Information Risk Management Director - Disaster Recovery CoE

Benefits

Additional Information

We're looking for a Lead, Information Risk Management - DR CoE within Global Information Risk Management (GIRM). Reporting to the Director IRM, this senior leadership role provides strategic direction, governance, and operational leadership for the centralized Level 2 independent oversight function over Manulife's Disaster Recovery program globally. You will set CoE strategy, drive design and continuous improvement of the operating model, and lead the team in delivering independent, risk-based assurance that recovery would work in a real disruption - defensible to executives, audit, and regulators (e.g., OSFI, MAS). The role requires deep expertise in disaster recovery, business continuity, technology and operational resilience, and a proven ability to influence senior stakeholders across the DR Practice, Segment IRO teams, and business partners across multiple functions and geographies. Position Responsibilities: Strategic Leadership & CoE Direction Lead the design, implementation, and continuous improvement of the DR CoE Target Operating Model, ensuring alignment with the Manulife's Disaster Recovery Standard, the IRM L2 Independent Oversight & Challenge Methodology, and the ROCs. Define the CoE's strategic roadmap, including risk-based sampling strategy, analytics maturity (Fusion, Archer, Power BI), and integration with broader GIRM strategic initiatives. Champion the Disaster Recovery closed-loop oversight lifecycle as the operating discipline of the function. Team Leadership & Capability Building Recruit, onboard, coach, and develop the DR CoE team, including Managers and Senior Specialists, building bench strength and succession across the function. Set performance expectations, conduct performance management, and foster a culture of evidence-based, independent challenge. Team Governance Development Define and maintain DR CoE SOPs, SLAs, KPIs, KRIs, reporting templates, and the L2 DR Oversight Checklist, ensuring methodology consistency across all segments. Ensure final oversight artifacts are centrally stored, audit-ready, and aligned to the IRM Independent Oversight and Challenge Methodology. Stakeholder Management & Senior Engagement Act as the primary liaison between the DR CoE and key stakeholders, including the DR Practice Area, Segment IROs, Standard Assurance and Risk Monitoring (SARM), business partners (e.g., DR Coordinators), and Internal Audit/Regulators. Facilitate alignment on oversight expectations, testing schedules, scenario governance, and reporting requirements across functions and geographies; host engagement sessions and feedback forums. Disaster Recovery Oversight Execution (Strategic) Coordinate enterprise-level intake and prioritization of DR activities requiring oversight. Lead the team in executing independent challenge and review of DR Plans, End to End Tests, Attestations, third-party hosted recovery arrangements, scenario governance, and trigger event/DR activation rationale. Liaise with senior business partners to communicate oversight conclusions, drive Issue/CAP creation, and ensure timely remediation and validated closure. Performance Reporting & Governance Develop and deliver regular DR CoE performance reports - progress, outcomes, gaps, remediations, KRIs - to senior leadership and governance committees. Provide an integrated DR Risk opinion that supports executive, audit, and regulatory (OSFI/MAS) discussions; escalate overdue CAPs, failed retests, and repeat findings. Required Qualifications: Minimum 7+ years of experience in information risk management at a senior leadership level, with deep knowledge of disaster recovery, business continuity, and technology/operational resilience risks and controls. In-depth subject matter expertise in information systems architecture, infrastructure and application recovery, DR testing methodologies, and operational risk assessment tools. Broad knowledge of financial services/insurance business and related products, and familiarity with regulatory expectations (e.g., OSFI, MAS). Proven track record of building and leading independent oversight or assurance functions, including methodology design, governance, and team development. Strong influencing and communication skills, with the ability to build effective relationships across divisions and engage senior executives. High proficiency in MS Office; experience with data analytics tools (Power BI), Fusion, and Archer is a plus. Detail-oriented with excellent analytical, critical thinking, and strategic problem-solving skills; self-starter with the ability to work with little guidance. Preferred Certifications: Certified Business Continuity Professional (CBCP) Certified Business Resilience IT Professional (CBRITP) CISA, CISM, CISSP, or CRISC When you join our team: We'll empower you to learn and grow the career you want. We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words. As part of our glo

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at manulife? Share your experience