Application Security Engineer (QA)

Are you looking for a supportive and collaborative workplace with great benefits and clear career development? You’ve come to the right place.

Why choose Manulife?

• Competitive Salary packages and performance bonuses
• Day 1 HMO + FREE coverage for your dependents (inclusive of same-sex partners)
• Retirement savings benefit
• Rewarding culture that values wellness and well-being
• Performance Bonus
• Global network of industry experts
• Extensive training resources

Working Arrangement: Hybrid

Shift Schedule: Night Shift (8pm to 5am) Philippine Time

Job Description:

Manulife’s Global Cybersecurity Services - Application Security is building up a Centre of Excellence (COE) to deliver penetration test and security engineering related capabilities for all segments in Manulife. As an Application Security Engineer (Quality Assurance), you will be working closely with our business team and second line of defense, to ensure that vulnerability assessment and penetration testing execution meets specific standards.

Have the skills and knowledge for the job? Learn more about the opening below!

Key Responsibilities:

• Ensures that both vulnerability assessments and penetration tests cover all critical areas of segment’s application and/or infrastructure.
• Verifies accuracy and reliability of findings from VAPT execution.
• Reviews technical reports and help organizations understand their security posture and take appropriate actions to mitigate risks.
• Ensures that VAPT processes adhere to industry standards and regulatory requirements, such as NIST, ISO27001, HIPAA, GDPR, etc.
• QA promotes continuous improvement in VAPT methodologies by incorporating feedback, updating testing techniques, and staying current with emerging threats and vulnerabilities.
• Triage discovered vulnerability to ensure that most critical vulnerabilities are addressed
• Assist in analysis and respond to unknown or previously detected vulnerabilities.
• Assist in VAPT findings and platform operations likes of access controls, reviewing issues.
• Automate the vulnerability management process to improve operation efficiency.
• Coordinate with project manager/pentester and other concerned units to ensure that identified vulnerabilities are assessed and remediated.
• Conduct research and attend training on common attack routes, new cyber security threats, trends and technologies

Qualifications:

• Bachelor’s degree holder in Computer Science, Information Technology, Cybersecurity, Information Systems, or any related discipline.
• Holds relevant Information Security or any related certification/training such as OSCP, OSCE, CEH, GWAPT, GPEN, eWPT is preferred.
• 3 to 5 years of IT experience with demonstrated application security expertise, including a minimum of 2 years performing hands-on penetration tests on external and internal networks, operating systems, web applications, mobile platforms, and more.
• Demonstrated technical knowledge of current vulnerabilities, exploits and tools.
• Capable in developing advanced attacking capabilities and methods.
• Advocate of security industry best practices and procedures.
• Exposure with various security assessment frameworks and procedures, including following industry best practice methodologies for penetration testing and the ability to perform both manual and automated testing.
• Experience in researching evolving exploits, techniques, and tools in support of penetration testing efforts.
• Experience in developing security tools, using scripts and utilities to automate assessment and analysis activities.
• Good verbal and written communication skills including the ability to write clear and concise assessment reports.
• Good stakeholder management and interpersonal skills.
• Ability to communicate with executives, peers and employees at all levels.
• Good time management and organizational skills.
• Experience working in an international environment with people from multiple cultures.

**People Leader Role: No

Learn more about opportunities with us at jobs.manulife.com  

Join our global network of industry experts! Apply today.

** This job description does not represent a comprehensive listing of job duties that are required of the employee performing this role. We reserve the right to change duties or assign additional duties at any time with or without notice.

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.

Working Arrangement