Information Security Manager, RCSA

We’re looking for an Information Risk Manager (RCSA) to join our Group Functions IT Information Security and Business Resilience Team at MBPS. In this role, you will be responsible for planning, executing, leading, and completing Risk and Control Self-Assessments (RCSA) and continuous monitoring activities. This includes RCSA, Integrated RCSA for Critical Operation and Services reviews, data analytics, and other special projects. You will support both technology and business teams in adhering to organizational and regulatory requirements, enhancing the resilience of our technology systems and infrastructure.

Have the skills and knowledge for the job? Learn more about the opening below!

Key Responsibilities:

• Plan, execute, and/or lead various types of audits in line with RCSA methodology, standards, and regulatory requirements.
• Present findings to management, reach agreements, and make practical, value-added recommendations to improve the control environment and operational efficiency.
• Employ data analytics techniques to enhance the effectiveness and efficiency of the audit review process.
• Ensure that outputs are recorded in the enterprise GRC system, complying with all operational and information risk policies and standards.
• Assist Risk Owners in adhering to policies, frameworks, standards, and guidelines through active engagement and consulting services.
• Document and monitor the progress of corrective actions for issues identified through Technology Control Testing, as well as those identified by the Second and Third Lines of Defense, regulators, and management self-assessments.

Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Software Engineering, Business Administration, or a related field, complemented by an Information Security certification such as CISSP, CRISC, or CISA.
• Strong understanding of principles, practices, audit methodologies, control frameworks, risk management techniques, and IT processes (e.g., Application Security, IT Project Management, Vulnerability Management).
• Ability to quickly understand IT processes and risks, identify key controls, analyze complex situations, and make practical recommendations. Must be results-oriented, able to balance multiple priorities, and manage projects with attention to detail while maintaining a focus on the "big picture."
• Excellent oral and written communication skills, with the ability to resolve conflicts and engage effectively with staff at all levels. Proven relationship skills and the ability to collaborate with different business units in a multicultural environment are essential.
• The candidate should be a strong team player, willing to share knowledge, provide guidance, and assist new team members. The ability to challenge the status quo and seek continuous improvement is also important.
• Hybrid working arrangement: 3 days in office, 2 days at home.
• Shift Schedule : Morning Shift (10am to 7pm) PH Time

When You Join Our Team:

• We’ll empower you to learn and grow the career you want. 
• We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words. 
• As part of our global team, we’ll support you in shaping the future you want to see.

Let's make every day better together. Learn about our opportunities at JOBS.MANULIFE.COM

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.

Working Arrangement

Hybrid