Job Description
The Associate Security Engineer is responsible for helping safeguard Manulife's digital products, platforms, and APIs from software-level threats. Working with Security Engineering Team, this role partners closely with Software Engineering, DevOps, and Risk Management to embed security throughout the software development lifecycle (SDLC). The ideal candidate is a technically curious professional with a foundational understanding of secure coding practices, OWASP standards, and a passion for protecting financial systems and customer data — all while living Manulife's core values every day.
Position Responsibilities:
Perform secure code reviews and static application security testing (SAST) on external, internal and third-party applications.
Assist in conducting dynamic application security testing (DAST) and web application penetration testing against banking systems and APIs.
Integrate security tooling into CI/CD pipelines...