Skip to content
Manager – Technology Governance & Controls
| Company | Manulife Financial |
|---|
| Location | Toronto, ON, Canada |
|---|
| Salary | $94220 – $174980 |
|---|
| Type | Full-Time |
|---|
| Degrees | Bachelor’s |
|---|
| Experience Level | Senior |
|---|
Requirements
- Minimum of five (5) years’ of progressive Information Technology and Infrastructure/Architecture experience with a minimum of one year passionate about Cyber Security.
- Experience in planning, configuring, deploying, and main security solutions (including cloud) in an enterprise environment.
- Knowledge of Technology and Cyber Security Risk Management.
- Post secondary education preferred (Computer Science/IT, Risk Management).
- ISACA courses such as CISSP, CISA.
- Working knowledge of industry security standards such as ISO27001/ISO27002, NIST, etc.
Responsibilities
- Assist with conducting various information security and compliance assessments
- Recommend additional security solutions, controls, or enhancements to existing security solutions to improve overall enterprise security
- Conduct RCSAs, initiative risk assessments (information security risks), facilitate and lead audits and control testing reviews as well as third party/vendor management security control reviews
- Govern, operate and mature the organizational technology risk management program.
- Support SOX IT control testing and reporting
- Monitor and remediate technology risks at the business unit level.
- Capture and report organizational technology risk program status and metrics.
- Identify, design, support and implement ETS shared services.
- Improve and provide oversight of organizational resilience capabilities.
- Review and keep up to date with Information Risk Standards and Technology Risk Policies.
- Manage business unit specified DR posture in line with business strategies and risk tolerance.
- Ensure infrastructure capabilities are in place and aligned with business unit needs.
- Triage and manage organizational Crisis and Incident Response.
- Local BCM point of contact for the organization and for Global Information Risk Management (GIRM).
- Collaborate and participate with GIRM to complete enhance program according to GIRM and OSFI expectations.
Preferred Qualifications
- Superb communication and leadership skills with ability to collaborate with regionally diverse teams.
- Flexible and adaptable to change.
- Superior influencing and negotiation skills and the ability to build consensus.
- Provide thought leadership in support of technology risk and control practices and objectives.
- Service oriented, collaborative, and trusted culture.
- Accountable and transparent for performance and sharing results.
- Persistent in driving efficiencies and strategies.
- Industry awareness and standard processes.
