**The opportunity** Manulife is looking for hands-on Senior Cloud Security Engineer with a passion for Cloud Security, Application Security, and DevSecOps. The senior engineer will be reporting to Principal engineer. The ideal applicant will produce an autonomous policy driven security strategy to build security into our cloud services, from design, through implementation to release, and will have deep technical expertise in security technologies, along with a demonstrable understanding of information security and networking. This hands-on role will focus on designing security features and hardening processes for cloud environments and container-based applications. This job involves identifying integration and cybersecurity issues, proposing solutions to optimize data and infrastructure protection against internal and external threats. **Responsibilities** + Assess, design, implement, automate, and document security solutions, controls, and processes for MS Azure and Amazon Web Service (AWS) cloud platforms. + Develop and maintain Security patterns for Cloud Platforms and Services; Assess all cloud patterns to ensure consistency with recommended security practices and controls. + Hands-on knowledge on Cloud Security configuration, Policy as a Code, Knowledge on Pipelines and integrating security policies. + Offer domain expertise on architecture, authentication, and systems security derived from an in-depth understanding of our cloud engineering stack, services, and data flow. + Demonstrable experience performing continuous cybersecurity risk assessments of new and existing technologies to identify risks and establish appropriate controls that balance security and operability. + Planning, testing, and implementing security solutions for the monitoring and protection of company assets and applications in the cloud. + Deployment, management, and optimization of cloud and container security tools such as Prisma Cloud, Azure Defender, Qualys etc. **How will you create an impact?** In this role, you will have the opportunity to work with a dynamic and collaborative team, and to make a significant impact on the delivery of technology services to our global organization. The Senior Cloud Security Engineer should have extensive experience in crafting our global Cyber Security Program, aligning it with information security policy and leading industry standards. They will apply proven practices and methodologies. **What motivates you?** + You obsess about customers, listen, engage and act for their benefit. + You think big, with curiosity to discover ways to use your agile approach and enable business outcomes. + You thrive in teams and enjoy getting things done together. + You take ownership and build solutions, focusing on what matters. + You do what is right, work with integrity and speak up. + You share your humanity, helping us build a diverse and inclusive work environment for everyone. **What we are looking for** + Bachelor’s degree in information technology, Computer Science or equivalent required + 5 to 7 years of IT Security and/or security engineering experience, with a focus on Cloud Security Posture Management (CSPM), Infrastructure as a Code (IaC) and Cloud technologies. + Proficiency in a scripting language such as Python, Json and Terraform + Experience with selecting, designing, and implementing security tools and capabilities for large, complex commercial organizations with focus on cloud security. + Understanding of compliance frameworks, like PCI, ISO 27001, NIST, FedRAMP, MITRE. + Strong written and presentation skills with the ability to communicate effectively with diverse technical and non-technical groups, spanning all organizational levels. + Must be able to work in a fast paced and changing environment while handling multiple tasks, priorities, and directives. Capable of working under pressure. + Experience maintaining information security competency through ongoing professional development and staying abreast of emerging technologies, risks and controls in information and cyber security. + Experience collaborating with audit L3 teams globally to allow definition of effective assessments on information and cyber security risk management. + Experience working closely with Information Security, product, and software development teams to assess cybersecurity risk, cloud controls, and recommend solution and remediation in the cloud environment. + The following certifications are nice to have: CISSP, OSCP, OSCE, GIAC Web Application Penetration Tester (GWAPT), CEH, CompTIA Security **What can we offer you?** + A competitive salary and benefits packages. + A growth trajectory that extends upward and outward, encouraging you to follow your passions and learn new skills. + A focus on growing your career path with us. + Flexible work policies and strong work-life balance. + Professional development and leadership opportunities. **Our commitment to you** + Values-first culture + We lead with our Values every day and bring them to life together. + Boundless opportunity + We create opportunities to learn and grow at every stage of your career. + Continuous innovation + We invite you to help redefine the future of financial services. + Delivering the promise of Diversity, Equity and Inclusion + We foster an inclusive workplace where everyone thrives. + Championing Corporate Citizenship + We build a business that benefits all stakeholders and has a positive social and environmental impact. **Acerca de Manulife y John Hancock** Manulife Financial Corporation es un importante proveedor internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Para obtener más información acerca de nosotros, visite http://www.manulife.com . **Manulife es un empleador que ofrece igualdad de oportunidades** En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, formar y retener una fuerza laboral tan diversa como los clientes a los que prestamos servicios, y para fomentar un entorno laboral inclusivo en el que se aprovechen las fortalezas de las culturas y las personas. Estamos comprometidos con la equidad en las contrataciones, la retención de talento, el ascenso y la remuneración, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y las afecciones relacionadas con este), orientación sexual, características genéticas, condición de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley vigente. Nuestra prioridad es eliminar las barreras para garantizar la igualdad de acceso al empleo. Un representante de Recursos Humanos trabajará con los solicitantes que requieran una adaptación razonable durante el proceso de solicitud. Toda la información que se haya compartido durante el proceso de solicitud de adaptación se almacenará y utilizará de manera congruente con las leyes y las políticas de Manulife/John Hancock correspondientes. Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a recruitment@manulife.com . **Primary Location** Toronto, Ontario **Semana de Trabajo Comprimida** Híbrido **Salary range is expected to be between** $94,220.00 CAD - $174,980.00 CAD Si se está postulando para este puesto fuera de la ubicación principal, póngase en contacto con recruitment@manulife.com para conocer el rango salarial de su ubicación. El salario real variará según las condiciones locales del mercado, la geografía y los factores relacionados con el trabajo pertinentes, como conocimiento, habilidades, calificaciones, experiencia y educación/capacitación. Los empleados también tienen la oportunidad de participar en programas de incentivos y obtener una compensación de incentivos vinculada al desempeño comercial e individual. Manulife ofrece a los empleados aptos una amplia variedad de beneficios personalizables, entre ellos, beneficios de salud, odontológicos, de salud mental, oftalmológicos, por discapacidad a corto y a largo plazo, cobertura de seguro de vida y por muerte accidental y desmembramiento, adopción/subrogación y bienestar, y planes de asistencia al empleado/familiar. También ofrecemos a los empleados admisibles varios planes de ahorro para la jubilación (incluidos planes de pensiones y un plan mundial de propiedad de acciones con contribuciones equivalentes del empleador) y recursos de asesoramiento y educación financiera. Nuestro generoso programa de tiempo libre remunerado en Canadá incluye feriados, vacaciones, días personales y días por enfermedad, y ofrecemos la gama completa de ausencia laboral reglamentaria. Si se está postulando para este puesto en los EE. UU., póngase en contacto con recruitment@manulife.com para obtener más información sobre las disposiciones relativas al tiempo libre remunerado específicas de EE. UU.