Position: Lead Security Architect (Director level, individual contributor)
At Manulife, we are changing the way we unlock value and secure the enterprise through technology and we want you to be part of it! We are growing our cybersecurity program with the vision to deliver quality applications using AI that add value to our customers, faster and securely, customer is at the focus of everything we do, and millions of end users rely on our products daily.
We are building a state-of-the-art cybersecurity program to better protect the firm's critical assets.
As a Lead Security Architect
, you'll be responsible for designing, developing, and implementing robust security strategies and solutions to protect Manulife's digital assets from advanced cyber threats. In this hub-and-spoke model
, you will report to the Chief Security Architect and will be the dedicated security architecture lead for a specific business unit, ensuring alignment with the global security framework while addressing the unique needs of the segment. You will play a crucial role in shaping our global security posture and ensuring security is a foundational element of our technology and business initiatives.
Office location:
Toronto – Canada (ideal) or Boston – USA.
Work arrangement:
Hybrid (3 days in office, 2 days from Home);
Remote working option is not available.
Travel Flexibility:
Willingness and ability to travel within Canada and USA to support business operations and stakeholder engagement.
Position Responsibilities:
• Architectural Design
:
Lead the design and development of robust security frameworks, standards, and best practices for global systems, data, and networks. This includes creating reference architectures and implementation patterns for security solutions.
• Strategic Planning
:
Translate business, technology, and threat drivers into practical security roadmaps. You'll ensure our security strategy is aligned with broader organizational goals.
• Financial Analysis
:
Conduct financial evaluations of security technologies, including quantifying purchasing and licensing options, estimating labor costs, and calculating the total cost of ownership (TCO), return on investment (ROI), or payback period.
• Project Management
:
Draft project plans for security service and technology deployments and coordinate with stakeholders across the organization to ensure successful implementation.
• Collaboration & Integration
:
Work closely with various teams across Manulife's business and IT units—including enterprise architecture, development, and risk management—to seamlessly integrate security throughout the entire project lifecycle.
• Risk Management
:
Conduct comprehensive risk assessments to identify vulnerabilities and define necessary controls. Partner with global information risk management teams to prioritize and mitigate risks effectively.
• Security Evaluation
:
Continuously evaluate the security of new and emerging technologies and potential solutions. You will stay ahead of the curve on cybersecurity trends to recommend and implement innovative solutions.
• Mentorship & Communication
:
Act as a security subject matter expert, coaching and mentoring development teams. You will also communicate complex security standards and strategies to both technical staff and senior management with clarity and influence.
• AI Security: Design and implement security frameworks for Machine Learning (ML), Generative AI (GenAI), and Agentic AI systems. Evaluate AI-powered security tools and integrate artificial intelligence capabilities into security operations and threat detection.
• Domain-Specific Accountabilities:
• Application Security
:
Assess solution architectures for compliance with security standards, define secure service interfaces, and provide guidance to application security engineers on threat modelling and secure software development methodologies.
• Cloud Security
:
Provide deep expertise in securing multi-cloud computing environments (SaaS, IaaS, PaaS), with a strong focus on platforms like Microsoft Azure and AWS
.
Required Qualifications:
• To succeed in this role, a candidate must have a strong blend of technical expertise, professional experience, and interpersonal skills.
• Education &
Certifications:
• Bachelor's or master's degree in…
