Senior Vendor Information Security Analyst
Manila, Manulife Business Processing Services
Manulife
Manulife is a leading financial services group. We provide financial advice, insurance, as well as wealth and asset management solutions for individuals, groups and institutions.Are you looking for a supportive and collaborative workplace with great benefits and clear career development? You’ve come to the right place.
Why choose Manulife?
Competitive Salary packages and performance bonuses
Day 1 HMO + FREE coverage for your dependents (inclusive of same-sex partners)
Retirement savings benefit
Rewarding culture that values wellness and well-being
Performance Bonus
Global network of industry experts
Extensive training resources
Job Description:
We’re looking for a Senior Vendor Information Security Analyst to join our Procurement team at MBPS. In this role, you are expected to support the IT Governance team in the delivery of Vendor Risk Management Center of Expertise (COE) services.
Have the skills and knowledge for the job? Learn more about the opening below!
Key Responsibilities:
• Handling complex vendor risk assessment across segments of Manulife.
• Review of independent audit reports, penetration testing reports, vulnerability management reports etc.
• Report on the status of vendor risk assessment assignments in weekly team meetings and stand-up meetings with onshore counterparts/stakeholders.
• Support IT audits conducted by Audit Services, regulators, clients, and third-party auditors.
• Be part of an active team who remains current on emerging risks and technologies, key developments, and strategies for the businesses we support.
• Stay informed on emerging technologies, key business drivers, evolving threats and opportunities.
• Additional duties as assigned in information security and business continuity management domains.
Qualifications:
- University Degree (Computer Science, Business or Finance preferred, but not required).
- Experience with performing third-party information security risk assessments
- 4-6 years of experience in Technology, Technology Risk and Controls, Technology Audit, Cybersecurity, Application Security, Network Security, Cyber Resiliency and Third-Party Outsourcing Risk Management within a large enterprise level environment.
- Amenability and readiness to work onsite and from home anytime (dependent on business need AND/OR current external environment/situation)
- Knowledge of and experience with industry risk frameworks and information security standards (ISO27001, NIST Cybersecurity Framework, PCI DSS, HITRUST, etc.)
- Experienced in Archer, Process Unity or any Vendor Risk Management tool is preferred.
- Amenable to work on a Mid shift schedule
Let's make every day better together. Learn about our opportunities at JOBS.MANULIFE.COM
About Manulife and John Hancock
Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.
Manulife is an Equal Opportunity Employer
At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.
It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.
Working Arrangement
Hybrid* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits Computer Science Finance Governance HITRUST ISO 27001 Network security NIST PCI DSS Pentesting Risk assessment Risk management Vulnerability management
Perks/benefits: Career development Competitive pay Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.