Director Strategy Information security and Risk management

Manulife
Candiac
CAD 100,000 - 125,000
Job description

Director Strategy Information Security and Risk Management

Manulife is a leading financial services group. We provide financial advice, insurance, as well as wealth and asset management solutions for individuals, groups and institutions.

This role offers an exceptional opportunity to lead and shape our information security and risk management strategies as the Director of Strategy for Information Security & Risk Management. Reporting to the Information Security and Risk Management Officer, you will collaborate with the Global Risk and Security team to align cybersecurity plans with organizational priorities, enhance security initiatives, and coordinate cross-team activities. Your expertise will be pivotal in maturing all aspects of our security portfolio, ensuring compliance, and driving continuous improvement in our security practices. In return, you will benefit from professional growth opportunities, a supportive work environment, and the chance to make a significant impact on our security posture.

Position Responsibilities:

  • Collaborate in developing and implementing comprehensive information risk management and security strategies.
  • Assist in the development and integration of security policies, standards, and procedures across the organization ensuring compliance with relevant regulations.
  • Support in managing information security risk and in implementing global cybersecurity initiatives.
  • Develop a roadmap for sustainable information risk metrics and implement internal best practices for strategy and continuous improvement.
  • Mature technical service offerings such as risk assessments, threat modeling, application security and compliance & regulatory programs.
  • Collaborate with Technology Leaders to ensure security integration into business processes and operations, and ensure KRIs achieve target goals and remain within established risk thresholds.
  • Provide vision and leadership to manage information security risk, ensuring business alignment and effective governance.
  • Support the response to information security incidents and breaches.
  • Prepare and present reports on information security to senior management.
  • Assist in coaching, mentorship, and support to team members in their professional development.

Required Qualifications:

  • Bachelor’s degree in Computer Science, Information Technology, or a related field.
  • Proven experience in information risk management and information security leadership roles.
  • Strong understanding of information security frameworks, standards, and regulations (e.g., ISO 27001, NIST, SOC II, OSFI).
  • Strong knowledge of security risk management practices including security architecture, vulnerability and patch management, application security, and cloud security.
  • Experience in developing and implementing security strategies and policies.
  • Strong problem-solving and decision-making skills.
  • Superb communication and interpersonal skills.
  • Industry-recognized certification (e.g., CISA, CRISC, CISM, CISSP) or equivalent certification is desirable.

Preferred Qualifications:

  • Experience in the financial services industry.

When you join our team:

  • We’ll empower you to learn and grow the career you want.
  • We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
  • As part of our team, you’ll have the opportunity to shape our security strategies and make a significant impact on our organization's security posture.

Primary Location

Toronto, Ontario

Working Arrangement

Hybrid

Salary range

Expected to be between $107,730.00 CAD - $200,070.00 CAD

Manulife is an Equal Opportunity Employer. At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

Get a free, confidential resume review.
Select file or drag and drop it
Avatar
Free online coaching
Improve your chances of getting that interview invitation!
Be the first to explore new Director Strategy Information security and Risk management jobs in Candiac