**The Opportunity** Are you looking for a supportive, collaborative workplace with great teams and inspiring leaders? You’ve come to the right place. We’re looking for ambitious people who share our values and want to make every day better for people around the world. If this sounds like you, and the career below sounds exciting, we’d like to hear from you. **We are looking for someone with:** At least 3-5 years experience: + Bachelor's degree in computer science or a related technical field. + Minimum of 3++ years of experience in Vulnerability Assessment and Penetration Testing (VAPT). + Has strong background knowledge of OWASP Top 10 - Web, API, Mobile and LLM and Gen AI. + Strong understanding on NIST cybersecurity framework, PCI compliance and other standard security policies. + Hands on experience performing SCA, Static and Dynamic Application Security Testing, IAST, and RASP tools (Snyk, Burp, MobSF, Checkmarx, etc.) + Demonstrate knowledge of OWASP testing methodologies and OSI layer. + Familiarity with agile and DevSecOps principles. + Understanding of software development lifecycle and/or ad hoc. + Strong communication skills with people of different levels/roles. + Has excellent written and verbal skills to provide clear and concise assessment report related to application security, remediation fix and other actionable plans. + Strong attention to detail, communication, time management, and ownership of work. + Ability to work with peers, executives and employees at all levels. + Open to feedback, collaborative, and proactive. + Good organizational, problem-solving and analytical skills. + Maintains a positive and quality-oriented approach under pressure. + Relevant security certifications are an asset: eJPT, eWPT, OSCP, CISSP, GPEN, GWAPT, etc. **On the job you will: ** + Use automated tools and manual techniques to identify security vulnerabilities. + Analyze and interpret scan results to determine severity and impact. + Simulate penetration testing both black box, gray box, and white box approach. + Develop security testing plans and report findings. + Present findings to technical and non-technical stakeholders. + Work with developers to mitigate identified vulnerabilities, suggest security improvements and best practices. + Keep abreast of latest threats, vulnerabilities, and industry trends. + Develop or customize tools and scripts to automate VAPT processes. + Provide training and awareness for engineering practice. + Assist in developing and enforcing security policies and standards. + Assist in incident response by identifying and mitigating vulnerabilities. + Participate in post-mortem analysis to improve security posture. **Manulife is an Equal Opportunity Employer** At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application INTERNAL process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. **Acerca de John Hancock y Manulife** Manulife Financial Corporation es un importante grupo internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Nuestra sede mundial se encuentra en Toronto, Canadá, y operamos como Manulife mediante nuestras oficinas de Canadá, Asia y Europa, y principalmente como John Hancock en Estados Unidos. Brindamos servicios de asesoría financiera, seguros y soluciones de gestión patrimonial y de activos para personas, grupos e instituciones. Para finales de 2022, ya contábamos con más de 40,000 empleados, más de 116,000 representantes y miles de socios de distribución que brindaban nuestros servicios a más de 34 millones de clientes. Para finales de 2022, los activos que gestionamos y administramos fueron de CAD 1.3 billones (USD 1.0 billones), incluidos los activos invertidos totales de CAD 0.4 billones (USD 0.3 billones) y los activos netos de fondos segregados de CAD 0.3 billones (USD 0.3 billones). Cotizamos en las bolsas de valores de Toronto, Nueva York y Filipinas como “MFC” y en la de Hong Kong como “945”. **Manulife es un empleador que ofrece igualdad de oportunidades** En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, desarrollar y retener una fuerza laboral tan diversa como los clientes a los que servimos, y para fomentar un entorno de trabajo inclusivo que abarque la fuerza de las culturas y las personas. Estamos comprometidos con el reclutamiento justo, la retención, el ascenso y la compensación, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y la lactancia), orientación sexual, características genéticas, estatus de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley aplicable. Nuestra prioridad es eliminar las barreras para garantizar la igualdad de acceso al empleo. Un representante de Recursos Humanos trabajará con los solicitantes que requieran una adaptación razonable durante el proceso de solicitud. Toda la información compartida durante el proceso de solicitud de adaptación será almacenada y utilizada de manera congruente con las leyes aplicables y las políticas de Manulife/John Hancock. Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a recruitment@manulife.com . Semana de Trabajo Comprimida Híbrido