Are you looking for a supportive and collaborative workplace with great benefits and clear career development? You’ve come to the right place.
Why choose Manulife?
Competitive Salary packages and performance bonusesDay 1 HMO + FREE coverage for your dependents (inclusive of same-sex partners)Retirement savings benefitRewarding culture that values wellness and well-beingPerformance BonusGlobal network of industry expertsExtensive training resourcesJob Description:
We’re looking for a Vendor Information Security Analyst to join our Procurement Operations team at MBPS. In this role, you are expected to Review of independent audit reports (SOC 2, ISO27001 Statement of Applicability, penetration testing reports, vulnerability management reports etc. and Draft final output/deliverable, the vendor information risk assessment memos for approval by business owners.
Have the skills and knowledge for the job? Learn more about the opening below!
Key Responsibilities:
Review third-party contracts to help ensure key terms and conditions are included to safeguard Manulife information assetsReport on the status of vendor risk assessment assignments in weekly team meetings and stand-up meetings with onshore counterparts/stakeholdersSupport IT audits conducted by Audit Services, regulators, clients, and third-party auditors.Be part of an active team who remains current on emerging risks and technologies, key developments, and strategies for the businesses we supportStay informed on emerging technologies, key business drivers, evolving threats and opportunitiesAdditional duties as assigned in information security and business continuity management domainsQualifications:
University Degree (Computer Science, Business or Finance preferred, but not required)Experience with performing third-party information security risk assessments3-5 years of experience in Technology, Technology Risk and Controls, Technology Audit, Cybersecurity, Application Security, Network Security, Cyber Resiliency and Third-Party Outsourcing Risk Management within a large enterprise level environmentKnowledge of and experience with industry risk frameworks and information security standards (ISO27001, NIST Cybersecurity Framework, PCI DSS, HITRUST, etc.)Experienced in Archer, ProcessUnity or any Vendor Risk Management tool is preferred.
Let's make every day better together. Learn about our opportunities at JOBS.MANULIFE.COM
About Manulife and John Hancock
Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.
Manulife is an Equal Opportunity Employer
At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.
It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.
Working Arrangement
Hybrid