Information Risk Management Director – Disaster Recovery CoE

We're looking for a Lead, Information Risk Management – DR CoE within Global Information Risk Management (GIRM). Reporting to the Director IRM, this senior leadership role provides strategic direction, governance, and operational leadership for the centralized Level 2 independent oversight function over Manulife's Disaster Recovery program globally.

You will set CoE strategy, drive design and continuous improvement of the operating model, and lead the team in delivering independent, risk-based assurance that recovery would work in a real disruption — defensible to executives, audit, and regulators (e.g., OSFI, MAS).

The role requires deep expertise in disaster recovery, business continuity, technology and operational resilience, and a proven ability to influence senior stakeholders across the DR Practice, Segment IRO teams, and business partners across multiple functions and geographies.

Position Responsibilities:

Strategic Leadership & CoE Direction

• Lead the design, implementation, and continuous improvement of the DR CoE Target Operating Model, ensuring alignment with the Manulife’s Disaster Recovery Standard, the IRM L2 Independent Oversight & Challenge Methodology, and the ROCs.

• Define the CoE's strategic roadmap, including risk-based sampling strategy, analytics maturity (Fusion, Archer, Power BI), and integration with broader GIRM strategic initiatives.

• Champion the Disaster Recovery closed-loop oversight lifecycle as the operating discipline of the function.

Team Leadership & Capability Building

• Recruit, onboard, coach, and develop the DR CoE team, including Managers and Senior Specialists, building bench strength and succession across the function.

• Set performance expectations, conduct performance management, and foster a culture of evidence-based, independent challenge.

Team Governance Development

• Define and maintain DR CoE SOPs, SLAs, KPIs, KRIs, reporting templates, and the L2 DR Oversight Checklist, ensuring methodology consistency across all segments.

• Ensure final oversight artifacts are centrally stored, audit-ready, and aligned to the IRM Independent Oversight and Challenge Methodology.

Stakeholder Management & Senior Engagement

• Act as the primary liaison between the DR CoE and key stakeholders, including the DR Practice Area, Segment IROs, Standard Assurance and Risk Monitoring (SARM), business partners (e.g., DR Coordinators), and Internal Audit/Regulators.

• Facilitate alignment on oversight expectations, testing schedules, scenario governance, and reporting requirements across functions and geographies; host engagement sessions and feedback forums.

Disaster Recovery Oversight Execution (Strategic)

• Coordinate enterprise-level intake and prioritization of DR activities requiring oversight.

• Lead the team in executing independent challenge and review of DR Plans, End to End Tests, Attestations, third-party hosted recovery arrangements, scenario governance, and trigger event/DR activation rationale.

• Liaise with senior business partners to communicate oversight conclusions, drive Issue/CAP creation, and ensure timely remediation and validated closure.

Performance Reporting & Governance

• Develop and deliver regular DR CoE performance reports — progress, outcomes, gaps, remediations, KRIs — to senior leadership and governance committees.

• Provide an integrated DR Risk opinion that supports executive, audit, and regulatory (OSFI/MAS) discussions; escalate overdue CAPs, failed retests, and repeat findings.

Required Qualifications:

• Minimum 7+ years of experience in information risk management at a senior leadership level, with deep knowledge of disaster recovery, business continuity, and technology/operational resilience risks and controls.

• In-depth subject matter expertise in information systems architecture, infrastructure and application recovery, DR testing methodologies, and operational risk assessment tools.

• Broad knowledge of financial services/insurance business and related products, and familiarity with regulatory expectations (e.g., OSFI, MAS).

• Proven track record of building and leading independent oversight or assurance functions, including methodology design, governance, and team development.

• Strong influencing and communication skills, with the ability to build effective relationships across divisions and engage senior executives.

• High proficiency in MS Office; experience with data analytics tools (Power BI), Fusion, and Archer is a plus.

• Detail-oriented with excellent analytical, critical thinking, and strategic problem-solving skills; self-starter with the ability to work with little guidance.

Preferred Certifications:

• Certified Business Continuity Professional (CBCP)

• Certified Business Resilience IT Professional (CBRITP)

• CISA, CISM, CISSP, or CRISC

When you join our team:

• We’ll empower you to learn and grow the career you want.

• We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.

• As part of our global team, we’ll support you in shaping the future you want to see.

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit https://www.manulife.com/en/about/our-story.html .

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact [email protected] .

Working Arrangement