Information Risk Manager at Manulife | Hybrid Hired

About the role

Manager, Information Risk Management overseeing and challenging risk practices at Manulife. Providing expert-level analysis and governance scrutiny for technology, data, and operational risk.

Responsibilities

Provide independent second line challenge of first line risk assessments, controls, and risk decisions.
Assess adequacy of technology, data, and operational risk practices against standards and regulatory expectations.
Develop clear, evidence‑based second line risk opinions and escalate material issues with recommendations.
Perform deep‑dive RCSA reviews and challenge risk ratings, control assertions, and completeness of assessments.
Identify underassessed risks, weak controls, and cross‑assessment inconsistencies.
Challenge vendor due diligence, inherent risk scoring, and oversight adequacy for cloud, SaaS, and critical providers.
Review major technology initiatives and platform changes for risk impacts and sufficiency of mitigation plans.
Evaluate risks associated with architecture changes, new solutions, and implementation activities.
Review incidents, classifications, RCA quality, and recurrence prevention measures.
Assess and challenge risk acceptances and corrective action plans for feasibility and urgency.
Validate CAP closure evidence as part of second line review.
Review business continuity plans, DR test results, and resilience capabilities, challenging gaps and assumptions.
Analyze enterprise risk data to identify systemic issues, trends, and emerging risks.
Use Generative/Agentic AI and automation tools to enhance oversight efficiency and thematic analysis.
Communicate challenge outcomes clearly, advise stakeholders, and represent second line in risk discussions and governance forums.

Requirements

6–10+ years of experience in Information Risk, Technology Risk, Cyber Risk, GRC, or Operational Risk.
Experience performing independent second‑line oversight or audit-style review activities.
Strong understanding of technology, data, cloud, infrastructure, and operational resilience risks.
Ability to evaluate complex risk scenarios and form well‑supported second‑line opinions.
Experience with risk programs (RCSA, third‑party risk, issues, incidents, BC/DR, change risk).
Familiarity with GRC platforms such as Archer, ServiceNow, or Fusion.
Knowledge of regulatory frameworks and standards (ISO, NIST, COBIT, CSA/CCM, OSFI, etc.).
Exposure to Generative AI, Agentic AI, automation tools, or continuous monitoring technologies.

Benefits

We’ll empower you to learn and grow the career you want.
We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
As part of our global team, we’ll support you in shaping the future you want to see.

Similar roles

Browse all Risk jobs

4 hours ago

MA

Analista Riesgo Técnico

MAPFRE

Analista Riesgo Técnico responsible for managing technical risk and solvency calculations at MAPFRE. Evaluating profitability and compliance under local regulatory standards.

Onsite Role

6 hours ago

PN

Lead, Business Administration, Risk & Corporate

Playgroup NSW

Lead, Business Administration, Corporate & Risk at Playgroup NSW overseeing governance and operational excellence. Central role ensuring compliance and coordination across corporate services and risk management.

Hybrid Role

Sydney Australia Risk

16 hours ago

BU

Risk Management Analyst

Baker Tilly US

Conflict Analyst assisting with client acceptance and conflict clearance at Baker Tilly. Conducting risk analysis and supporting project management across various service lines.

Hybrid Role

Santa Clara United States Risk

$67,360 - $102,150 per year

16 hours ago

BU

Senior Associate, Data Governance Policy

Baker Tilly US

Sr. Associate, Data Governance at Baker Tilly managing governance policy development and data quality initiatives. Collaborating with business and technical teams for cross - domain data governance execution.

Onsite Role

Chicago United States Risk

$74,200 - $148,230 per year

yesterday

MS

VP, Third Party Risk Officer

Morgan Stanley

VP, Third Party Risk Officer responsible for managing Third Party risks within Operational Risk. Collaborating with teams globally on risk assessment and reporting with a strategic impact.

Hybrid Role

Baltimore United States Risk

$95,000 - $165,000 per year

yesterday

MS

Fraud Risk Director

Morgan Stanley

Director in Operational Risk at Morgan Stanley managing External Theft and Fraud while driving strategic evolution of risk management practices. Overseeing fraud risk monitoring and fostering collaboration across risk units.

Onsite Role

Baltimore United States Risk

$70,000 - $125,000 per year

yesterday

MS

Risk Officer

Morgan Stanley

Risk Officer responsible for supervisory and compliance functions at Morgan Stanley. Monitoring risk management procedures and maintaining compliance with regulations in Florida offices.

Onsite Role

Boca Raton United States Risk

yesterday

SB

Senior Manager – Model Risk Management

Starling Bank

Senior Risk Manager overseeing model risk implementations and compliance assessments at a transformative UK bank. Leading governance policies and ensuring models align with risk appetite.

Hybrid Role

London United Kingdom Risk

yesterday

G(

Risk Advisory Manager – Forensics

Grant Thornton (US)

Risk Advisory Manager responsible for managing client engagements in real estate and construction projects. Collaborating with partners and staff while leading investigations and enhancing client relationships.

Hybrid Role

Chicago United States Risk

$120,000 - $194,400 per year

yesterday

UB

Operational Risk Review Manager – Technology

U.S. Bank

Operational Risk Review Manager leading review activities and overseeing risk management teams at U.S. Bank. Driving enhancements in risk review programs across various operational risk categories.

Hybrid Role

Minneapolis United States Risk

$133,365 - $156,900 per year