Manager/Sr. Manager, Information Risk Management

Posted:
10/15/2024, 5:00:00 PM

Location(s):
Boston, Massachusetts, United States ⋅ Waterloo, Ontario, Canada ⋅ Toronto, Ontario, Canada ⋅ Old Toronto, Ontario, Canada ⋅ Massachusetts, United States ⋅ Ontario, Canada

Experience Level(s):
Expert or higher ⋅ Senior

Field(s):
IT & Security

The Manager/Sr.Manager, Information Risk Management supports the design and implementation of enhancements to Manulife’s Global Information Risk Management programs and its underlying components. This includes supporting the development of enterprise-wide processes and guidelines covering information risk and control identification, assessment, treatment, measurement, monitoring and reporting, and for activities that drive risk and control improvements within the Technology operation processes. The role requires expertise in Operational and Information risk and control management, as well as strong communication and influencing skills to promote IRM requirements across various businesses, functions and geographies.

The incumbent will report to the Sr. Director, Information Risk Management within the 2nd Line of Defense risk organization.

Position Responsibilities:

  • Support initiatives to enhance the Company’s Information risk management methodologies, including Control Assurance, Information Risk Assessments, etc.

  • Collaborate with IRM colleagues and partners to develop and execute on all required functional roadmaps and priorities.

  • Support the evolution of the various Information Risk assessment program (Control assurance testing, change risk assessments, etc.) and ensure alignment with organization’s operational risk outcomes that support OSFI’s Guidelines.

  • Support the change management and communications of initiatives of the program.

  • Support ongoing activities to drive control awareness and control improvements for the organization’s high risk technology business processes.

  • Support the risk program frameworks and their alignment with GRC tool (Archer) workflows.

  • Support the development of metrics that monitor key control activity performance.

  • Ensure continuous and effective line of communication across appropriate Lines of Defense teams.

  • Identify opportunities for creating efficiencies within IRM program’s framework and processes.

  • Assist with ad-hoc and monthly risk reporting, memos, and presentations.

  • Promote a strong risk culture, influence and gain support from the senior leadership team and segments to support the implementation of the roadmaps and methodologies.

  • Train business unit and functional resources to implement the programs within their areas.

  • Stay abreast with evolving Information and technology risks, new regulations, laws and requirements related to Information security, Cyber security, third party etc.

  • Support ad-hoc requests as assigned.

Required Qualifications:

  • University degree (Computer Science or related field preferred)

  • A background in risk management with a minimum three to five years of progressive work experience in the financial services industry.

  • Good knowledge and experience with GRC tools (preferably Archer) and related applications.

  • Strong writing, communication and presentation skills - with the ability to explain highly technical information for non-technologists including executives.

  • Strong proficiencies in collaboration, problem solving and influencing key risk decisions.

  • Knowledge of the regulatory environments in the U.S. and Canada

  • Highly organized individual with strong time management and organizational skills.

  • Strong analytical skills with the ability to collect, organize, analyze, and disseminate significant amounts of information with attention to detail and accuracy.

  • Excellent collaborative and relationship building skills; showing tact and diplomacy in dealing with others.

Preferred Qualifications:

  • Recognized professional designations in Information Security, Audit and Business Continuity (e.g. CISSP, CISA, CRISC, FAIR, MBCP) preferred

  • Ability to learn quickly and be comfortable with adjusting to ad-hoc changes.

  • Previous audit or 2nd line oversight and assurance experience.

  • Previous risk advisory consulting experience is preferred.

  • Strong understanding of related best practices and relevant industry framework.

When you join our team:

  • We’ll empower you to learn and grow the career you want.

  • We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.

  • As part of our global team, we’ll support you in shaping the future you want to see.

#LI-Hybrid

#LI-JH

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact [email protected].

Primary Location

Toronto, Ontario

Working Arrangement

Hybrid

Salary range is expected to be between

$92,190.00 CAD - $171,210.00 CAD

If you are applying for this role outside of the primary location, please contact [email protected] for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.

Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact [email protected] for more information about U.S.-specific paid time off provisions.