Senior Cloud Security Engineer

Manulife

Manulife is a leading financial services group. We provide financial advice, insurance, as well as wealth and asset management solutions for individuals, groups and institutions.

Manulife is looking for a hands-on Senior Cloud Security Engineer with a passion for Cloud Security, Application Security, and DevSecOps. The senior engineer will report to the Principal Engineer. The ideal applicant will produce an autonomous policy-driven security strategy to build security into our cloud services, from design through implementation to release, and will have deep technical expertise in security technologies, along with a demonstrable understanding of information security and networking.

This hands-on role will focus on designing security features and hardening processes for cloud environments and container-based applications. This job involves identifying integration and cybersecurity issues, proposing solutions to optimize data and infrastructure protection against internal and external threats.

Responsibilities

• Assess, design, implement, automate, and document security solutions, controls, and processes for MS Azure and Amazon Web Service (AWS) cloud platforms.
• Develop and maintain security patterns for Cloud Platforms and Services; assess all cloud patterns to ensure consistency with recommended security practices and controls.
• Hands-on knowledge of Cloud Security configuration, Policy as Code, and integrating security policies.
• Offer domain expertise on architecture, authentication, and systems security derived from an in-depth understanding of our cloud engineering stack, services, and data flow.
• Demonstrable experience performing continuous cybersecurity risk assessments of new and existing technologies to identify risks and establish appropriate controls that balance security and operability.
• Plan, test, and implement security solutions for monitoring and protecting company assets and applications in the cloud.
• Deploy, manage, and optimize cloud and container security tools such as Prisma Cloud, Azure Defender, Qualys, etc.

What we are looking for

• Bachelor’s degree in information technology, Computer Science or equivalent required.
• 5 to 7 years of IT Security and/or security engineering experience, focusing on Cloud Security Posture Management (CSPM), Infrastructure as Code (IaC), and Cloud technologies.
• Proficiency in a scripting language such as Python, JSON, and Terraform.
• Experience with selecting, designing, and implementing security tools and capabilities for large, complex commercial organizations with a focus on cloud security.
• Understanding of compliance frameworks, like PCI, ISO 27001, NIST, FedRAMP, MITRE.
• Strong written and presentation skills with the ability to communicate effectively with diverse technical and non-technical groups, spanning all organizational levels.
• Must be able to work in a fast-paced and changing environment while handling multiple tasks, priorities, and directives. Capable of working under pressure.
• Experience maintaining information security competency through ongoing professional development and staying abreast of emerging technologies, risks, and controls in information and cyber security.
• Experience collaborating with audit L3 teams globally to define effective assessments on information and cyber security risk management.
• Experience working closely with Information Security, product, and software development teams to assess cybersecurity risk, cloud controls, and recommend solutions and remediation in the cloud environment.
• The following certifications are nice to have: CISSP, OSCP, OSCE, GIAC Web Application Penetration Tester (GWAPT), CEH, CompTIA Security +.

What can we offer you?

• A competitive salary and benefits package.
• A growth trajectory that extends upward and outward, encouraging you to follow your passions and learn new skills.
• A focus on growing your career path with us.
• Flexible work policies and strong work-life balance.
• Professional development and leadership opportunities.

Our commitment to you

• Values-first culture.
• We lead with our Values every day and bring them to life together.
• Boundless opportunity.
• We create opportunities to learn and grow at every stage of your career.
• Continuous innovation.
• We invite you to help redefine the future of financial services.
• Delivering the promise of Diversity, Equity, and Inclusion.
• We foster an inclusive workplace where everyone thrives.

Manulife is an Equal Opportunity Employer.

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop, and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals.

Primary Location: Toronto, Ontario

Working Arrangement: Hybrid

Salary range is expected to be between $94,220.00 CAD - $174,980.00 CAD.