Lead Cybersecurity Architect

About The Position

Requirements

• Bachelor's or master's degree in computer science, information systems, cybersecurity, or a related field.
• Relevant industry certifications such as CISSP (Certified Information Systems Security Professional) or CCSP (Certified Cloud Security Professional) are required.
• At least 10 years of experience specifically in senior information security architecture roles, with demonstrated progression in responsibility and complexity.
• Proven experience in the financial services industry, with understanding of regulatory requirements, compliance frameworks, and industry-specific security challenges.
• Experience in using architecture methodologies such as SABSA, Zachman, and/or TOGAF.
• Direct, hands-on experience or strong working knowledge of managing security infrastructure—e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM, and log management technology.
• Verifiable experience reviewing application code for security vulnerabilities.
• Experience securing CI/CD pipelines.
• Direct, hands-on experience or a strong working knowledge of vulnerability management tools.
• Documented experience and a strong working knowledge of the methodologies to conduct threat-modelling exercises on new applications and services.
• Experience designing the deployment of applications and infrastructure into public cloud services.
• Direct experience designing IAM technologies and services, including Active Directory, Lightweight Directory Access Protocol (LDAP), and Amazon Web Service (AWS) IAM.
• Extensive knowledge of full-stack IT infrastructure, including: Applications, Databases, Operating systems—Windows, Unix, and Linux, Hypervisors, IP networks—WAN and LAN, Storage networks—Fibre Channel, iSCSI, and NAS, Backup networks and media, Containers/Kubernetes.
• Excellent verbal and written communication skills are crucial for articulating complex technical concepts and influencing stakeholders at all levels. You must be able to translate complex security matters into business terms that are easily understood by colleagues and senior management.
• Strong analytical, problem-solving, and decision-making abilities.
• The capacity to balance competing priorities and maintain a collaborative and positive attitude.
• Willingness and ability to travel within Canada and USA to support business operations and stakeholder engagement.

Nice To Haves

• Experience from large complex environment is highly preferred but not a must.
• Experience from large financial Org’s is a definite plus but not a must.

Responsibilities

• Lead the design and development of robust security frameworks, standards, and best practices for global systems, data, and networks. This includes creating reference architectures and implementation patterns for security solutions.
• Translate business, technology, and threat drivers into practical security roadmaps. You'll ensure our security strategy is aligned with broader organizational goals.
• Conduct financial evaluations of security technologies, including quantifying purchasing and licensing options, estimating labor costs, and calculating the total cost of ownership (TCO), return on investment (ROI), or payback period.
• Draft project plans for security service and technology deployments and coordinate with stakeholders across the organization to ensure successful implementation.
• Work closely with various teams across Manulife's business and IT units—including enterprise architecture, development, and risk management—to seamlessly integrate security throughout the entire project lifecycle.
• Conduct comprehensive risk assessments to identify vulnerabilities and define necessary controls. Partner with global information risk management teams to prioritize and mitigate risks effectively.
• Continuously evaluate the security of new and emerging technologies and potential solutions. You will stay ahead of the curve on cybersecurity trends to recommend and implement innovative solutions.
• Act as a security subject matter expert, coaching and mentoring development teams. You will also communicate complex security standards and strategies to both technical staff and senior management with clarity and influence.
• Design and implement security frameworks for Machine Learning (ML), Generative AI (GenAI), and Agentic AI systems. Evaluate AI-powered security tools and integrate artificial intelligence capabilities into security operations and threat detection.
• Assess solution architectures for compliance with security standards, define secure service interfaces, and provide guidance to application security engineers on threat modelling and secure software development methodologies.
• Provide deep expertise in securing multi-cloud computing environments (SaaS, IaaS, PaaS), with a strong focus on platforms like Microsoft Azure and AWS.

Benefits

• health
• dental
• mental health
• vision
• short- and long-term disability
• life and AD&D insurance coverage
• adoption/surrogacy and wellness benefits
• employee/family assistance plans
• various retirement savings plans (including pension and a global share ownership plan with employer matching contributions)
• financial education and counseling resources
• paid time off program in Canada includes holidays, vacation, personal, and sick days
• full range of statutory leaves of absence