Application Security Engineer (Threat Modeling)

Posted:
8/15/2024, 5:00:00 PM

Location(s):
Quezon City, Metro Manila, Philippines ⋅ Metro Manila, Philippines

Experience Level(s):
Junior ⋅ Mid Level ⋅ Senior

Field(s):
IT & Security

Workplace Type:
On-site

We are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From our environmental initiatives to our community investments, we lead with values throughout our business. To help us stand out, we help you step up, because when colleagues are healthy, respected and meaningfully challenged, we all thrive. Discover how you can grow your career, make impact and drive real change with our Winning Team today. 

Working Arrangement

Hybrid

Job Description

Are you looking for a supportive and collaborative workplace with great benefits and clear career development? You’ve come to the right place.

Why choose Manulife?

  • Competitive Salary packages and performance bonuses
  • Day 1 HMO + FREE coverage for your dependents (inclusive of same-sex partners)
  • Retirement savings benefit
  • Rewarding culture that values wellness and well-being
  • Performance Bonus
  • Global network of industry experts
  • Extensive training resources

Working Arrangement: Hybrid

Shift Schedule: Flexible (Late Mid Shift / Night Shift)  Philippine Time

Job Description:

We are looking for Application Security Engineer (Threat Modeling) who will be directly reporting to the Manulife ETS Cyber Assessment Application Security Team. Our group is consisting of highly motivated and experienced professionals and is composed of members located across different Manulife locations such as Manila and North America. As part of the ETS Global Cyber Security, we are responsible for the practice of identifying, classifying, monitoring, remediating and/or mitigating security vulnerabilities on applications, network and APIs across the organization. Have the skills and knowledge for the job? Learn more about the opening below!

Key Responsibilities:

  • Strategic Cybersecurity: Contribute to the strategic guidance on the design of cybersecurity measures for complex systems and networks, incorporating product security strategies such as design principles and security architecture.
  • Security Review: Perform and coordinate in-depth security reviews, pinpoint potential vulnerabilities, and suggest all-encompassing remediation strategies by utilizing threat modeling methodologies and threat assessment frameworks.
  • Security Insights: Provide sound analysis on the security implications of introducing new systems or interfaces within our ecosystem, based on application security best practices, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) implementation.
  • Security Architecture Evaluation: Assess proposed security architectures and designs to ensure they are equipped to meet both current and future security needs. This involves reviewing data flow diagrams for applications/system architectures and identifying potential threats as part of the threat modeling process.

Qualifications:

  • University/College graduate with at least 2 years of experience related to Application Security and Threat Modeling.
  • Must have background in application development / technology management.
  • Good experience in application security architecture.
  • Comprehensive understanding of security principles and their business implications.
  • Broad knowledge of networking concepts.
  • Good background in secure software development methodologies
  • Familiarity with various application security testing approaches and implementation.
  • Understanding of penetration testing concepts.
  • Knowledge of industry trends, regulatory requirements, and their impact on security architecture.
  • Advocate constant learning from both success and failure, and encourages openness to change and continuous improvement.
  • Recognizable organizational and problem-solving abilities that enable you to manage through creative abrasion.
  • Proven stakeholder management skills and able to effectively articulate risk posture, technical vision, possibilities, and outcomes through strong verbal and written communication.
  • Self-driven, able to meet objectives with a minimal amount of managerial oversight/supervision.
  • Amenability and readiness to work onsite and from home anytime (dependent on business need and/or current external environment/situation).

**People Leader Role: No

Learn more about opportunities with us at jobs.manulife.com  

Join our global network of industry experts! Apply today.

** This job description does not represent a comprehensive listing of job duties that are required of the employee performing this role. We reserve the right to change duties or assign additional duties at any time with or without notice.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. 


It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact [email protected]


Who is MBPS?


Manulife Business Processing Services (MBPS) is a global shared service center providing administrative, finance, investments, contact center, information technology, underwriting, actuarial, and marketing services to Manulife and John Hancock companies around the world.

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services group that helps people make their decisions easier and lives better. With our global headquarters in Toronto, Canada, we operate as Manulife across our offices in Asia, Canada, and Europe, and primarily as John Hancock in the United States. We provide financial advice, insurance, and wealth and asset management solutions for individuals, groups and institutions. At the end of 2022, we had more than 40,000 employees, over 116,000 agents, and thousands of distribution partners, serving over 34 million customers. At the end of 2022, we had $1.3 trillion (US$1.0 trillion) in assets under management and administration, including total invested assets of $0.4 trillion (US $0.3 trillion), and segregated funds net assets of $0.3 trillion (US$0.3 trillion). We trade as ‘MFC’ on the Toronto, New York, and the Philippine stock exchanges, and under ‘945’ in Hong Kong.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. 

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application processAll information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact [email protected].