Business Unit Security Officer- L1, Canadian Technology

Posted:
8/12/2024, 5:00:00 PM

Location(s):
Toronto, Ontario, Canada ⋅ Ontario, Canada ⋅ Waterloo, Ontario, Canada

Experience Level(s):
Mid Level ⋅ Senior

Field(s):
IT & Security

We are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From our environmental initiatives to our community investments, we lead with values throughout our business. To help us stand out, we help you step up, because when colleagues are healthy, respected and meaningfully challenged, we all thrive. Discover how you can grow your career, make impact and drive real change with our Winning Team today. 

Working Arrangement

Hybrid

Job Description

Join our Canadian Segment Security Technology Team!

Reporting to our Director, Business Unity Security Officer; this role is part of our First Line of Defense. Our team performs risk-based information security assessments for new technologies and changes to existing IT-based solutions; we are accountable to identify threats for both the cloud-based and on premises-based infrastructure, platform, and services:

  • Perform Canadian Business Unit project and technology information risk assessments including assessing risks and define controls as well as tracking the implementation of controls.
  • Design, document and/or implement BAU security controls applicable to the platform/services.
  • Evaluate products for implementing security controls in the cloud or on-premises spaces.

Key Responsibilities:

  • Risk Assessment and Management: Conduct comprehensive risk assessments of technology systems, applications, and infrastructure to identify potential threats, vulnerabilities, and impacts on business operations. Understand and apply security policies and standards to identify gaps and ensure compliance.
  • Application Security and Release Sign-Off: Review and sign off on application security measures during the software development lifecycle. Ensure security requirements are integrated into the DevOps pipeline and security tests.
  • Consultation and Collaboration: Consult with business, engineering, and architect teams to integrate security practices into their workflows.
  • Incident Response and Management: Provide domain expertise in security incident investigations and response.
  • Ensure each information risk assessment completed is peer-reviewed & communicated to larger distribution to various partners.
  • Deliver training to key team members around the IRM processes.
  • Respond to audits, regulatory reviews, risk, and controls self-assessments.
  • Continuous Improvement: Stay updated on the latest security trends, threats, and technologies.

Job Requirements (Experience/Knowledge/Skills):

  • Background in Computer Science, Information Technology, Software Engineering, Business Administration, or relevant educational and professional experience preferred.
  • Relevant professional designations (e.g., CISSP, CRISC, CISM, CISA, GSEC) preferred
  • Experience in cloud security, application security, and data protection.
  • Familiarity with DevOps pipelines and security testing methodologies.
  • 5+ years of experience in a combination of relevant technical disciplines in the field of Information Security: network security, application security, identity and access management, IT operations security, vulnerability management, information protection, physical security, cybersecurity.
  • 5+ years of IT/Information Risk management experience: vendor risk management, project risk management, IT audit or IT controls assessment.
  • Deep knowledge of cloud computing security and IaaS, PaaS, or SaaS environments.
  • Knowledge of security frameworks, regulatory requirements and standards.
  • Excellent business communication to lead presentation, facilitate discussion across all levels and audiences.
  • Influence behavior to reduce risks and foster a strong information security risk management culture.
  • Problem solving, analytical, and innovative approach.
  • Solid teammate (collaborative).
  • Strong time management and organizational skills to manage multiple tasks and changing priorities.
  • Knowledge and understanding of the financial industry are preferred.

What can we offer?

  • A competitive salary and benefits packages.
  • A growth trajectory that extends upward and outward, encouraging you to follow your passions and learn new skills.
  • A focus on growing your career path with us.
  • Flexible work policies and strong work-life balance.
  • Professional development and leadership opportunities.

 

Our commitment to you:

Values-first culture 

We lead with our Values every day and bring them to life together. 

Boundless opportunity 

We create opportunities to learn and grow at every stage of your career. 

Continuous innovation 

We invite you to help redefine the future of financial services. 

Delivering the promise of Diversity, Equity, and Inclusion 

We foster an inclusive workplace where everyone thrives. 

Championing Corporate Citizenship 

We build a business that benefits all collaborators and has a positive social and environmental impact.

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services group that helps people make their decisions easier and lives better. With our global headquarters in Toronto, Canada, we operate as Manulife across our offices in Asia, Canada, and Europe, and primarily as John Hancock in the United States. We provide financial advice, insurance, and wealth and asset management solutions for individuals, groups and institutions. At the end of 2022, we had more than 40,000 employees, over 116,000 agents, and thousands of distribution partners, serving over 34 million customers. At the end of 2022, we had $1.3 trillion (US$1.0 trillion) in assets under management and administration, including total invested assets of $0.4 trillion (US $0.3 trillion), and segregated funds net assets of $0.3 trillion (US$0.3 trillion). We trade as ‘MFC’ on the Toronto, New York, and the Philippine stock exchanges, and under ‘945’ in Hong Kong.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. 

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application processAll information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact [email protected].

Salary & Benefits

The annual base salary for this role is listed below.

Primary Location

Waterloo, Ontario

Salary range is expected to be between

$74,270.00 CAD - $137,930.00 CAD

If you are applying for this role outside of the primary location, please contact [email protected] for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.

Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact [email protected] for more information about U.S.-specific paid time off provisions.

Manulife

Website: http://www.manulife.com.hk/

Headquarter Location: Kowloon City, Kowloon, Hong Kong

Employee Count: 1001-5000

Year Founded: 1897

IPO Status: Private

Industries: Financial Services ⋅ Life Insurance ⋅ Retirement ⋅ Wealth Management