Senior Cyber Security Engineer

Posted:
7/21/2024, 5:00:00 PM

Experience Level(s):
Senior

Field(s):
IT & Security ⋅ Software Engineering

We are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From our environmental initiatives to our community investments, we lead with values throughout our business. To help us stand out, we help you step up, because when colleagues are healthy, respected and meaningfully challenged, we all thrive. Discover how you can grow your career, make impact and drive real change with our Winning Team today. 

Working Arrangement

Hybrid

Job Description

The opportunity

We are looking for a Senior Cyber Security Engineer to join our global team and help us protect our systems and data from cyber threats. You will be responsible for designing, implementing, and maintaining security solutions that align with our business objectives and regulatory requirements. You will also be involved in security assessments, incident response, and awareness initiatives.


Responsibilities

  • Design and implement security solutions for identity and access management, endpoint protection, cloud security, and zero trust architecture.

  • Defining and enforcing identity and access management policies and standards for multi-cloud.

  • Collaborating with stakeholders to ensure compliance with regulatory requirements and industry standards.

  • Design, develop, and implement secure system architectures.

  • Embed security principles into the design of system architectures to mitigate the risks posed by new technologies and business practices.

  • Design artefacts, spanning design, development, and implementation, into enterprise systems that describe security principles and how they relate to the overall enterprise system architecture.

  • Perform routine activities related to the periodic review and audit activities of infrastructure security systems and maintains documentation of security standards and procedures.

  • Provide expertise in authentication and authorization protocols, such as LM/NTLM/Kerberos, SAML, OAuth2.0, and MFA.

  • Support large-scale mergers and acquisitions by performing Active Directory consolidation, migration, and integration tasks.

  • Conduct security audits, risk assessments, and penetration tests to identify and remediate vulnerabilities and gaps.

  • Monitor and respond to security incidents and breaches, and perform root cause analysis and remediation.

  • Research and evaluate emerging security technologies and trends, and provide recommendations and guidance to stakeholders.

  • Collaborate with internal and external teams to ensure security best practices and compliance standards are followed.

  • Develop and deliver security awareness and training programs to educate employees and customers on security topics.

Additional responsibilities that align with the role of an Identity and Access Management Engineer:

  • Developing and maintaining the identity and access management strategy and architecture.

  • Defining and enforcing identity and access management policies and standards for multi-cloud.

  • Collaborating with stakeholders to ensure compliance with regulatory requirements and industry standards.


How will you create impact?

Your role will drive automated workflows for the life cycle management of users and their access. The produced outcomes will reduce risk, improve Employee engagement and reduce operational support costs.

What motivates you?

  • You obsess about customers, listen, engage and act for their benefit.

  • You think big, with curiosity to discover ways to use your agile approach and enable business outcomes.

  • You thrive in teams and enjoy getting things done together.

  • You take ownership and build solutions, focusing on what matters.

  • You do what is right, work with integrity and speak up.

  • You share your humanity, helping us build a diverse and inclusive work environment for everyone.


What we are looking for

  • Bachelor's degree in Computer Science, Engineering, or related field, or equivalent work experience.

  • At least 5 years of experience in security engineering, architecture, or consulting roles.

  • Strong knowledge and experience in identity and access management, Active Directory, Azure AD, ADFS, M365, and Intune.

  • Strong knowledge and experience in cloud security, especially Azure, AWS, and Alibaba Cloud.

  • Strong knowledge and experience in zero trust concepts and frameworks.

  • Strong knowledge and experience in configuration and deployment of generative AI technologies, such as Microsoft 365 Copilot and Copilot for Security.

  • Strong knowledge and experience in authentication and authorization protocols, such as LM/NTLM/Kerberos, SAML, OAuth2.0, and MFA.

  • Strong knowledge and experience in network and endpoint security, such as firewalls, VPNs, antivirus, and encryption.

  • Strong knowledge and experience in security tools and methodologies, such as SIEM, vulnerability scanning, penetration testing, and incident response.

  • Strong communication and presentation skills, with the ability to explain complex technical concepts to non-technical audiences.

  • Strong problem-solving and analytical skills, with the ability to work independently and collaboratively.

  • Certifications such as Microsoft Certified Cybersecurity Expert, CISSP, CISM, or CEH are preferred.


What can we offer you?

  • A competitive salary and benefits packages.
  • A growth trajectory that extends upward and outward, encouraging you to follow your passions and learn new skills.
  • A focus on growing your career path with us.
  • Flexible work policies and strong work-life balance.
  • Professional development and leadership opportunities.


Our commitment to you

  • Values-first culture
    We lead with our Values every day and bring them to life together.
  • Boundless opportunity
    We create opportunities to learn and grow at every stage of your career.
  • Continuous innovation
    We invite you to help redefine the future of financial services.
  • Delivering the promise of Diversity, Equity and Inclusion
    We foster an inclusive workplace where everyone thrives.
  • Championing Corporate Citizenship
    We build a business that benefits all stakeholders and has a positive social and environmental impact.

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services group that helps people make their decisions easier and lives better. With our global headquarters in Toronto, Canada, we operate as Manulife across our offices in Asia, Canada, and Europe, and primarily as John Hancock in the United States. We provide financial advice, insurance, and wealth and asset management solutions for individuals, groups and institutions. At the end of 2022, we had more than 40,000 employees, over 116,000 agents, and thousands of distribution partners, serving over 34 million customers. At the end of 2022, we had $1.3 trillion (US$1.0 trillion) in assets under management and administration, including total invested assets of $0.4 trillion (US $0.3 trillion), and segregated funds net assets of $0.3 trillion (US$0.3 trillion). We trade as ‘MFC’ on the Toronto, New York, and the Philippine stock exchanges, and under ‘945’ in Hong Kong.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. 

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application processAll information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact [email protected].