About Manulife
Manulife is a leading international financial services group that helps people make their decisions easier and lives better. With our global headquarters in Toronto, Canada, we operate as Manulife across our offices in Canada, Asia, and the United States. We provide financial advice, insurance, and wealth and asset management solutions for individuals, groups, and institutions.
The Opportunity
The customer is the focus of everything we do, and millions of end users rely on our products daily. We believe in the value of empowering Security Engineers with the resources to solve critical problems for the future of our business, which is why we need you.
We are looking for hands-on security engineers with a passion for secrets management and assessment. Together with the team, you will take ownership of the secret’s management environments, focusing on assessing, reporting, and managing the oversight of the use of secrets, Certificates, Encryption Keys, and Cyphers used in applications, companywide. As a member of our team, you are someone who enjoys working on a wide range of technologies, implementing solutions, and defining patterns with an emphasis on the customer to make decisions easier and lives better. You will also be working with some of the latest observability and engineering technologies.
On the job you will:
· Manage the certificate management dashboards and assigning expiring certificate tasks to the certificate owners
· Work closely with global application and infrastructure teams to ensure successful implementation of end-to-end secrets management
· Contribute to the technical direction on all areas of secrets management, including policies, standards strategies, automation, and governance
· Maintain professional and technical process knowledge by keeping abreast of the changing security landscape within the cybersecurity and technology industries, and PKI
· Contribute to the maturity of secrets product/service by identifying meaningful metrics to highlight related risks; influencing behavior change within the organization and contributing to the enterprise secrets management and roadmap
· Maintain professional and technical process knowledge by keeping abreast of the changing security landscape within the cybersecurity and technology industries, and PKI
· Eager to learn and learn fast, enjoy a fast-paced environment
What motivates you?
· You obsess about customers, listen, engage and act for their benefit
· You think big, with curiosity to discover ways to use your agile mindset and enable business outcomes
· You thrive in teams, and enjoy getting things done together
· You take ownership and build solutions, focusing on what matters
· You do what is right, work with integrity and speak up
· You share your humanity, helping us build a diverse and inclusive work environment for everyone
We are looking for someone with:
· Bachelor’s degree or equivalent in Computing Science or Engineering
· Strong analytical and problem-solving skills with high attention to detail
· Knowledge of IT systems and processes
· Experience working in an agile culture with agile methodologies
· Expert knowledge of secrets management in cloud native applications and DevOps services such as database credentials, cross service credentials/tokens, API keys and access tokens, and SSL/TLS certificates
· Experience with certificate management tools (Ideally ServiceNow Certificate Management and Sectigo)
· Expert knowledge of PKI and its various components, cryptography, certificate management products and services with a focus on operations, governance, risk, and compliance.
· Knowledge of Automated Certificate Management Environment protocol (ACME) and best practices
· Experience working with secrets management vaults (HashiCorp Vault, Azure Key Vault)
· Experience with vulnerability solutions such as Qualys
· Knowledge of PCF (Pivotal Cloud Foundry), Azure Kubernetes Service or other PaaS offerings
· Experience with Microsoft Azure cloud platform or equivalent
· Strong knowledge of enterprise infrastructure, network, security and cloud
· Experience with Grafana
· Working knowledge of bash, Groovy; python and PowerShell a plus
· Self-directed, demonstrate leadership potential and a team player
· Ability to prioritize projects and deliverables
Nice to Haves:
· Cloud (Azure, AWS), HashiCorp Vault/Consul, Azure Key Vault, Sectigo(ACME, Rest API, Certificate Manager), DevOps (JIRA, Confluence), ServiceNow (Workflows, Dashboards), Container Orchestration ( i.e. Docker, Kubernetes, Cloud Foundry, Azure Kubernetes Service, GitHub), API platforms, Service Mesh (Consul, Istio, etc.), Configuration management (Chef), Container Security, Cloud Security Posture Management (i.e. ASC, Prisma Cloud, etc.), NoSQL Databases (i.e. MongoDB, etc.)
Our commitment to you
· Our mission; to be a part of making Decisions Easier and Lives Better
· A leadership team dedicated to your growth and success
· A bold ambition and set of goals to be a leader in driving transformation in our industry
· Our best. Every day.
Technology and Tools
Cloud (Azure, AWS), HashiCorp Vault/Consul, Azure Key Vault, Sectigo(ACME, Rest API, Certificate Manager), DevOps (JIRA, Confluence), ServiceNow (Workflows, Dashboards), Container Orchestration ( i.e. Docker, Kubernetes, Cloud Foundry, Azure Kubernetes Service, GitHub), API platforms, Service Mesh (Consul, Istio, etc.), Configuration management (Chef), Container Security, Cloud Security Posture Management (i.e. ASC, Prisma Cloud, etc.), NoSQL Databases (i.e. MongoDB, etc.)
Learn more about opportunities with us at https://www.manulife.com/en/careers/why-join-us.html