Job Title

Manulife is at the forefront of cybersecurity innovation, safeguarding critical assets with a sophisticated security program. We are seeking a visionary leader to fill the role of Vice President of Cyber Defense Strategy and Resiliency. This executive position is pivotal in shaping the strategic direction of our application security initiatives across all global operations and business lines. As the Vice President of Cyber Defense Strategy and Resiliency, you will spearhead the development and execution of an enterprise-wide security strategy, ensuring robust protection of our digital infrastructure against evolving threats. Your leadership will drive the integration of security policies into the software development lifecycle, ensuring compliance with regulatory mandates and adherence to industry best practices. Your role will be instrumental in balancing security resilience with business innovation, particularly in the realms of GenAI and AI technologies. This executive role demands a visionary leader who can drive innovation and resilience in Manulife''s cybersecurity posture, ensuring the protection of our global assets while enabling transformative business growth. Responsibilities Global Security Strategy and Implementation Lead the strategic direction of our Vulnerability Management and Application Security programs, ensuring alignment with our global business objectives Collaborate with business units to tailor security controls to specific threat landscapes, driving maturity and resilience across teams and services. Maintain a security roadmap that aligns with both cyber and business strategies, meeting regulatory and compliance requirements. Present to the executive teams across the globe on the current security posture and identify systemic issues. Security Leadership Mature the existing operating model to provide centralized security services for the identification, assessment and risk-based prioritization of all vulnerabilities. Cultivate and lead a high-performing team of cybersecurity experts, fostering a culture of continuous improvement and proactive security measures. Drive intelligent remediation through engineering excellence and runtime enforcement, minimizing risk exposure and enhancing security maturity. Develop a proactive approach through tools, processes and people to drive a culture of continuous improvement Collaborate with segment partners to integrate security controls into DevSecOps and security SDLC practices aligned with industry standards and best practices (OWASP, NIST). GenAI, AI, Data Security, and Analytics Lead the design and implementation of AI-driven solutions for automated vulnerability detection, prioritization, and remediation. Oversee the integration of predictive analytics to forecast emerging threats and vulnerabilities. Implement AI-powered anomaly detection for real-time monitoring of applications and infrastructure vulnerabilities and gaps. Develop automated response frameworks that leverage AI to identify high-impact vulnerabilities and recommend context-aware remediation paths that align with business priorities. Leverage AI-powered solutions based on different CI/CD pipelines used across the organization to enable automated remediation and reporting of vulnerabilities. Provide expert guidance and support to business units leveraging AI and GenAI technologies, ensuring that security considerations are effectively integrated into their initiatives Regulatory Compliance, Governance, and Stakeholder Management Ensure alignment with OSFI and other regulatory frameworks, delivering executive-level insights to the Board and Senior Management. Ensure segment-level OKRs are aligned with enterprise goals for security awareness and remediation acceleration. Collaborate with Line 1b, Line 2, and Internal Audit teams on security governance matters. Work with segment partners to implement appropriate security controls that align with audit, regulatory and compliance requirements. Security Resilience Drive the integration of security resilience principles and practices into Application security and vulnerability management practices. Develop risk-based prioritization for the patching, remediation and protection of critical assets and processes to drive and support their resilience. Work with Security Operations teams to ensure that incident response and recovery processes are designed to minimize the impact of security incidents on business operations and maintain the organization''s resilience. Continuously monitor and assess the organization''s security resilience and make recommendations for improvement based on industrys best practices and emerging threats. Individual Responsibilities Lead and design cybersecurity solutions for large and complex programs and products. Develop strong cross-functional partnerships and provide clear, risk-based reporting to stakeholders. Influence stakeholders across the organization to drive maturity and improve security posture. Spearhead Application security & Vulnerability management controls globally and enable segments to implement solutions to meet their business needs. Provide cybersecurity leadership and strategic vision across the organization and in external forums. Leads highly visible multi-disciplinary project teams or initiatives with organizational wide risk and provides thought leadership. Proactively identifies and solves the most complex problems, uses game-changing methods to think beyond existing solutions. Drives communication of complex business and technical ideas that have an impact on Manulifes strategic business direction. Shared Responsibilities Work with Line 2 (Risk) and Line 3 (Audit) to support any assessments Work with regulatory and compliance functions to address asks from regulators in various markets Participate in industry events to both showcase Manulifes capabilities as well as build connectivity in the Canadian, USA and other markets Work with the GCS leadership to provide clear roadmaps, metrics and operational reporting to segment and other partners. Preferred Qualifications Strategic and Risk Management: Proven ability to develop long-term strategies aligned with organizational goals, prioritizing vulnerabilities effectively. Influence and Collaboration: Strong communication and collaboration skills to engage with global teams and influence security initiatives. Educational and Certification Requirements: Masters degree in relevant fields and CISSP certification required; additional certifications preferred. Industry Leadership: Recognized thought leader with experience in managing large teams and influencing industry standards. Presentation Skill: Proficient in articulating complex concepts to diverse leadership levels through compelling storytelling and a clear, accessible communication style. Technical and Cybersecurity Expertise: Deep understanding of vulnerability management, security technologies, and evolving threats. Regulatory and Compliance: Knowledge of cybersecurity legislation and regulations, ensuring compliance and risk mitigation. Continuous Monitoring and Innovation: Commitment to continuous improvement through AI and machine learning to enhance security measures. propos de Manuvie et de John Hancock La Socit Financire Manuvie est un chef de file mondial des services financiers qui aide les gens prendre leurs dcisions plus facilement et vivre mieux. Pour en apprendre plus notre sujet, rendez vous ladresse Manuvie est un employeur qui souscrit au principe de lgalit daccs lemploi Chez Manulife/John Hancock nous valorisons notre diversit. Nous nous efforons dattirer, de perfectionner et de maintenir une main d''oeuvre qui est aussi diversifie que nos clients, et de favoriser la cration dun milieu de travail inclusif qui met profit la diversit de nos employs et les comptences de chacun. Nous nous engageons assurer un recrutement, une fidlisation, une promotion et une rmunration quitables, et nous administrons toutes nos pratiques et tous nos programmes sans discrimination en raison de la race, de lascendance, du lieu dorigine, de la couleur, de lorigine ethnique, de la citoyennet, de la religion ou des croyances ou des convictions religieuses, du genre (y compris grossesse et affection lie une grossesse), de lorientation sexuelle, des caractristiques gntiques, du statut dancien combattant, de lidentit de genre, de lexpression de genre, de lge, de ltat matrimonial, de la situation de famille, dune invalidit ou de tout autre motif protg par la loi applicable. Nous nous sommes donn comme priorit dliminer les obstacles laccs galitaire lemploi. Cest pourquoi un reprsentant des Ressources humaines collaborera avec les candidats qui demandent accommodement raisonnable pendant le recrutement. Tous les renseignements communiqus pendant le processus de demande daccommodement seront stocks et utiliss conformment aux lois et aux politiques applicables de Manuvie. Pour demander une mesure daccommodement raisonnable dans le cadre du recrutement, crivez . Rgion de rfrence du salaire Toronto, Ontario Modalits de travail Hybride Lchelle salariale devrait se situer entre $175,700.00 CAD - $326,000.00 CAD Si vous posez votre candidature ce poste en dehors de la rgion principale, veuillez crire pour obtenir lchelle salariale correspondant votre rgion. Le salaire varie en fonction des conditions du march local, de la gographie et de facteurs pertinents lis au poste telles les connaissances, les comptences, les qualifications, lexprience et lducation ou la formation. Les employs ont galement la possibilit de participer des programmes de motivation et de toucher une rmunration incitative lie au rendement de lentreprise et au rendement individuel. Avantages sociaux Manuvie offre aux employs admissibles une vaste gamme davantages sociaux personnalisables, notamment une assurance soins mdicaux, soins dentaires, sant mentale, soins de la vue, invalidit de courte et de longue dure, assurance vie et assurance DMA, assurance adoption, de maternit de substitution et de soins mdicaux non urgents ainsi que des programmes daide aux employs et leur famille. Nous proposons galement aux employs admissibles diffrents rgimes dpargne-retraite (y compris des rgimes de rente et un programme international dactionnariat assortie de cotisations patronales de contrepartie) ainsi que des ressources en matire dducation et de conseils financiers. Notre gnreux programme de congs rmunrs au Canada comprend les jours fris, les congs annuels, les congs personnels et les congs de maladie, et nous offrons toute la gamme des congs autoriss prvus par la loi. Si vous posez votre candidature ce poste aux tats-Unis, veuillez crire pour obtenir de plus amples renseignements sur les dispositions relatives aux congs rmunrs spcifiques aux tats-Unis. #J-18808-Ljbffr