Director, Information Security and Risk Management

Director, Information Security and Risk Management

Apply

Locations: Toronto, Ontario, Waterloo, Ontario

Time Type: Full time

Posted On: Posted 2 Days Ago

Time Left to Apply: End Date: November 18, 2024 (11 days left to apply)

Job Requisition ID: JR24101246

This role offers the opportunity to lead our information security and risk management efforts as the Director of Information Security and Risk Management. By developing and implementing a comprehensive vulnerability management program, updating security policies, and driving security awareness initiatives, you will directly contribute to our mission of maintaining a secure and compliant IT environment. In return, you will benefit from a competitive salary, professional growth opportunities, and a supportive, flexible work environment that values well-being and inclusion.

Position Responsibilities:

1. Lead the development and implementation of a comprehensive vulnerability management program.
2. Assist IT leads in facilitating management response and remediation efforts.
3. Ensure overall IT compliance with regulatory requirements through proactive planning, communication, ownership, and relationships.
4. Review and update information security policies and standards.
5. Develop and implement security awareness programs to educate IT departments about new standards, security best practices, emerging threats, and mitigation strategies.
6. Guide engineering and development teams to ensure a secure software development lifecycle (SDLC). Assist in defining and implementing gatekeeping measures, improving release management processes, and increasing compliance rates.

Required Qualifications:

1. Minimum of 10 years of experience in information security and risk management, with at least 5 years in a leadership role.
2. Proficiency in vulnerability management, security policy development, security awareness, application security, global security initiatives, and cloud security.
3. Bachelor’s degree in Information Security, Computer Science, or a related field; advanced degree preferred.
4. Relevant certifications such as CISSP, CISM, CRISC, or equivalent.

Preferred Qualifications:

1. Previous experience in a similar role.
2. Deep understanding of information security frameworks and standards (e.g., ISO 27001, NIST, PCI).
3. Strong analytical and problem-solving skills.
4. Excellent communication and leadership skills.

When you join our team:

1. We’ll empower you to learn and grow the career you want.
2. We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
3. As part of our global team, we’ll support you in shaping the future you want to see.

About Manulife and John Hancock:

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.

Manulife is an Equal Opportunity Employer:

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.

Primary Location: Toronto, Ontario

Working Arrangement: Hybrid

Salary range is expected to be between: $107,730.00 CAD - $200,070.00 CAD

If you are applying for this role outside of the primary location, please contact recruitment@manulife.com for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.

Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence.