Manager, Cybersecurity, Resilience

As the Agent & Producer Cybersecurity Lead at John Hancock, you will be an integral member of the Cybersecurity Compliance Program (CCP) team. You will manage and oversee the Agent & Producer Cybersecurity Program, ensuring that our distribution partners' cybersecurity measures protect company and customer data, comply with regulatory requirements, and align with industry standards. You will work with various business lines, global teams, and support our distribution cybersecurity oversight and support our distribution partners across multiple John Hancock legal entities. You will proactively identify and manage compliance issues, provide valuable feedback to the CCP Director, and act as the primary point of contact for distribution firms regarding their inquiries and cybersecurity controls.

This role offers you the opportunity to lead and influence in a function that continues to grow and mature in our company. You will work closely and regularly with many cross-functional teams including local and global IT and security teams, Distribution, Procurement, Human Resources, Risk, Audit, Privacy, Legal, and Compliance, as well as external parties. 

Office location:  Boston – USA (preferred) or Toronto – Canada (alternative) or Waterloo – Canada (alternative)

Work arrangement:  Hybrid – 3 days in office, 2 days from Home;   Remote working option is not available.

Position Responsibilities:

• Develop and implement the strategy, operating model, and execution plans for the John Hancock Agent & Producer Program.

• Oversee and evaluate the cybersecurity controls of distribution partner firms to ensure effectiveness.

• Ensure our firms' compliance with regulatory due diligence requirements to safeguard company and customer data.

• Build and foster relationships with partner firms to support them in the oversight process.

• Stay informed about industry trends related to third-party risk management.

• Identify and document any deficiencies in cybersecurity controls among distribution partner firms and collaborate with them on remediation efforts.

• Manage responses to external inquiries, such as client security questionnaires, regarding cybersecurity operations and technical controls.

• Provide regular updates on the status of the Agent & Producer Program to the Cybersecurity Compliance Program Committee.

• Coordinate with distribution firms to address significant vulnerabilities.

• Assist with additional IT and security projects as needed. 

Required Qualifications:

• Experience conducting risk assessments and/or compliance reviews.

• Experience responding to regulatory exam and/or audit requests, including collection, review, and submission of documentation and/or preparing subject matter experts for interviews.

• Experience providing a service-oriented approach to managing risk and compliance with cross-functional, global, and enterprise-wide teams.

• Minimum 8+ years IT industry experience

• 4+ years of audit, risk, legal, and/or compliance experience. Insurance or financial industry and/or IT and information security experience preferred.

• Bachelor's degree or 4 additional years of related experience.

• Strong time management and organizational skills.

• Strong analytical and problem-solving skills.

• Strong written and verbal communication skills.

Preferred Qualifications:

• Related industry certification (e.g., CRISC, CISSP, CISA) a plus.

• Strong working knowledge of Microsoft Office tools. Experience with Archer eGRC a plus.

When you join our team:

• We'll empower you to learn and grow the career you want.

• We'll recognize and support you in a flexible environment where well-being and inclusion are

• more than just words.

• As part of our global team, we'll support you in shaping the future you want to see

#LI-JH

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact

Referenced Salary Location

Working Arrangement

Salary range is expected to be between

If you are applying for this role outside of the primary location, please contact for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.

Manulife/John Hancock offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension/401(k) savings plans and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in the U.S. includes up to 11 paid holidays, 3 personal days, 150 hours of vacation, and 40 hours of sick time (or more where required by law) each year, and we offer the full range of statutory leaves of absence.

Know Your Rights I Family & Medical Leave I Employee Polygraph Protection I Right to Work I E-Verify I Pay Transparency