Information Security Consultant

Manulife is hiring an Information Security Consultant to lead Risk Control Self Assessments (RCSA) and Risk Governance across technology, data, and information/operational risk. Reporting to the Director, IRM, this first‑line role oversees risk execution and control operations aligned to Manulife’s risk appetite, standards, and regulatory expectations. You will act as a trusted advisor to functional risk teams, centers of excellence, and senior technology/data leaders—driving effective control design, monitoring, issue remediation, and clear risk reporting to enable informed decisions and strong governance. Position Responsibilities: Perform internal control testing for RCSA, Informational, and Operational Risk and Resilience Oversight, regulatory, and audit activities Design and implement new controls; test design and operating effectiveness Coordinate research and responses for completeness, data analytics, compliance monitoring, internal reviews, regulatory requirements, and external audits Analyze processes and controls using data analytics to identify gaps, trends, and remediation needs Recommend system enhancements and operational improvements to increase efficiency and strengthen risk governance Troubleshoot and resolve complex operational and control‑related issues Drive continuous improvement of business processes and controls Act as an internal SME for escalations, consulting, and problem‑solving Provide governance over issue resolution and corrective actions Ensure integrity of processing and workflows through cross‑department collaboration Maintain and manage the department’s procedures and documentation library, ensuring accuracy and currency Required Qualifications: 3‑5 years of experience in Information Risk, Technology Risk, Cyber Risk, GRC, or Operational Risk. Experience performing independent L1B oversight or audit‑style review activities. Strong understanding of technology, data, cloud, infrastructure, and operational resilience risks. Ability to evaluate complex risk scenarios. Experience with risk programs (RCSA, third‑party risk, issues, incidents, BC/DR, change risk). Familiarity with GRC platforms such as Archer, ServiceNow, or Fusion. Knowledge of regulatory frameworks and standards (ISO, NIST, COBIT, CSA/CCM, OSFI, etc.). Exposure to Generative AI, Agentic AI, automation tools, or continuous monitoring technologies. When you join our team: We’ll empower you to learn and grow the career you want. We’ll recognize and support you in a flexible environment where well‑being and inclusion are more than just words. As part of our global team, we’ll support you in shaping the future you want to see. About Manulife and John Hancock Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit Manulife is an Equal Opportunity Employer At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy‑related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact View email address on click.appcast.io. Referenced Salary Location Toronto, Ontario Working Arrangement Hybrid Salary range is expected to be between $86,100.00 CAD – $136,100.00 CAD Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance. The actual salary will vary depending on local market conditions, geography and relevant job‑related factors such as knowledge, skills, qualifications, experience, and education/training. Please contact View email address on click.appcast.io for the salary range for your location. Benefits Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short‑ and long‑term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact View email address on click.appcast.io for more information about U.S.-specific paid time off provisions. #J-18808-Ljbffr