The Manager/Sr. Manager, Information Risk Management will be part of the Information Risk Management Team and will be responsible for supporting the development and implementation of global IRM program elements and the Governance, Risk and Control Compliance (GRC) improvement strategy. The key responsibilities below do not represent a comprehensive listing of job duties that are required for this role. We reserve the right to change duties or assign additional duties at any time.

You will be an integral part of a dynamic IRM community, collaborating with over 150 information risk professionals and hundreds of other information security and business continuity professionals across all our locations. As a member of our team, you will have the opportunity to contribute to a world-class company known for its commitment to diversity, competitive benefits, community involvement, and work-life balance.

Position Responsibilities:

This position supports the design and implementation of enhancements to Manulife’s Global Information Risk Management programs and its underlying components. This includes supporting the development of enterprise-wide processes and guidelines covering information risk and control identification, assessment, treatment, measurement, monitoring and reporting, and for activities that drive risk and control improvements within the Technology operation processes. The position requires subject matter expertise in Operational and Information risk and control management and proven communication and influencing skills. This position works across multiple businesses, functions, and geographies to promote awareness and execution of the IRM requirements.  

The incumbent will report to the Sr. Director, Information Risk Management within the 2nd Line of Defence risk organization.

Key responsibilities include, but are not limited to:

Support initiatives to enhance the Company’s Information risk management methodologies, including Control Assurance, Information Risk Assessments, etc.  

Collaborate with IRM colleagues and partners to develop and execute on all required functional roadmaps and priorities.

Support the evolution of the various Information Risk assessment program (Control assurance testing, change risk assessments, etc.) and ensure alignment with organization’s operational risk outcomes that support OSFI’s Guidelines.

Support the change management and communications of initiatives of the program.

Support ongoing activities to drive control awareness and control improvements for the organization’s high risk technology business processes.

Support the risk program frameworks and their alignment with GRC tool (Archer) workflows.

Support the development of metrics that monitor key control activity performance.

Ensure continuous and effective line of communication across appropriate Lines of Defense teams.

Identify opportunities for creating efficiencies within IRM program’s framework and processes.

Assist with ad-hoc and monthly risk reporting, memos, and presentations.

Promote a strong risk culture, influence and gain support from the senior leadership team and segments to support the implementation of the roadmaps and methodologies.

Train business unit and functional resources to implement the programs within their areas.

Support ad hoc requests as assigned.

Stay abreast with evolving Information and technology risks, new regulations, laws and requirements related to Information security, Cyber security, third party etc.

Support ad-hoc requests as assigned.

Required Qualifications:

University degree (Computer Science or related discipline preferred)

Recognized professional designations in Information Security, Audit and Business Continuity (e.g. CISSP, CISA, CRISC, FAIR, MBCP)

A background in risk management with a minimum three to five years of progressive work experience in the financial services industry.

Good knowledge and experience with GRC tools (preferably Archer) and related applications.

Strong communication skills and ability to explain highly technical information for non-technologists including executives.

Strong competencies in collaboration, problem solving and influencing key risk decisions.

Knowledge of the regulatory environments in the U.S. and Canada

Good knowledge and experience with GRC tools (preferably Archer) and related applications.

Highly organized individual with strong time management and organizational skills.

Strong writing, communication and presentation skills.

Strong analytical skills with the ability to collect, organize, analyze, and disseminate significant amounts of information with attention to detail and accuracy.

Excellent collaborative and relationship building skills; showing tact and diplomacy in dealing with others.

Ability to learn quickly and be comfortable with adjusting to ad-hoc changes.

Previous audit or 2nd line oversight and assurance experience.

Previous risk advisory consulting experience is preferred.

Strong understanding of related best practices and relevant industry framework.

When you join our team:

We’ll empower you to learn and grow the career you want. 

We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words. 

As part of our global team, we’ll support you in shaping the future you want to see.

#LI-JH

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.

Primary Location

Toronto, Ontario

Working Arrangement

Hybrid

Salary range is expected to be between

$94,220.00 CAD - $174,980.00 CAD

If you are applying for this role outside of the primary location, please contact recruitment@manulife.com for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.

Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact recruitment@manulife.com for more information about U.S.-specific paid time off provisions.