Director, Information Security

Join our Group Functions (GF) Technology Management Team!

People Leader Role: Yes

The role will enable business and IT partners to recognize and handle their cyber and information risk in a dynamic business environment. It will participate in critical projects and initiatives to ensure information risk is always considered, assessed and managed. The role serves as a trusted partner to guide the business and empower them to protect their information assets and intellectual property. It will help securely implement new technologies and tools, foster consistency through common methodologies and stay fully aligned and integrated with cybersecurity and risk management practice.

Responsibilities:

• Perform application, key initiative risk assessments from a technical security and information risk management perspective, this includes risk identification based on information criticality through to control implementation and management of risk acceptance by business areas

• Provide application and operational security consulting services to IT and global/segment data office partners

• Maintain among all levels of business line staff a high level of awareness about security issues and control objectives

• Identify and communicate known information security control issues to business area teams providing guidance (as necessary) and oversight to ensure timely remediation of the issues

• Provide support to other risk teams as necessary to address high priority risks

• Support alignment to global information security policies and standards; work with business units and technical teams to implement security policies and processes

• Actively participate in Global Data Technology security & risk management planning activities to achieve department goals and objectives.

• Actively participate in 1B and 2nd line security and risk management frameworks discussions and workshops to ensure proper monitoring and measuring of Global Data Technology's risk performance and posture.

What motivates you?

• You obsess about customers, listen, engage and act for their benefit.

• You think big, with curiosity to discover ways to use your agile approach and enable business outcomes.

• You thrive in teams and enjoy getting things done together.

• You take ownership and build solutions, focusing on what matters.

• You do what is right, work with integrity and speak up.

• You share your humanity, helping us build a diverse and inclusive work environment for everyone

What we are looking for

• Degree in IT, Cyber Security, or other related field

• Security Certifications: CRISC, CISM, CISSP and/or CISA, but not mandatory

• 10+ years’ experience in Information Technology, Cybersecurity or Information Security environment

• Solid understanding of information systems, cloud technology platforms (Hadoop, Azure Cloud), and operation procedures in accordance with established corporate security standards

• Experience in application or technology risk and controls assessments using ISO 27002, NIST and COSO framework

• Previous experience working with IT Risk in a large financial institution or other regulated industries

• Knowledge of Information Security policies, standards and practices

• Knowledge of compliance, audit, and privacy policies and regulations

• Knowledge of cyber security technologies like access control solutions, authentication, network security, cryptography, PCI, privacy, and data classification/protection

• Excellent organizational skills; strong competencies in collaboration, problem solving and influencing key risk decisions

• Strong written and verbal communication skills

• Flexible and adaptable when dealing with change and multiple priorities

• Positive attitude with the ability to deliver within tight deadlines

• Collaborate with geographically and culturally diverse multi-functional teams

• Exceptional interpersonal, relationship management and teamwork skills

What can we offer you?

• A competitive salary and benefits packages.

• A growth trajectory that extends upward and outward, encouraging you to follow your passions and learn new skills.

• A focus on growing your career path with us.

• Flexible work policies and strong work-life balance.

• Professional development and leadership opportunities.

Our commitment to you

• Values-first culture

• We lead with our Values every day and bring them to life together.

• Boundless opportunity

• We create opportunities to learn and grow at every stage of your career.

• Continuous innovation

• We invite you to help redefine the future of financial services.

• Delivering the promise of Diversity, Equity and Inclusion

• We foster an inclusive workplace where everyone thrives.

• Championing Corporate Citizenship

• We build a business that benefits all stakeholders and has a positive social and environmental impact.

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.

Primary Location

Toronto, Ontario

Working Arrangement

Hybrid

Salary range is expected to be between

$110,530.00 CAD - $205,270.00 CAD

If you are applying for this role outside of the primary location, please contact recruitment@manulife.com for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.

Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact recruitment@manulife.com for more information about U.S.-specific paid time off provisions.