Job Description

We are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From our environmental initiatives to our community investments, we lead with values throughout our business. To help us stand out, we help you step up, because when colleagues are healthy, respected and meaningfully challenged, we all thrive. Discover how you can grow your career, make impact and drive real change with our Winning Team today.

Working Arrangement

At Home



The Opportunity

This role is part the Information Risk team, who is the information security control team under Global Wealth Asset Management (GWAM) Information Technology First Line of Defense. The team performs risk-based information security assessments for new technologies and changes to existing IT-based solutions, accountable to identify threats for both the cloud-based and on premises-based infrastructure, platform, and services.:

• Perform GWAM project and technology information risk assessments including assessing risks and define controls as well as tracking the implementation of controls.
• Design, document and/or implement BAU security controls applicable to the cloud-based infrastructure, platform, and services.
• Evaluate products for implementing security controls in the cloud or on-premises spaces.

Key Responsibilities:

• Responsible for the execution of information risk assessment processes in compliance with global Information Risk Assessment methodology.
• Ensure the appropriate steps are taken to ensure the Information Risk Assessment process is followed in integration with other related processes: architecture review, project risk management framework, etc.
• Manage the priorities between the tasks assigned with input from the risk owners.
• Attend project meetings, provide timely updates, advise on risks and impact around the changes.
• Ensure each information risk assessment completed is peer-reviewed & communicated to larger distribution to various stakeholders.
• Provide training to key stakeholders around the information risk assessment processes.
• Respond to audits, regulatory reviews, risk and controls self-assessments.

Job Requirements (Experience/Knowledge/Skills):

• Degree holder of Computer Science, Information Technology, Software Engineering, Business Administration, or relevant educational and professional experience.
• Relevant professional designations (e.g. CISSP, CRISC, CISM, CISA, GSEC).
• 5+ years of experience in a combination of relevant technical disciplines in the field of Information Security: network security, application security, identity and access management, IT operations security, vulnerability management, information protection, physical security, cybersecurity.
• 5+ years of IT/Information Risk management experience: vendor risk management, project risk management, IT audit or IT controls assessment.
• Deep knowledge of cloud computing security and IaaS, PaaS or SaaS environments.
• Knowledge of security frameworks (e.g. ISO 27001, COBIT), regulatory requirements and standards (e.g. NIST, GDPR, Sarbanes-Oxley).
• Strong communication, presentation, and facilitation skills to all levels and audiences.
• Influence behavior to reduce risks and foster a strong information security risk management culture.
• Problem solving, analytical, and innovative mindset.
• Strong team player (collaborative).
• Strong time management and organizational skills to manage multiple tasks and changing priorities.
• Knowledge and understanding of the financial industry is preferred.

Every career at Manulife/John Hancock provides the opportunity to learn new skills and move your career forward. Ready to make an impact somewhere? What are you waiting for? Apply today.

About John Hancock and Manulife

John Hancock is a unit of Manulife Financial Corporation, a leading international financial services group that helps people make their decisions easier and lives better. We operate primarily as John Hancock in the United States, and Manulife globally, including Canada, Asia and Europe. We provide financial advice, insurance and wealth and asset management solutions for individuals, groups and institutions. Assets under management and administration by Manulife and its subsidiaries were CAD$1.3 trillion (US$1.1 trillion) as of June 30, 2021. Manulife Financial Corporation trades as MFC on the TSX, NYSE, and PSE, and under 945 on the SEHK. Manulife can be found at .

One of the largest life insurers in the United States, John Hancock supports more than 10 million Americans with a broad range of financial products, including , , , , and . Additional information about John Hancock may be found at .

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact .

Salary & Benefits

The annual base salary for this role is listed below.

Primary Location CAN, Ontario - Full Time Remote

Salary range is expected to be between $89,950.00 CAD - $167,050.00 CAD

If you are applying for this role outside of the primary location, please contact for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.

Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact for more information about U.S.-specific paid time off provisions.

Manulife