Analyst, Information Risk Management

The Analyst, Information Risk Management, supports the Information Risk Officer (IRO) by providing Line 2 oversight activities across Global Cybersecurity Services (GCS). This role assists with risk assessments, control reviews, issue management, and reporting to help ensure technology and cybersecurity risks are appropriately identified, documented, and monitored. The Analyst works with Line 1 partners to gather information, validate controls, and support effective risk governance.Position Responsibilities:Independent Oversight & SupportSupport Line 2 reviews of technology, cyber, data, AI, and emerging tech risks.Assist with RCSAs, control testing, ad-hoc risk assessments, and technology change reviews.Help review control documentation across areas such as cloud, IAM, data protection, infrastructure, resilience, and disaster recovery.Track and monitor risk exceptions, issues, and corrective action plans.Support review of reportable events and third‑party risk assessments.Provide data, evidence, and analysis to support Line 2 challenge.Governance, Reporting & CollaborationPrepare materials, metrics, and updates for dashboards and risk reporting.Maintain documentation, templates, and process artifacts to support consistent oversight.Work with partners across Technology Risk, Standards Governance, Operational Risk, Privacy, and Compliance to support aligned risk interpretation.Identify opportunities to improve documentation quality, streamline processes, and enhance assessment consistency.Professional SkillsCommunicate clearly and concisely with stakeholders.Build strong working relationships across Line 1 and Line 2 teams.Demonstrate curiosity, attention to detail, and a commitment to a strong risk culture.Required Qualifications:2–4+ years in technology risk, cybersecurity, IT audit, compliance, or related rolesBachelor’s degree in computer science, computer engineering, IT Security, or a related field or equivalent experience.Foundational knowledge of cloud, IAM, data protection, infrastructure, or cybersecurity conceptsExperience supporting RCSAs, control testing, or risk assessmentsStrong analytical and documentation skillsAbility to work with stakeholders across technology, cyber, privacy, and risk teamsStrong written and verbal communication skills & detail-oriented with strong organizational skillsBilingualism (English and French) is an asset. If the successful candidate is in Québec, proficiency in English will be required to support clients from various provinces outside of Quebec.​Preferred Qualifications:Professional certifications or working towards such as CISSP, CISA, CRISC and CISM is an assetFamiliarity with risk frameworks (NIST CSF, ISO 27001, CIS Controls) is an assetWhen you join our team:We’ll empower you to learn and grow the career you want.We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.As part of our global team, we’ll support you in shaping the future you want to see.#LI-HybridAbout Manulife and John HancockManulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit .Manulife is an Equal Opportunity EmployerAt Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact .Referenced Salary LocationHalifax, Nova ScotiaWorking ArrangementHybridSalary range is expected to be between$86,100.00 CAD - $136,100.00 CADIf you are applying for this role outside of the primary location, please contact for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact for more information about U.S.-specific paid time off provisions.