IT Risk Management Specialist

Job title: IT Risk Management Specialist

Company: Manulife

Job description: Are you looking for unlimited opportunities to develop and succeed? With work that challenges and makes a difference, within a flexible and supportive environment, we can help our customers achieve their dreams and aspirations.

Job Description

Responsibilities

This role will report directly to the GBRS Client Response & Audit Management Director within Canadian Division (CDT Line 1 Risk).

Job duties include:

• Manage and drive the audit processes (such as SOC 1 Type II, and SOC 2 Type II , Financial Statement Audit, Sarbanes Oxley, and Regulators) whilst collaborating with Internal and External Audit teams and facilitating the collation of audit and compliance artifacts.
• Monitor and ensure timely completion of the audit processes and follow-ups on audit issues.
• Co-ordinate reporting activities, evidence collection, QA and management responses
• Work with the business unit to help define and improve Operational Information Security practices and controls by providing Consultancy and expert advice based on Manulife’s standards and policies.
• For all audit reported findings, drive remediation/alignment according to Manulife’s Security Policies, Standards and Procedures.
• Report on security metrics and compliance with company policies/standards.
• Continually monitor control compliance to the control framework, providing oversight and ownership of escalated exceptions.
• Ensure that internal audit requests are executed within the time commitments provided to Internal Audit.
• Champion the IT Audit, Security and Compliance profession.
• Coach and Mentor team members and partners in IT Audit, Compliance and operational best practices.

Experience and Qualifications

• 3 -5 years of relevant information security controls, information technology audit and compliance experience.
• Proven experience with, SOC 1 type 2, SOX and SOC2 Type 2 readiness initiatives and audit coordination.
• Proven experience with IT Audit.
• Familiarity with Group Benefits or Retirement Solution would be an asset.
• Must be familiar with IT General Controls as defined in GAAPs.
• Must be familiar with Industry frameworks such as NIST, ISO, COBIT5, and CSA.
• Post-secondary diploma or degree in computer science fields of study is preferred.
• Professional certification(s) related to information controls, audit or compliance such as CISSP, CRISC, CISM, CISA, GIAC are preferred. A willingness to obtain is required
• Exceptional written and oral communication skills; working knowledge of French is considered an asset
• Experience in the technology industry is considered an asset

Attributes

• Ability to analyze and synthesize information and complex issues to develop meaningful analyses to help make informed decisions.
• Ability to analyze and form an opinion on risks and controls relating to systems and link to associated business impacts.
• Readily voices opinions (supported by facts), escalate issues and ideas, and able to positively manage conflict.
• High level of professionalism, integrity, and ethics.
• Can perform tasks independently, yet capable of working within a team environment.
• Ability to design and implement new processes and create efficiencies.
• Focused on helping business units achieve their objectives; understands that Information Security must enable the business.
• Ability to work in a fast-paced, evolving and growing environment.
• Proven time management and organizational skills required to meet tight deadlines.
• Strong presentation and interpersonal skills.
• Strong computer skills (Excel, Word and Power Point).
• Strong work ethic and able to work under pressure and perform under tight deadlines.
• Strong time management and organizational skills with attention to detail.
• Get-it-done attitude.

If you are ready to unleash your potential, it’s time to start your career with Manulife/John Hancock.

About Manulife

Manulife Financial Corporation is a leading international financial services group that helps people make their decisions easier and lives better. With our global headquarters in Toronto, Canada, we operate as Manulife across our offices in Canada, Asia, and Europe, and primarily as John Hancock in the United States. We provide financial advice, insurance, and wealth and asset management solutions for individuals, groups and institutions. At the end of 2020, we had more than 37,000 employees, over 118,000 agents, and thousands of distribution partners, serving over 30 million customers. As of December 31, 2020, we had $1.3 trillion (US$1.0 trillion) in assets under management and administration, and in the previous 12 months we made $31.6 billion in payments to our customers. Our principal operations are in Asia, Canada and the United States where we have served customers for more than 155 years. We trade as ‘MFC’ on the Toronto, New York, and the Philippine stock exchanges and under ‘945’ in Hong Kong.

Manulife is an equal opportunity employer. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention and advancement and we administer all of our practices and programs based on qualification and performance and without discrimination on any protected ground. It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will consult with applicants contacted to participate at any stage of the recruitment process who request any accommodation. Information received regarding the accommodation needs of applicants will be addressed confidentially.

Expected salary:

Location: Waterloo, ON

Job date: Wed, 24 Mar 2021 02:56:35 GMT