IT Business Unit Security Officer

We are seeking a talented Business Unit Security Officer (BUSO) to join the Cybersecurity, Resilience & Governance (CRG) team. A successful BUSO will serve as a trusted partner and subject matter expert to the business and empower them to protect their information assets and intellectual property. You will help securely implement new technologies and tools, foster consistency through common methodologies and stay fully aligned with cybersecurity issues and efforts. As a BUSO, you will enable business and IT partners to recognize and manage their cyber and information risk in a dynamic business environment. You will participate in critical projects and initiatives to ensure information risk is always considered and managed.

Position Responsibilities:

• Perform application risk assessments from a technical security and information risk management perspective, including risk identification based on information criticality through to control implementation and management of risk acceptance by business areas
• Provide application and operational security consulting services to IT, partners and clients
• Maintain among all levels of business line staff a high level of awareness about security issues and control objectives
• Identify and communicate known information security control issues to business area teams providing guidance and oversight to ensure timely remediation of the issues
• Provide support to other risk teams as necessary to address high priority risks
• Support adherence to global information security policies and standards; work with business units and technical teams to implement solutions that comply with security policies and processes
• Actively participate in your team’s plans to achieve their goals, including goals originating from CRG and the business. Participate in frameworks used to measure and report on progress towards the achievement of goals
• Stay current on emerging technologies, key business drivers, evolving threats and opportunities from both the business and CRG
• Collaborate with other CRG professionals within the US segment and across the company
• Participate in divisional and global CRG projects and initiatives as requested. Ensure business requirements and needs are considered in initiatives, projects and services.

• 7+ Years of experience
• General operating knowledge of security for applications and infrastructure, security threat/risk/data classification
• Solid understanding of Generative AI foundations, principles and tools
• Proven ability to build relationships, engage and influence others, and work with diverse internal and international user communities as well as vendors
• The ability to work both independently and as part of a team, managing multiple priorities and deadlines
• The ability to work within agile development teams
• Strong communicator and active listener with the ability to effectively articulate risk from both a business and technical standpoint to personnel with varying degrees of technical knowledge

• Fewer years of experience in security is acceptable if you have systems development experience with a proven ability to implement secure applications
• Professional certification for information security (or willingness to begin acquiring)– CISSP, CISA, CRISC, GIAC or similar credentials

• We’ll empower you to learn and grow the career you want.
• We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
• As part of our global team, we’ll support you in shaping the future you want to see.

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit the Manulife website.

Manulife is an Equal Opportunity Employer. We embrace diversity and strive to attract, develop and retain a workforce that reflects the customers we serve and fosters an inclusive work environment. We are committed to fair recruitment, retention, advancement and compensation, without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. A Human Resources representative will assist with reasonable accommodations during the application process. For accommodation requests, contact recruitment at recruitment@manulife.com.

Referenced Salary Location: Toronto, Ontario

Working Arrangement: Hybrid

Salary range is expected to be between $94,220.00 CAD - $174,980.00 CAD. If applying outside the primary location, contact recruitment for the salary range for your location. Actual salary will vary based on local market conditions, geography and relevant factors such as knowledge, skills, qualifications, experience, and education/training. Eligible employees may participate in incentive programs.

Manulife offers a wide array of benefits, including health, dental, mental health, vision, disability insurance, life insurance, retirement savings plans and paid time off. For U.S. applicants, see additional information about paid time off provisions.