Lead Cybersecurity Architect

Insight Global is seeking a Lead Cybersecurity Architect to join a global, Toronto-based Insurance/Financial Institution. This is equally a hands-on, technical role as it is strategic. Superior technical skills, particularly within the Microsoft stack and Palo Alto security tools is a necessity. Excellent executive communication is required.
This role is based in downtown Toronto and requires up to x3 days per week on-site, Tuesday to Thursday.
We may use artificial intelligence tools to assist with the screening, assessment, or selection of potential applicants for this position.
As a Lead Security Architect, you'll be responsible for designing, developing, and
implementing robust security strategies and solutions to protect Manulife's digital assets from
advanced cyber threats. In this hub-and-spoke model, you will report to the Chief Security
Architect and will be the dedicated security architecture lead for a specific business unit,
ensuring alignment with the global security framework while addressing the unique needs of the
segment. You will play a crucial role in shaping our global security posture and ensuring security
is a foundational element of our technology and business initiatives.
Position Responsibilities:
• Architectural Design: Lead the design and development of robust security frameworks,
standards, and best practices for global systems, data, and networks. This includes
creating reference architectures and implementation patterns for security solutions.
• Strategic Planning: Translate business, technology, and threat drivers into practical
security roadmaps. You'll ensure our security strategy is aligned with broader
organizational goals.
• Financial Analysis: Conduct financial evaluations of security technologies, including
quantifying purchasing and licensing options, estimating labor costs, and calculating the
total cost of ownership (TCO), return on investment (ROI), or payback period.
• Project Management: Draft project plans for security service and technology
deployments and coordinate with stakeholders across the organization to ensure
successful implementation.
• Collaboration & Integration: Work closely with various teams across Manulife's
business and IT units—including enterprise architecture, development, and risk
management—to seamlessly integrate security throughout the entire project lifecycle.
• Risk Management: Conduct comprehensive risk assessments to identify vulnerabilities
and define necessary controls. Partner with global information risk management teams
to prioritize and mitigate risks effectively.
• Security Evaluation: Continuously evaluate the security of new and emerging
technologies and potential solutions. You will stay ahead of the curve on cybersecurity
trends to recommend and implement innovative solutions.
• Mentorship & Communication: Act as a security subject matter expert, coaching and
mentoring development teams. You will also communicate complex security standards
and strategies to both technical staff and senior management with clarity and influence.
• AI Security: Design and implement security frameworks for Machine Learning (ML),
Generative AI (GenAI), and Agentic AI systems. Evaluate AI-powered security tools and
integrate artificial intelligence capabilities into security operations and threat detection.
• Domain-Specific Accountabilities:
• Application Security: Assess solution architectures for compliance with security
standards, define secure service interfaces, and provide guidance to application security
engineers on threat modelling and secure software development methodologies.
• Cloud Security: Provide deep expertise in securing multi-cloud computing environments
(SaaS, IaaS, PaaS), with a strong focus on platforms like Microsoft Azure and AWS.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Bachelor's or master's degree in computer science, information systems, cybersecurity, or a related field.
• Relevant industry certifications such as CISSP (Certified Information Systems Security Professional) or CCSP (Certified Cloud Security Professional) are required.
At least 10 years of experience specifically in senior information security architecture roles, with demonstrated progression in responsibility and complexity.
Strong, hands-on experience with Palo Alto Prism, Zscalar, Sentinel, Microsoft Azure or other cloud platforms
• Proven experience in the financial services industry, with understanding of regulatory requirements, compliance frameworks, and industry-specific security challenges.
• Experience in using architecture methodologies such as SABSA, Zachman, and/or TOGAF.
• Direct, hands-on experience or strong working knowledge of managing security infrastructure—e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM, and log management technology.
• Direct, hands-on experience or strong working knowledge of managing security
infrastructure—e.g., firewalls, intrusion prevention systems (IPSs), web application
firewalls (WAFs), endpoint protection, SIEM, and log management technology.
• Verifiable experience reviewing application code for security vulnerabilities.
• Experience securing CI/CD pipelines.
• Direct, hands-on experience or a strong working knowledge of vulnerability management tools.
• Documented experience and a strong working knowledge of the methodologies to conduct threat-modelling exercises on new applications and services.
• Experience designing the deployment of applications and infrastructure into public cloud services.
• Direct experience designing IAM technologies and services, including Active Directory, Lightweight Directory Access Protocol (LDAP), and Amazon Web Service (AWS) IAM.

Previous Financial Institution or Insurance industry experience

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.