Senior Technology Auditor

The Information Systems Auditor, Audit and Advisory Services is accountable for testing large, complex, and sensitive engagements. This covers advisory and assurance functions such as key risk audits, SOX, consulting, Issue, and Corrective Action Plan assessments. The role requires delivering high-quality, efficient, valuable, and risk-based audit services connected to Manulife’s information services and technology. You will collaborate with segment and business line leads in areas such as data, cybersecurity, engineering, software development, applications and infrastructure, information and operational risk management, and program delivery practices. Through these engagements, you will gain insights into our business markets, technology demands, regulatory requirements around cybersecurity, and opportunities to explore new technologies and platforms such as Microsoft Azure Data Services, using tools such as Power BI and Co-Pilot to automate testing in line with Manulife’s ambition to be the most digital, customer-centric company in our industry.

Aligned with Manulife’s goal to be the most digital, customer-centric company in the industry, the Auditor, Audit and Advisory Services assists Associate Managers and Senior Managers in developing risk assessments and testing approaches for assurance and advisory engagements over information and technology infrastructure, applications, and platforms. This includes areas such as IT Strategy, IT Risk & Control Governance, IT Business Continuity Management, IT Change Management, IT Disaster Recovery, IT Architecture, Mobile Device Security, Network Security, Release Management, Systems Performance & Capacity, Operational Security, Third-Party Management, Access to Applications and Infrastructure, Cloud Management, Cryptography and Encryption, Cybersecurity Operations, Data Center Physical and Environmental Security, Incident and Problem Management, Security Incident Management, Service Request Management, IT Project Management, Application Penetration Testing, Vulnerability Management and Information Classification and Handling. As well as other key areas, including Regulatory Requirements and Upcoming Changes, Coverage Over High-Risk Projects and Initiatives, Integrated Audits with Business, Advisory Consulting Engagements, Emerging Risks Engagements, Data Analytics, Automation, and Efficiency Process Improvements.

Position Responsibilities:

• Collaborate with Auditors, Associate Managers, and Senior Managers in producing meaningful audit reports that clearly articulate the position on risks and related issues.

• Support multiple simultaneous audit projects to ensure time and quality objectives are met. Timely address and/or report potential budget overruns and resourcing concerns.

• Assess and evaluate the effectiveness and efficiency of internal controls and operating practices.

• Clearly communicate potential issues and evaluate corrective action plans and develop expertise for application, infrastructure, technology, security, and project risk.

• Learn about emerging technologies, security principles, and trends. Growth mindset for Audit Services Core Competencies model.

• Collaborate and communicate with various partners within the three lines of defense to promote awareness of risk.

• Assist in developing and implementing a strategy to gain ongoing assurance over information services through automated methods. Identify opportunities to automate testing.

Required Qualifications:

• 1-3 years of relevant experience (including co-ops and internships), including working in client-facing, matrix, and project-based organizations; typically acquired through previous roles in audit, advisory, consulting, or public accounting within a "Big Four" firm or other large organization.

• University degree in Accounting or Technology

Preferred Qualifications:

• Experience in auditing Technology, auditing Projects, designing, and executing data analytics, and automating manual processes.

• Line 1 operations, Line 1B governance, Line 2 risk management, or Line 3 internal audit, or external audit experience with Technology Governance, Risk, and Controls.

• Preferred Designation: Audit and accounting designation such as CPA or CA, IT audit designation such as CISA, Cyber security designation such as CISSP

• Knowledge or prior experience within the Insurance and Wealth and Asset Management industry.

• Knowledge of audit methodologies, system development methodologies, control frameworks and risk management practices, and regulatory requirements.

• Knowledge of software development methodologies, cybersecurity, IT operations processes, cloud environments, regulatory requirements and software development tool chains including version control tools, binary repositories, and CI/CD pipelines.

• Ability to quickly comprehend business processes and identify the risk implications, analyze complex situations, reach appropriate conclusions, and make valuable and practical recommendations.

When you join our team:

• We’ll empower you to learn and grow the career you want.
• We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
• As part of our global team, we’ll support you in shaping the future you want to see.

#LI-Hybrid

#LI-JH

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact [email protected].

Toronto, Ontario

Hybrid

Salary range is expected to be between

$60,900.00 CAD - $113,100.00 CAD

If you are applying for this role outside of the primary location, please contact [email protected] for the salary range for your location. The actual salary will vary depending on local market conditions, geography and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training. Employees also have the opportunity to participate in incentive programs and earn incentive compensation tied to business and individual performance.

Manulife offers eligible employees a wide array of customizable benefits, including health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans. We also offer eligible employees various retirement savings plans (including pension and a global share ownership plan with employer matching contributions) and financial education and counseling resources. Our generous paid time off program in Canada includes holidays, vacation, personal, and sick days, and we offer the full range of statutory leaves of absence. If you are applying for this role in the U.S., please contact [email protected] for more information about U.S.-specific paid time off provisions.