Business Unit Security Officer- Manager

Join our Canadian Segment Security Technology Team!

Reporting to our Director Business Unity Security Officer; this role belongs to the First Line of Defense. Our team performs risk-based information security assessments for new technologies and changes to existing IT-based solutions; we are accountable to identify threats for both the cloud-based and on premises-based infrastructure platform and services: Perform Canadian Business Unit project and technology information risk assessments including assessing risks and define controls as well as tracking the implementation of controls. Build document and/or implement BAU security controls applicable to the platform/services. Evaluate products for implementing security controls in the cloud or on-premises spaces.

Position Responsibilities:

Risk Assessment and Management: Conduct comprehensive risk assessments of technology systems applications and infrastructure to identify potential threats vulnerabilities and impacts on business operations. Understand and apply security policies and standards to identify gaps and ensure compliance.

Application Security and Release Sign-Off: Review and sign off on application security measures during the software development lifecycle. Ensure security requirements are integrated into the DevOps pipeline and security tests.

Consultation and Collaboration: Consult with business engineering and architect teams to integrate security practices into their workflows.

Incident Response and Management: Provide domain expertise in security incident investigations and response. Ensure each information risk assessment completed is peer-reviewed & communicated to larger distribution to various partners.

Team Development and Training: Deliver training to key team members around the IRM processes. Respond to audits regulatory reviews risk and controls self-assessments.

Continuous Improvement: Stay up to date on the latest security trends threats and technologies. Evaluate existing processes to redefine processes.

Required Qualifications:

• Experience in cloud security application security and data protection.

• Familiarity with DevOps pipelines and security testing methodologies.

• 5 years of experience in a combination of relevant technical disciplines in the field of Information Security: network security application security identity and access management IT operations security vulnerability management information protection physical security cybersecurity.

• 5 years of IT/Information Risk management experience: vendor risk management project risk management IT audit or IT controls assessment.

• Deep knowledge of cloud computing security and IaaS PaaS or SaaS environments.

• Knowledge of security frameworks regulatory requirements and standards.

• Excellent business communication to lead presentation facilitate discussion across all levels and audiences.

• Influence behavior to reduce risks and foster a strong information security risk management culture.

• Problem solving analytical and establish new way/processes to improve.

• Collaborative with a coaching and development approach.

• Strong time management and organizational skills to manage multiple tasks and changing priorities.

Preferred Qualifications:

• Background in Computer Science Information Technology Software Engineering Business Administration or relevant educational and professional experience preferred.

• Knowledge and understanding of the financial industry are preferred.

• Relevant professional designations (e.g. CISSP CRISC CISM CISA GSEC) preferred.

When you join our team:

Well empower you to learn and grow the career you want.

Well recognize and support you in a flexible environment where well-being and inclusion are more than just words.

As part of our global team well support you in shaping the future you want to see

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider helping people make their decisions easier and lives better. To learn more about us visit is an Equal Opportunity Employer

At Manulife/John Hancock we embrace our diversity. We strive to attract develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment retention advancement and compensation and we administer all of our practices and programs without discrimination on the basis of race ancestry place of origin colour ethnic origin citizenship religion or religious beliefs creed sex (including pregnancy and pregnancy-related conditions) sexual orientation genetic characteristics veteran status gender identity gender expression age marital status family status disability or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process contact .

Referenced Salary Location

Salary range is expected to be between

Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance. The actual salary will vary depending on local market conditions geography and relevant job-related factors such as knowledge skills qualifications experience and education/training. If you are applying for this role outside of the primary location please contact for the salary range for your location.

Manulife offers eligible employees a wide array of customizable benefits including health dental mental health vision short- and long-term disability life and AD&D insurance coverage adoption/surrogacy and wellness benefits and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays vacation personal and sick days and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S. please contact for more information about U.S.-specific paid time off provisions.