home and some time working in the office as part of our flexible work environment.

*Applicants for this position are required to be eligible to lawfully work in the U.S. immediately; employer will not sponsor applicants for U.S. work authorization (e.g. H-1B visa) for this opportunity.*

Responsibilities:
Provides consultation for the design, delivery and quality of secure data application and infrastructure solutions through risk management, guidance, education, and information security expertise for business areas

Helps secure applications or capabilities spanning platforms, offerings, and technical architectures

Evaluates vulnerability assessment and risk assessment results, provides opinions on the adequacy of plans for security controls, and recommends risk treatment options

Documents and escalates policy exceptions or compliance deviations for review and risk assessments

Validates the results of dynamic and static code scans

Helps ensure that the implementation of information security is included throughout the delivery and support of solutions

Reviews the adequacy of security controls and their ability to protect the information system and its information and recommends risk treatment options

Possesses and maintains working familiarity with information security controls and processes at State Farm

Articulates security needs/requirements from business partners to appropriate enablement or architecture teams

Understands the overall information security policy, program and risk posture as well as capabilities including but not limited to access management, encryption

Supports the information system owner in selecting security controls for the information system

May require work during nights and weekends

Must apply discretion and appropriate security measures when handling confidential and sensitive information

Qualifications:
Preferred skills:

Demonstrates sound judgment in making decisions with respect to matters of moderate to high complexity and importance

Applies broad-based knowledge of security technologies, techniques, controls, processes, and best practices to perform daily tasks

Keeps abreast of security, business and IT industry trends and best practices to modify techniques and processes to meet changing needs and influence the direction of solutions

Mentors and trains others

May lead some strategic work and/or contributes to strategic work (e.g. cross departmental or enterprise initiatives)

Participates in and/or leads vendor product reviews, evaluations, demonstrations, proofs of concept and implementations

Maintains solid relationships and strategic partnering skills with business areas, team members, and external contacts

May act as a product owner

Suggested certifications may include, CRISC, CISSP, CISM, GSEC

Desired Skills:

Experience with networking or infrastructure

Experience, or desire to grow knowledge, in Cloud and AWS

Experience with Information Security best practices and controls such as encryption and identity management

Strong collaboration and relationship building skills

Strong problem solving skills