Manulife
Financial Services
DirectorInformationSecurity&RiskManagement
Neural analysis suggests this role is
optimal for Director candidates.
“Director Information Security & Risk Management at Manulife. Skills: Information Security, Risk Management, Information Risk Management (IRM) program leadership, Security Architecture, Vulnerability Management, Application Security, Cloud Security, Program Management, Stakeholder Management. Lead and evolve the IRM program aligned to enterprise risk appetite and global frameworks. Oversee identification, assessment, mitigation, and monitoring of information security risks”
Industry & Context.
problem-solving; Manage issue remediation and corrective action plans to ensure timely resolution
What They're Looking For.
Must Have
Experience leading information security and/or information risk management programs, Knowledge of security risk domains such as security architecture, vulnerability management, application security, and cloud security, Experience in program or portfolio management with organizational and delivery skills, problem-solving, communication, and stakeholder management abilities
Nice to Have
Professional certifications such as CISA, CRISC, CISM, CISSP, or equivalent, Experience working in a matrixed, cross-functional environment, Ability to manage multiple priorities and drive outcomes across diverse stakeholders
What You'll Do.
Lead and evolve the IRM program aligned to enterprise risk appetite and global frameworks
Oversee identification
and monitoring of information security risks
Drive continuous improvement initiatives to enhance security maturity
Manage issue remediation and corrective action plans to ensure timely resolution
Monitor key risk indicators (KRIs) to support risk-informed decision-making
business-focused risk reporting to senior leaders and governance forums
Translate technical security risks into actionable business insights
Support risk committees with accurate and timely reporting
Improve reporting efficiency through automation and data quality enhancements
Contribute to budgeting
and portfolio governance activities
and communication of security policies and standards
Ensure alignment with regulatory and organizational requirements
Promote consistent adoption of security practices across the organization
Act as a trusted advisor to business leaders on security and risk topics
Align cybersecurity priorities with business objectives and enterprise strategy
Represent the Canadian segment in global security initiatives and planning
Lead and develop a high-performing information security team
and growth opportunities
Foster a collaborative
and accountable team culture
How You'll Work.
Team & Collaboration
Partner closely with global security teams, enterprise risk, and business technology leaders; Represent the Canadian segment in global security initiatives and planning; Foster a collaborative, inclusive, and accountable team culture
Communication Scope
communication; stakeholder management; Deliver clear, business-focused risk reporting to senior leaders and governance forums; Translate technical security risks into actionable business insights; Support risk committees with accurate and timely reporting
Process & Methodology
program or portfolio management, organizational and delivery skills, manage multiple priorities, drive outcomes across diverse stakeholders
Full Job Description
We are seeking a Director, Information Security & Risk Management to lead the Information Risk Management (IRM) program for the Canadian segment. This role is responsible for driving effective risk governance, aligning security with business priorities, and delivering measurable outcomes that support enterprise decision-making. You will partner closely with global security teams, enterprise risk, and business technology leaders to integrate security into day-to-day operations and support strategic initiatives. **Position Responsibilities:** **Information Risk Management & Governance** * Lead and evolve the IRM program aligned to enterprise risk appetite and global frameworks * Oversee identification, assessment, mitigation, and monitoring of information security risks * Drive continuous improvement initiatives to enhance security maturity * Manage issue remediation and corrective action plans to ensure timely resolution * Monitor key risk indicators (KRIs) to support risk-informed decision-making **Metrics, Reporting & Executive Engagement** * Deliver clear, business-focused risk reporting to senior leaders and governance forums * Translate technical security risks into actionable business insights * Support risk committees with accurate and timely reporting * Improve reporting efficiency through automation and data quality enhancements * Contribute to budgeting, forecasting, and portfolio governance activities **Policies, Standards & Compliance** * Support development, maintenance, and communication of security policies and standards * Ensure alignment with regulatory and organizational requirements * Promote consistent adoption of security practices across the organization **Business Partnership & Collaboration** * Act as a trusted advisor to business leaders on security and risk topics * Align cybersecurity priorities with business objectives and enterprise strategy * Represent the Canadian segment in global security initiatives and planning **Leadership & Team D
Applying for this Director Information Security & Risk Management role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Manulife?
Real rants from real employees. Read before you apply.