Position Responsibilities:
As aDirector in Governance & Control, youll be at the center of shaping how we manage risk across Global Technology & Operations. You will set the vision and lead the execution of risk management strategies across the Function globally. Your role is pivotal in driving organizational resilience, regulatory compliance, cybersecurity maturity and operational efficiency. Your work will be dynamic, strategic, and future-focused.
Heres a snapshot of your impact:
Risk Methodology & Taxonomy: Oversee the development and continuous improvement of technology and cybersecurity risk and control methodologies, ensuring consistency and clarity across technology teams globally.
Control Framework: Lead the development, implementation, and continuous improvement of the technology and cybersecurity control framework, ensuring alignment with global industry frameworks and regulatory requirements (e.g., NIST, ISO 27001, SOX, OSFI, SEC, FINRA, DORA etc.).
Technical Advisory: Serve as the subject matter expert in technology risk, cybersecurity, and emerging threats. Guide the design of new controls and adoption strategies.
Policy Compliance: Guide the Function to assess the impact of new control standard requirements and collaborate with stakeholders to establish implementation plans to ensure compliance within established timelines.
AI & Automation: Identify and drive the integration of AI and automation to enhance risk, control, and compliance processes 6 making our work faster and smarter.
Lead Communities of Practice: Own procedures, deliver training, track improvements, and report performance.
Keep Us on Track: Contribute to weekly and monthly reporting 6 scorecards, dashboards, trackers, summaries.
Be a Global Voice: Represent the team in global forums, leadership meetings, offsites, and conferences 6 sharing insights and shaping strategy.
Required Qualifications:
Were looking for a visionary leader with deep technical expertise in technology risk and cybersecurity; a proven ability to influence at the highest levels.
10+ years of progressive experience in Technology Risk, Cybersecurity, Information Security, Operational Risk, Business Resiliency, or Audit within a complex, global enterprise.
Demonstrated success in leading large-scale risk and cybersecurity programs, including strategy development, execution, and cross-functional collaboration.
Advanced academic credentials (e.g., degree in Computer Science, Information Security, Business, or related discipline) and professional certifications (e.g., CISSP, CISM, CRISC, CPA).
Hands-on experience withGRC tools(Archer preferred) and a strong grasp of risk frameworks and control standards.
Expertise inrisk methodologies, control design, and audit best practices.
Exceptionalverbal and written communicationskills 6 you can simplify complexity and tell compelling stories with data.
Strong analytical mindset with the ability toinfluence decisions, solve problems creatively, and drive continuous improvement.
Comfortable working acrossglobal time zonesand navigating diverse stakeholder environments.
Core Competencies:
Leadership & Influence: You inspire confidence, guide teams, and influence outcomes across all levels.
Stakeholder Engagement: You build trust, align priorities, and manage expectations with finesse.
Strategic Thinking: You connect dots, anticipate risks, and think several steps ahead.
Collaboration: You thrive in team environments and know how to bring people together to solve complex challenges.
Communication: Youre a skilled presenter and facilitator, able to tailor your message to any audience.
Execution Excellence: You manage time and priorities, delivering high-quality work in fast-paced settings.
Ready to join us? Lets build a safer, smarter future together.
When you join our team:
Well empower you to learn and grow the career you want.
Well recognize and support you in a flexible environment where well-being and inclusion are more than just words.
As part of our global team, well support you in shaping the future you want to see.
The role being advertised is an existing vacancy.
Referenced Salary Location
Toronto, Ontario
Hybrid
Salary range is expected to be between
$113,260.00 CAD - $210,340.00 CAD
Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. If you are applying for this role outside of the primary location, please contact for the salary range for your location.
Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact for more information about U.S.-specific paid time off provisions.