Security Engineer

The Opportunity

Are you looking for a supportive, collaborative workplace with great teams and inspiring leaders? You’ve come to the right place. We’re looking for ambitious people who share our values and want to make every day better for people around the world. If this sounds like you, and the career below sounds exciting, we’d like to hear from you.

We are looking for someone with:

At least 3-5 years experience:

• Bachelor's degree in computer science or a related technical field.

• Minimum of 3++ years of experience in Vulnerability Assessment and Penetration Testing (VAPT).

• Has strong background knowledge of OWASP Top 10 - Web, API, Mobile and LLM and Gen AI.

• Strong understanding on NIST cybersecurity framework, PCI compliance and other standard security policies.

• Hands on experience performing SCA, Static and Dynamic Application Security Testing, IAST, and RASP tools (Snyk, Burp, MobSF, Checkmarx, etc.)

• Demonstrate knowledge of OWASP testing methodologies and OSI layer.

• Familiarity with agile and DevSecOps principles.

•  Understanding of software development lifecycle and/or ad hoc.

• Strong communication skills with people of different levels/roles.

• Has excellent written and verbal skills to provide clear and concise assessment report related to application security, remediation fix and other actionable plans.

• Strong attention to detail, communication, time management, and ownership of work.

• Ability to work with peers, executives and employees at all levels.

• Open to feedback, collaborative, and proactive.

• Good organizational, problem-solving and analytical skills.

• Maintains a positive and quality-oriented approach under pressure.

• Relevant security certifications are an asset: eJPT, eWPT, OSCP, CISSP, GPEN, GWAPT, etc.

On the job you will: 

• Use automated tools and manual techniques to identify security vulnerabilities.

• Analyze and interpret scan results to determine severity and impact.

• Simulate penetration testing both black box, gray box, and white box approach.

• Develop security testing plans and report findings.

• Present findings to technical and non-technical stakeholders.

• Work with developers to mitigate identified vulnerabilities, suggest security improvements and best practices.

• Keep abreast of latest threats, vulnerabilities, and industry trends.

• Develop or customize tools and scripts to automate VAPT processes.

• Provide training and awareness for engineering practice.

• Assist in developing and enforcing security policies and standards.

• Assist in incident response by identifying and mitigating vulnerabilities.

• Participate in post-mortem analysis to improve security posture.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application INTERNAL process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies.

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.

Working Arrangement