Manager, Cybersecurity, Resilience & Governance

As the Agent & Producer Cybersecurity Lead at John Hancock, you will be an integral member of the Cybersecurity Compliance Program (CCP) team. You will manage and oversee the Agent & Producer Cybersecurity Program, ensuring that our distribution partners' cybersecurity measures protect company and customer data, comply with regulatory requirements, and align with industry standards. You will work with various business lines, global teams, and support our distribution cybersecurity oversight and support our distribution partners across multiple John Hancock legal entities. You will proactively identify and manage compliance issues, provide valuable feedback to the CCP Director, and act as the primary point of contact for distribution firms regarding their inquiries and cybersecurity controls.

This role offers you the opportunity to lead and influence in a function that continues to grow and mature in our company. You will work closely and regularly with many cross-functional teams including local and global IT and security teams, Distribution, Procurement, Resources, Risk, Audit, Privacy, Legal, and Compliance, as well as external parties.

Boston – USA (preferred) or Toronto – Canada (alternative) or Waterloo – Canada (alternative)

Hybrid – 3 days in office, 2 days from Home; Remote working option is not available.

• Develop and implement the strategy, operating model, and execution plans for the John Hancock Agent & Producer Program.
• Oversee and evaluate the cybersecurity controls of distribution partner firms to ensure effectiveness.
• Ensure our firms’ compliance with regulatory due diligence requirements to safeguard company and customer data.
• Build and foster relationships with partner firms to support them in the oversight process.
• Stay informed about industry trends related to third‑party risk management.
• Identify and document any deficiencies in cybersecurity controls among distribution partner firms and collaborate with them on remediation efforts.
• Manage responses to external inquiries, such as client security questionnaires, regarding cybersecurity operations and technical controls.
• Provide regular updates on the status of the Agent & Producer Program to the Cybersecurity Compliance Program Committee.
• Coordinate with distribution firms to address significant vulnerabilities.
• Assist with additional IT and security projects as needed.

• Experience conducting risk assessments and/or compliance reviews.
• Experience responding to regulatory exam and/or audit requests, including collection, review, and submission of documentation and/or preparing subject matter experts for interviews.
• Experience providing a service‑oriented approach to managing risk and compliance with cross‑functional, global, and enterprise‑wide teams.
• Minimum 8+ years IT industry experience
• 4+ years of audit, risk, legal, and/or compliance experience. Insurance or financial industry and/or IT and information security experience preferred.
• Bachelor’s degree or 4 additional years of related experience.
• Strong time management and organizational skills.
• Strong analytical and problem‑solving skills.
• Strong written and verbal communication skills.

• Related industry certification (e.g., CRISC, CISSP, CISA) a plus.
• Strong working knowledge of Microsoft Office tools. Experience with Archer eGRC a plus.

• We’ll empower you to learn and grow the career you want.
• We’ll recognize and support you in a flexible environment where well‑being and inclusion are more than just words.
• As part of our global team, we’ll support you in shaping the future you want to see.

Manulife Financial Corporation es un importante proveedor internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Para obtener más información acerca de nosotros, visite http://www.manulife.com .

En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, formar y retener una fuerza laboral tan diversa como los clientes a los que prestamos servicios, y para fomentar un entorno laboral inclusivo en el que se aprovechen las fortalezas de las culturas y las personas. Estamos comprometidos con la equidad en las contrataciones, la retención de talento, el ascenso y la remuneración, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y las afecciones relacionadas con este), orientación sexual, características genéticas, condición de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley vigente.

Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a recruitment@manulife.com.

Boston, Massachusetts

Híbrido

$104,860.00 USD - $194,740.00 USD

Si se está postulando para este puesto fuera de la ubicación principal, póngase en contacto con recruitment@manulife.com para conocer el rango salarial de su ubicación. El salario real variará según las condiciones locales del mercado, la geografía y los factores relacionados con el trabajo pertinentes, como conocimiento, habilidades, calificaciones, experiencia y educación/capacitación. Los empleados también tienen la oportunidad de participar en programas de incentivos y obtener una compensación de incentivos vinculada al desempeño comercial e individual.

Company: John Hancock Life Insurance Company (U.S.A.)