Director, Information Security and Risk Management
CAN, Ontario, Toronto, 200 Bloor Street East
Full Time Executive-level / Director USD 107K - 200K
Manulife
Manulife is a leading financial services group. We provide financial advice, insurance, as well as wealth and asset management solutions for individuals, groups and institutions.This role offers the opportunity to lead our information security and risk management efforts as the Director of Information Security and Risk Management. By developing and implementing a comprehensive vulnerability management program, updating security policies, and driving security awareness initiatives, you will directly contribute to our mission of maintaining a secure and compliant IT environment. In return, you will benefit from a competitive salary, professional growth opportunities, and a supportive, flexible work environment that values well-being and inclusion.
Position Responsibilities:
- Lead the development and implementation of a comprehensive vulnerability management program.
- Assist IT leads in facilitating management response and remediation efforts.
- Ensure overall IT compliance with regulatory requirements through proactive planning, communication, ownership, and relationships.
- Review and update information security policies and standards.
- Develop and implement security awareness programs to educate IT departments about new standards, security best practices, emerging threats, and mitigation strategies.
- Guide engineering and development teams to ensure a secure software development lifecycle (SDLC). Assist in defining and implementing gatekeeping measures, improving release management processes, and increasing compliance rates.
Required Qualifications:
- Minimum of 10 years of experience in information security and risk management, with at least 5 years in a leadership role.
- Proficiency in vulnerability management, security policy development, security awareness, application security, global security initiatives, and cloud security.
- Bachelor’s degree in Information Security, Computer Science, or a related field; advanced degree preferred.
- Relevant certifications such as CISSP, CISM, CRISC, or equivalent.
Preferred Qualifications:
- Previous experience in a similar role.
- Deep understanding of information security frameworks and standards (e.g., ISO 27001, NIST, PCI).
- Strong analytical and problem-solving skills.
- Excellent communication and leadership skills.
When you join our team:
- We’ll empower you to learn and grow the career you want.
- We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
- As part of our global team, we’ll support you in shaping the future you want to see.
About Manulife and John Hancock
Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.
Manulife is an Equal Opportunity Employer
At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.
It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.
Primary Location
Toronto, OntarioWorking Arrangement
HybridSalary range is expected to be between
$107,730.00 CAD - $200,070.00 CADIf you are applying for this role outside of the primary location, please contact recruitment@manulife.com for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.
Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact recruitment@manulife.com for more information about U.S.-specific paid time off provisions.
Tags: Application security CISM CISSP Cloud Compliance Computer Science CRISC ISO 27001 NIST Risk management SDLC Vulnerability management
Perks/benefits: Career development Competitive pay Flex hours Flex vacation Health care Insurance Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.