×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Information Risk Management Senior Consultant

Job in Waterloo, Kitchener, Ontario, Canada
Listing for: Manulife
Full Time position
Listed on 2026-06-04
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Job Description & How to Apply Below
Location: Waterloo

As an Information Risk Management Senior Consultant, you will be part of the Group Functions (GF) Information Technology First Line of Defense and is responsible for performing risk-based information security assessments for new technologies and maintaining governance frameworks including generative AI technologies, ensuring compliance with information security standards, and managing risks associated with cloud-based, on premises and AI-driven platform and services.

You are expected to have deep understanding of cybersecurity risks, technologies, governance practices and effectively communicate them to business units. Serves as a trusted partner for business units, fosters strong relationships, and instills cybersecurity policies and practices throughout business units.

This is an Individual contributor position supporting a designated business unit, based in Toronto or Waterloo, ON office with a hybrid work arrangement (3 days in office – Tuesday, Wednesday & Thursday preferably).

Position Responsibilities:

  • Acts as a liaison and trusted partner for all information security activities in the business unit, ensuring balance between the needs of the business/IT and leading security practices.

  • Supports security and risk initiatives to instill cybersecurity policies and practices throughout business units.

  • Collaborate with cross functional teams to ensure cybersecurity and IT controls are embedded in all new initiatives and communicates the impact to relevant stakeholders.

  • Participates in key initiatives and projects to ensure that cybersecurity and IT controls are accounted for early within the project and software development lifecycles for respective business unis.

  • Performs comprehensive information risk assessments of On-Prem, IAAS, PAAS, SAAS and generative AI projects, identifying and mitigating risks associated with the solutions.

  • Ensure compliance with the global Information Risk Assessment methodology, policies, and standards.

  • Maintains up-to-date knowledge related to cybersecurity threats, vulnerabilities and mitigations set forth to reduce the attack surface; circulate this knowledge through the business units.

  • Develops and implements risk management strategies across business unit.

  • Provides security consulting services to the Business and IT partners.

  • Tracks and manages identified information risk issues and associated corrective action plans (CAPs), ensuring timely resolution and closure in alignment with governance requirements.

  • Support operational security activities including segment specific security processes (e.g., incident response, vulnerability management, Firewall reviews).

  • Respond to audits, regulatory reviews, risk and controls self-assessments.

  • Provides training and advise key stakeholders on requirements, processes, standards, and best practices around information security and risk management.

  • Familiarity with laws and standards frameworks (e.g., NIST, ISO
    27001, GDPR, Sarbanes-Oxley, EU AI Act).

    • Required Qualifications:

  • Minimum 5 years of experience in Information

    Risk management:

    vendor risk management, project risk management, IT audit or IT controls assessment.

  • Bachelor's degree or equivalent

  • Relevant professional designations (e.g., CISSP, CRISC, CISM, CISA) are a plus.

  • Proven ability to quickly and easily adapt to changes within the business and organization

  • Ability to build and maintain strong relationships across teams and stakeholders

  • Ability to work in a fast-paced environment.

  • Ability to balance competing demands with minimal management direction/support.

  • Effective communication, presentation, negotiation and influencing skills

  • Strong presentation and facilitation skills for diverse audiences.

  • Should have excellent time management and organizational skills to handle multiple tasks and changing priorities.

    • When you join our team

  • We’ll empower you to learn and grow the career you want.

  • We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.

  • As part of our global team, we’ll support you in shaping the future you want to see

    • The role being advertised is an existing vacancy.

    About Manulife and John Hancock

    Manulife Financial Corporation…

    Position Requirements
    10+ Years work experience
    Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)
    0
    200
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search