Senior Manager, Information Risk Management

We are seeking an experienced and highly skilled Senior Security Consultant to join our organization. The ideal candidate will have a robust background in cybersecurity, with extensive experience in designing and implementing security solutions, conducting risk assessments, and advising on best practices to enhance organizational security posture.

This role is crucial for ensuring Manulife Singapore's compliance with regulatory requirements and strengthening our cybersecurity defence. With a focus on minimizing information risk, the successful candidate will lead initiatives to bolster security controls, manage third-party risks, and cultivate a culture of security awareness.

Position Responsibilities:

Serve as the subject matter expert in cybersecurity across all domains, including network security, application security, cloud security, and endpoint protection.

• Ensure compliance with regulatory regulations and standards, such as PDPA, MAS Technology Risk Management, and Cyber Hygiene, by aligning and implementing effective security practices.
• Lead incident response efforts, ensuring timely identification, containment, and remediation of security incidents.
• Conduct information risk assessments in business projects to identify vulnerabilities and recommend risk mitigation measures.
• Collaborate with cross-functional teams, including IT, development, and operations, to integrate security best practices into organizational processes and projects.
• Collaborate with development teams to integrate secure coding practices and conduct threat modelling to proactively mitigate potential vulnerabilities.
• Provide security consultation and guidance on security architecture, ensuring robust protection against emerging threats and compliance with relevant security standards and regulations.
• Stay up-to-date with the latest cybersecurity trends, threats, and technologies to continuously enhance the organization's security posture.
• Develop and deliver security training and awareness programs to educate employees and stakeholders on security policies and practices.
• Coordinate with business units to conduct due diligence third-party assessments on business managed vendors.
• Prepare detailed security reports and presentations for senior management and stakeholders, highlighting security risks and recommended actions.

Required Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 7 years of experience in application security, information risk management, with demonstrated experience in implementing security measures.
• Strong understanding of information security practices, including risk assessment, threat modelling, and vulnerability management.
• Strong understanding of security frameworks and standards, such as NIST, ISO 27001, CIS Controls.
• Proven experience in conducting security assessments, risk management, and cybersecurity incident response.
• Excellent communication, presentation, and interpersonal skills, with the ability to convey complex security concepts to technical and non-technical audiences.
• Strong analytical and problem-solving skills.
• Relevant security certifications such as CISSP, CISM, CISA, or CEH.

When you join our team:

• We’ll empower you to learn and grow the career you want.

• We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.

• As part of our global team, we’ll support you in shaping the future you want to see.

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact [email protected].