Skip to main content

Job ID:

Job Category:


Job Type:

Date Posted:

Apply Now >>    
Job Title :
Director, Information Risk Management Asia
Job ID :
Category :
Information Technology
Location :
HKG, HongKong HK
Job Type :
Full Time
Posted On :
Job Description :

Are you looking for unlimited opportunities to develop and succeed? With work that challenges and makes a difference, within a flexible and supportive environment, we can help our customers achieve their dreams and aspirations.

Role Summary:

The Global Solutions Delivery Information Risk Management team is actively searching for an experienced Director, Asia Information Risk Management. 
You will enable your business and IT partners in the Investment Division and Group Functions (Manulife’s Corporate Division) to recognize and manage their information risk in a challenging and dynamic business environment. You will participate in key projects and initiatives ensuring information risk is always considered and managed. Your career will flourish with our strong commitment to personal and professional development and growth (including support for attaining and keeping industry designations and certifications). 
You will join a vibrant and global information risk management practice and team that works hard to enable and facilitate business while protecting our people and key information assets located in over eighteen countries. This multi-discipline team pulls together a number of specialties forging strong ties between:
  • Information Security and Information Protection
  • Business Continuity and Disaster Recovery Management
  • IS Audit and Compliance support
  • Risk & Control Assessments
  • Vendor Risk Management.
Your specific contribution as Director, Asia Information Risk Management will see you fill a “player/coach” role to lead the information risk management programs in Asia. You will work closely with IRM CoE leads to ensure that IRM policies, standards and procedures are applied effectively and consistently across all Asia countries. You will provide IRM advisory support regionally and locally to ensure that IRM best practices are built into their products and processes, and to ensure that they meet their local regulatory and compliance requirements.  

  • Acts as the champion for the divisions within the global and domiciled information risk programs in Asia to ensure that information is secured and protected in accordance with global IRM policies, standards and procedures. Also assist business partners in meeting local regulatory and compliance needs.
  • Sets strategy, goals, and targets for the Information Risk Management team in Asia and assist the divisional information risk officer (DIRO) in implementing the divisional framework to measure and report on the achievement of IRM goals.
  • Contributes and shapes divisional and global IRM projects and initiatives.  Ensures division- and business-specific requirements and needs are accommodated whenever possible and practical in initiatives, projects and services. 
  • Supports business partners in establishing business continuity and disaster recovery priorities and requirements, and the management of business continuity executions.  Supports IT partners in establishing disaster recovery requirements, and the management of disaster recovery tests and executions.
  • Provides assistance to the Project Management Office and divisional IT leadership for risk management deliverables embedded in key processes, such as the system development life cycle (SDLC) process, the application management process and the change management process. Provide assistance and aid in developing key projects and division-wide initiatives like GO (the Investment Division’s transformation program).
  • Supports IT and business partners in the maintenance and execution of key controls required for audits and various risk and compliance purposes.
  • Works closely with Global IRM and Asia Division IRM as well as the problem management, legal and compliance teams for incident management.
  • Completes risk assessments, risk exceptions/acceptances as required for divisional clients. 
  • Additional duties as assigned.

  • University Degree (Computer Science, Business or Finance preferred) with proven experience in one or more of the following disciplines:  Information Risk Management, IT Risk Related Progrma Management, Audits, Information Security ideally with some of that time spent in a large, complex organization.
  • Professional certifications (ISACA, CRISC, CISSP, CISA, CISM, etc) or designations in security, IT auditing, risk analysis or investments a plus, but not a requirement.
  • Working experience of risk assessment methodologies, internal controls and industry technology risk management frameworks such as CobiT and ISO2700x frameworks.
  • Familiar to industry governance bodies such as CIRC, OCI, MAS, and so on. Familiar to the corresponding regulatory requirements highly desired. 
  • Proven ability to lead and manage teams to achieve business and/or risk management objectives.
  • Articulate the IRM standards, policies and goals in a way that engages the business units to act, develop and implement plans. This may require influencing more senior levels within the organization.
  • Innovative problem solving skills with the proven ability to exercise flexibility and judgment.
  • Ability to learn, know and act upon what’s important to Manulife and the specific business units you support.
  • Proven ability to build relationships, engage and influence others, work with a diverse internal and international user community, as well as vendors. 
  • Strong interpersonal skills, including demonstrated ability to be sensitive and professional when communicating across geographical and cultural boundaries.
  • Effective influencing and negotiation skills with the aptitude to achieve consensus in a federated environment.
  • Ability to work independently and collaboratively simultaneously, while managing multiple priorities within tight deadlines.
  • Work in tandem with multiple and diverse business units simultaneously.  
  • Through strong collaboration and Influencing skills, educate the business units representatives on the imperatives of these programs so that it remains a priority within business units where resources are stretched. 
  • Excellent communication skills (oral and written) including presentation skills and demonstrated ability to present at all organizational levels.
About Manulife
Manulife Financial Corporation is a leading international financial services group that helps people achieve their dreams and aspirations by putting customers' needs first and providing the right advice and solutions. We operate as John Hancock in the United States and Manulife elsewhere. We provide financial advice, insurance, as well as wealth and asset management solutions for individuals, groups and institutions. At the end of 2016, we had approximately 35,000 employees, 70,000 agents, and thousands of distribution partners, serving more than 22 million customers. At the end of 2016, we had $977 billion (US$728 billion) in assets under management and administration, and in the previous 12 months we made almost $26 billion in payments to our customers.
Our principal operations are in Asia, Canada and the United States where we have served customers for more than 100 years. With our global headquarters in Toronto, Canada, we trade as 'MFC' on the Toronto, New York, and the Philippine stock exchanges and under '945' in Hong Kong.
Manulife is committed to supporting a culture of diversity and accessibility across the organization.   It is our priority to remove barriers to provide equal access to employment.  A Human Resources representative will consult with applicants contacted to participate at any stage of the recruitment process who request an accommodation. Information received regarding the accommodation needs of applicants will be addressed confidentially.

Information Technology
Apply Now >>    
Link for schema


Any personal information you provide through this site will be privy only to Manulife for the purpose of evaluating your qualifications and experience. At all times, your personal information will be protected by the application of our Privacy Policy.