Staff cyber threat exposure management (ctem) engineer

At Manulife / John Hancock, we are seeking a highly skilled and forward-thinking Security Analyst to join our cybersecurity team. This role focuses on vulnerability management, threat prioritization, and risk-based decision-making to protect our digital assets and infrastructure. The ideal candidate will have hands-on experience with tools such as Avalor, Qualys, Tenable, Tanium but more importantly, will possess the ability to analyze, contextualize, and elevate findings into actionable intelligence that aligns with business priorities.

Office location: Waterloo - ON (primary) or Toronto - ON or Boston - USA

Work arrangement: Hybrid - 3 days in office, 2 days from Home.

Remote working option is not available.

• Lead the CTEM lifecycle, including identification, assessment, prioritization, and help inform remediation tracking and reporting.

• Utilize tools like Avalor to perform scans and interpret results beyond surface-level findings.

• Inform and help maintain risk-based prioritization frameworks to ensure the most critical threats are addressed first.

• Translate technical vulnerabilities into business risk language for executive and stakeholder reporting.

• Experience working with API’s and multiple data sources and ingesting and deconflicting those data sources into a singular view.

• Platform orchestration and automation experience is also highly desirable in this role.

• Monitor threat intelligence feeds and correlate with internal vulnerabilities to assess potential impact.

• Contribute to the development of metrics and dashboards to track vulnerability trends, configuration weakness trends, along with remediation effectiveness.

• Act as the bridge between the CTEM program at Manulife and the cyber security teams and infrastructure management teams.

• Stay current with emerging threats, vulnerabilities, and regulatory requirements.

• At least 7 years IT industry experience

• 3-5+ years of experience in cybersecurity, with a focus on vulnerability management and threat analysis.

• Exposure and experience with the Avalor product line from Zscaler is highly desirable for this position.

• Experience with Qualys or similar vulnerability scanning platforms.

• Demonstrated ability to think strategically and prioritize risks in complex environments.

• Familiarity with CVSS scoring, MITRE ATT&CK, and risk management frameworks.

• Experience with SIEM, threat intelligence platforms, and asset management tools is a plus.

• Excellent communication skills, with the ability to convey technical concepts to non-technical audiences.

• We’ll empower you to learn and grow the career you want.

• We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.

• As part of our global team, we’ll support you in shaping the future you want to see.

Manuvie est un employeur qui souscrit au principe de l’égalité d’accès à l’emploi

Chez Manulife/John Hancock nous valorisons notre diversité. Nous nous efforçons d’attirer, de perfectionner et de maintenir une main d'oeuvre qui est aussi diversifiée que nos clients, et de favoriser la création d’un milieu de travail inclusif qui met à profit la diversité de nos employés et les compétences de chacun. Nous nous engageons à assurer un recrutement, une fidélisation, une promotion et une rémunération équitables, et nous administrons toutes nos pratiques et tous nos programmes sans discrimination en raison de la race, de l’ascendance, du lieu d’origine, de la couleur, de l’origine ethnique, du citoyenneté, de la religion ou des convictions religieuses, du genre (y compris grossesse et affection liée à une grossesse), de l’orientation sexuelle, des caractéristiques génétiques, du statut d’ancien combattant, de l’identité de genre, de l’expression de genre, de l’âge, de l’état matrimonial, de la situation de famille, d’une invalidité ou de tout autre motif protégé par la loi applicable.

Nous nous sommes donné comme priorité d’éliminer les obstacles à l’accès égalitaire à l’emploi. C’est pourquoi un représentant des Ressources humaines collaborera avec les candidats qui demandent accommodement raisonnable pendant le recrutement. Tous les renseignements communiqués pendant le processus de demande d'accommodement seront stockés et utilisés conformément aux lois et aux politiques applicables de Manuvie. Pour demander une mesure d’accommodement raisonnable dans le cadre du recrutement, écrivez à recruitment@manulife.com.