Are you looking for unlimited opportunities to develop and succeed? With work that challenges and makes a difference, within a flexible and supportive environment, we can help our customers achieve their dreams and aspirations.
If you are passionate about Cyber Security, this opportunity might be for you!
We are looking for an Analyst to be part of the John Hancock Cybersecurity Regulatory Compliance Program. In this role, you will provide support to the program Lead. You will be responsible for assisting with all program activities as well as developing collaborative working relationships with business unit IT teams and global teams supporting John Hancock business units.
You will proactively identify and handle cybersecurity regulatory compliance issues and support business units for all related matters.
If you are interested to deepen your experience in Compliance and help us strengthen our program, let's talk!
Duties & Responsibilities
Assist in delivering our cyber strategy, operating model, and execution plans.
Assist in assessing cybersecurity operations and technical control environments against regulatory and industry requirements to identify compliance issues and help develop corrective action plans.
Assist in monitoring and maintaining effective cybersecurity operations and technical control environments in accordance with regulatory and industry requirements.
Assist in delivering regular reporting on cybersecurity operations and technical control environments, ongoing compliance initiatives, and key areas of risk to executive- and board-level management.
Assist in leading and coordinating regulatory exams and other reviews of cybersecurity operations and technical control environments.
Maintain an ongoing knowledge and understanding of applicable regulatory and industry requirements.
Support other business unit IT and security initiatives as needed.
Knowledge of cybersecurity laws and regulations, including HIPAA, SEC/OCIE, CFTC/NFA, OSFI, NYDFS Cybersecurity Regulation and other state adoptions of NAIC model laws.
Knowledge of industry standards and cybersecurity frameworks, including ISO 27000, NIST, COBIT, COSO, and ITIL.
Experience conducting risk assessments and compliance reviews and applying risk management frameworks aligned with regulatory and industry requirements.
Experience responding to regulatory exam and audit requests, including collection, review, and submission of documentation and other supporting materials.
Experience providing a service-oriented approach to managing risk and compliance with cross-functional and enterprise-wide teams.
Bachelor's degree or 4 additional years of related experience. Master's degree or Juris Doctor a plus.
Audit, risk, legal, or compliance experience. Insurance/financial industry and IT/information security experience a plus.
Related industry certification (e.g., CRISC, CISSP, CISA) a plus.
Strong time management and organizational skills.
Strong written and verbal communication skills.
Strong working knowledge of Microsoft Office tools. Experience with Archer eGRC a plus.
If you are ready to unleash your potential it's time to start your career with Manulife/John Hancock.
Manulife Financial Corporation is a leading international financial services group that helps people make their decisions easier and lives better. With our global headquarters in Toronto, we operate as Manulife across our offices in Canada, Asia, and Europe, and primarily as John Hancock in the United States. We provide financial advice, insurance, as well as wealth and asset management solutions for individuals, groups and institutions. At the end of 2018, we had more than 34,000 employees, over 82,000 agents, and thousands of distribution partners, serving almost 28 million customers. As of September 30, 2019, we had over $1.2 trillion (US$881 billion) in assets under management and administration, and in the previous 12 months we made $29.8 billion in payments to our customers.
Our principal operations in Asia, Canada and the United States are where we have served customers for more than 100 years. We trade as 'MFC' on the Toronto, New York, and the Philippine stock exchanges and under '945' in Hong Kong.
Manulife is an equal opportunity employer. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention and advancement and we administer all of our practices and programs based on qualification and performance and without discrimination on any protected ground.
It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will consult with applicants contacted to participate at any stage of the recruitment process who request any accommodation. Information received regarding the accommodation needs of applicants will be addressed confidentially.