Staff Cyber Threat Exposure Management

Security Analyst At Manulife / John Hancock, we are seeking a highly skilled and forward-thinking Security Analyst to join our cybersecurity team. This role focuses on vulnerability management, threat prioritization, and risk-based decision-making to protect our digital assets and infrastructure. The ideal candidate will have hands‑on experience with tools such as Avalor, Qualys, Tenable, Tanium but more importantly, will possess the ability to analyze, contextualize, and elevate findings into actionable intelligence that aligns with business priorities. Office location: Waterloo - ON (primary) or Toronto - ON or Boston - USA Work arrangement: Hybrid - 3 days in office, 2 days from Home. Remote working option is not available. Position Responsibilities Lead the CTEM lifecycle, including identification, assessment, prioritization, and help inform remediation tracking and reporting. Utilize tools like Avalor to perform scans and interpret results beyond surface-level findings. Inform and help maintain risk-based prioritization frameworks to ensure the most critical threats are addressed first. Translate technical vulnerabilities into business risk language for executive and stakeholder reporting. Experience working with API’s and multiple data sources and ingesting and deconflicting those data sources into a singular view. Platform orchestration and automation experience is also highly desirable in this role. Monitor threat intelligence feeds and correlate with internal vulnerabilities to assess potential impact. Contribute to the development of metrics and dashboards to track vulnerability trends, configuration weakness trends, along with remediation effectiveness. Act as the bridge between the CTEM program at Manulife and the cyber security teams and infrastructure management teams. Stay current with emerging threats, vulnerabilities, and regulatory requirements. Required Qualifications At least 7 years IT industry experience 3–5+ years of experience in cybersecurity, with a focus on vulnerability management and threat analysis. Exposure and experience with the Avalor product line from Zscaler is highly desirable for this position. Experience with Qualys or similar vulnerability scanning platforms. Demonstrated ability to think strategically and prioritize risks in complex environments. Familiarity with CVSS scoring, MITRE ATT&CK, and risk management frameworks. Experience with SIEM, threat intelligence platforms, and asset management tools is a plus. Excellent communication skills, with the ability to convey technical concepts to non-technical audiences. When you join our team We’ll empower you to learn and grow the career you want. We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words. As part of our global team, we’ll support you in shaping the future you want to see. About Manulife and John Hancock Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html. Manulife is an Equal Opportunity Employer At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com. Referenced Salary Location Waterloo, Ontario Working Arrangement Hybrid Salary range is expected to be between $94,220.00 CAD - $174,980.00 CAD If you are applying for this role outside of the primary location, please contact recruitment@manulife.com for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance. Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact recruitment@manulife.com for more information about U.S.-specific paid time off provisions. #J-18808-Ljbffr