Associate Manager - Technology Infrastructure Security Audit
CAN, Ontario, Toronto, 200 Bloor Street East
Full Time Mid-level / Intermediate USD 74K - 137K
Manulife
Manulife is a leading financial services group. We provide financial advice, insurance, as well as wealth and asset management solutions for individuals, groups and institutions.Manulife’s Internal Audit team is looking for an expert Senior IT Auditor/Associate Manager for their Technology Infrastructure Security Audit team. The Senior Technology Auditor/Associate Manager will participate in planning, execution and reporting for large, complex assurance reviews of all types (key risk audits, emerging risk reviews, program and project audits), to deliver high quality, professional, efficient, valuable and risk-based audits. The main responsibility of the role consists of performing audits over areas such as Information Risk Management, Technology Governance, Cybersecurity, Network Security, Identity and Access Management, Data Center Security, Cloud Security, Architecture Reviews, and Business Continuity/Disaster Recovery.
Position Responsibilities:
- Understand Information Technology control environment to assess and evaluate the effectiveness and efficiency of internal controls and operating practices.
- Support multiple simultaneous audit projects to ensure time and quality objectives are met. Timely raise potential budget over-runs and resourcing concerns to Engagement Lead.
- Complete audit projects to cover key risks and contribute to production of significant audit reports that clearly articulate the position on risks and related issues.
- Assist in performing assessments of technology processes, tools and technologies new to the company.
- Assist in the development of agendas, audit objectives and scope, test procedures, and requests lists.
- Clearly communicate potential issues, evaluate corrective action plans, and assist with internal team initiatives.
Required Qualifications:
- 3-5 years of experience in a technology audit/risk management role. CISA, CISSP and/or CISM designation are preferred.
- A University degree in information systems or a related field is preferred, but equivalent experience will also be considered.
- Good understanding and experience with testing of IT General Control and Cybersecurity controls
- Experience with basic data analytics testing e.g. using PowerBI, Excel etc.
Preferred Qualifications:
- Understanding or working knowledge of cybersecurity concepts such as Security Operations (Vulnerability Management, DLP, SIEM etc.), Security Engineering (Cryptography, Cloud Security, Security Architecture etc.), Identity and Access Management etc.
- Understanding or working knowledge of Network and Network Security concepts and tools such as Network Access Controls, Intrusion Detection and Prevention, TACACS/Radius (Central authentication), Network Penetration Testing (e.g. red teaming) etc.
- Understanding or working knowledge of information security controls, infrastructure technology, technology governance and assessments, cybersecurity tools (e.g. Qualys), Splunk, Netskope, Zscaler etc.
- Solid understanding of other technology infrastructure concepts, processes, and associated risks - such as, Active Directory, Operating System, On-premises Data Center etc.
- Prior experience with information systems and operations used in the insurance industry and financial services industry is preferred.
- Experience with Intermediate to advanced data analytics testing e.g. using PowerBI, Excel etc.
When you join our team:
- We’ll empower you to learn and grow the career you want.
- We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
- As part of our global team, we’ll support you in shaping the future you want to see.
#LI-hybrid
About Manulife and John Hancock
Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.
Manulife is an Equal Opportunity Employer
At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.
It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.
Primary Location
Toronto, OntarioWorking Arrangement
HybridSalary range is expected to be between
$74,270.00 CAD - $137,930.00 CADIf you are applying for this role outside of the primary location, please contact recruitment@manulife.com for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.
Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact recruitment@manulife.com for more information about U.S.-specific paid time off provisions.
Tags: Active Directory Analytics Audits CISA CISM CISSP Cloud Cryptography Data Analytics Governance IAM Intrusion detection Network security Pentesting Qualys Red team Risk management SIEM Splunk Vulnerability management
Perks/benefits: Career development Flex hours Flex vacation Health care Insurance Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.