Lead Security Architect (Director level, individual contributor) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Manulife · 4 months ago

Lead Security Architect (Director level, individual contributor)

positionUSA, Massachusetts, Boston, 200 Berkeley Street
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
moneyCA$133K/yr - CA$183K/yr
date10+ years exp

Manulife is a leading international financial services provider, and they are seeking a Lead Security Architect to enhance their cybersecurity program. The role involves designing and implementing security strategies to protect digital assets while ensuring alignment with global security frameworks and addressing unique business needs.

FinanceFinancial ExchangesFinancial Services

Responsibilities

Lead the design and development of robust security frameworks, standards, and best practices for global systems, data, and networks. This includes creating reference architectures and implementation patterns for security solutions
Translate business, technology, and threat drivers into practical security roadmaps. You'll ensure our security strategy is aligned with broader organizational goals
Conduct financial evaluations of security technologies, including quantifying purchasing and licensing options, estimating labor costs, and calculating the total cost of ownership (TCO), return on investment (ROI), or payback period
Draft project plans for security service and technology deployments and coordinate with stakeholders across the organization to ensure successful implementation
Work closely with various teams across Manulife's business and IT units—including enterprise architecture, development, and risk management—to seamlessly integrate security throughout the entire project lifecycle
Conduct comprehensive risk assessments to identify vulnerabilities and define necessary controls. Partner with global information risk management teams to prioritize and mitigate risks effectively
Continuously evaluate the security of new and emerging technologies and potential solutions. You will stay ahead of the curve on cybersecurity trends to recommend and implement innovative solutions
Act as a security subject matter expert, coaching and mentoring development teams. You will also communicate complex security standards and strategies to both technical staff and senior management with clarity and influence
Design and implement security frameworks for Machine Learning (ML), Generative AI (GenAI), and Agentic AI systems. Evaluate AI-powered security tools and integrate artificial intelligence capabilities into security operations and threat detection
Assess solution architectures for compliance with security standards, define secure service interfaces, and provide guidance to application security engineers on threat modelling and secure software development methodologies
Provide deep expertise in securing multi-cloud computing environments (SaaS, IaaS, PaaS), with a strong focus on platforms like Microsoft Azure and AWS

Qualification

CISSPCCSPCloud SecuritySecurity ArchitectureFinancial Services ExperienceSABSAZachmanTOGAFIAM TechnologiesVulnerability ManagementAI SecurityApplication SecurityCommunicationProblem-SolvingCollaboration

Required

Bachelor's or master's degree in computer science, information systems, cybersecurity, or a related field
Relevant industry certifications such as CISSP (Certified Information Systems Security Professional) or CCSP (Certified Cloud Security Professional) are required
At least 10 years of experience specifically in senior information security architecture roles, with demonstrated progression in responsibility and complexity
Proven experience in the financial services industry, with understanding of regulatory requirements, compliance frameworks, and industry-specific security challenges
Experience in using architecture methodologies such as SABSA, Zachman, and/or TOGAF
Direct, hands-on experience or strong working knowledge of managing security infrastructure—e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM, and log management technology
Verifiable experience reviewing application code for security vulnerabilities
Experience securing CI/CD pipelines
Direct, hands-on experience or a strong working knowledge of vulnerability management tools
Documented experience and a strong working knowledge of the methodologies to conduct threat-modelling exercises on new applications and services
Experience designing the deployment of applications and infrastructure into public cloud services
Direct experience designing IAM technologies and services, including Active Directory, Lightweight Directory Access Protocol (LDAP), and Amazon Web Service (AWS) IAM
Extensive knowledge of full-stack IT infrastructure, including Applications, Databases, Operating systems—Windows, Unix, and Linux, Hypervisors, IP networks—WAN and LAN, Storage networks—Fibre Channel, iSCSI, and NAS, Backup networks and media, Containers/Kubernetes
Excellent verbal and written communication skills are crucial for articulating complex technical concepts and influencing stakeholders at all levels
Strong analytical, problem-solving, and decision-making abilities
The capacity to balance competing priorities and maintain a collaborative and positive attitude
Willingness and ability to travel within Canada and USA to support business operations and stakeholder engagement

Preferred

Experience from large complex environment is highly preferred but not a must
Experience from large financial Org's is a definite plus but not a must

Benefits

Health, dental, mental health, vision, short- and long-term disability, life and AD&D insurance coverage, adoption/surrogacy and wellness benefits, and employee/family assistance plans
Various retirement savings plans (including pension and a global share ownership plan with employer matching contributions)
Financial education and counseling resources
Generous paid time off program in Canada includes holidays, vacation, personal, and sick days
Full range of statutory leaves of absence

Company

Manulife

twittertwittertwitter
Glassdoor3.9
company-logo
Manulife is a leading international financial services group that helps people make their decisions easier and lives better.
dateFounded in 1887
location
Toronto, Ontario, CAN
people-size10001+ employees
web-link
http://www.manulife.com/

Funding

Current Stage
Public Company
Total Funding
$3.31B
Key Investors
RBC Capital Markets,Scotiabank,TD Securities
2025-12-02Post Ipo Debt· $1B
2024-06-11Post Ipo Debt· $363.5M
2023-03-07Post Ipo Debt· $1.2B

Leadership Team

leader-logo
Phil Witherington
President and CEO
linkedin
leader-logo
Eugene Wen
Vice President and Global Chief Data Scientist
linkedin

Recent News

Agri Investor
Manulife closes Permanent Cropland Plus Fund on $289m
2026-01-21
Canada NewsWire
Manulife Advances Longevity Leadership in Canada with Support for National Institute on Ageing's Landmark Survey Français
2026-01-20
prnasia.com
Manulife Launching Impact Forests, a Global Forest Restoration Initiative, Powered by veritree's Smart Forest Technology
2026-01-15
Company data provided by crunchbase