Business System & Technology Manager at BUA Group


BUA Group is a leading Foods & Infrastructure Conglomerate in Nigeria with diversified investments spanning key sectors of the Nigerian sector. At BUA, we hire collaborative problem- solvers with a self-motivational drive from all backgrounds and provide training, unlocking opportunities to advance in your career path within the organization.

We are recruiting to fill the position below:

 

 

Job Title: Business System & Technology Manager

Location: Nigeria
Department: Information Technology
Reporting To: Managing Director (MD)
Supervises: Business System & Technology Officer
Internally Relates With: All BUA Foods Subsidiaries & Divisions
Externally Relates With: Board Audit & Risk Committees and External Auditors

Summary

  • The Business System & Technology Manager will be responsible for overseeing the implementation of new technologies and systems within the company and ensure that these new technologies and systems are implemented properly, as well as training of employees on how to use them.
  • As a Business System & Technology Manager, you will take ownership of and manage the company’s IT infrastructure to identify, suggest and implement IT solutions that help drive the business forward.
  • You will also monitor and maintain the security and stability of IT systems to ensure that they comply with industry standards and work as effectively as possible for the company.
  • The Business System & Technology Manager is responsible for protecting all BUA Foods’ digital assets against threats, such as security breaches, viruses or attacks by cyber-criminals.
  • As a domain expert, you will take an active role in developing and implementing the BUA Foods Cybersecurity policies, raising awareness across the business on cybersecurity matters, identifying risks, managing cybersecurity incidents, assisting with cybersecurity audits, and ensuring that BUA Foods is operating effective security controls.
  • You will be expected to drive and deliver across all IT Security requirements arising from policies, standards, projects, business processes, etc., and associated risks regarding confidentiality, integrity, and availability of information as (to be) processed, stored, retained in BUA Foods’ information systems.

Duties and Responsibilities
IT Governance:

  • Plan, design, deliver, and manage the overall IT risk framework and policies.
  • Champion and coordinate Cyber Security and IT risk activities across BUA Foods Plc in collaboration with wider risk governance functions.
  • Provide expert advice to the company, including Information Security Steering Committee (ISSC), ensuring best practice for Information Security issues generally and on IT risk analysis/management.
  • Lead on Risk and Information Security within the IT team, interfacing with the wider BUA Foods’ risk governance functions, maintaining risk management records and systems as appropriate.
  • Provide support for SAP/ERM Automation Project.

IT Security & Controls:

  • Develop a rolling roadmap for continual improvement in security practice and controls.
  • Conduct audits over policy and adherence to policy including liaison with Internal and external auditors.
  • Provide assurance regarding adequacy and operating effectiveness of IT security and controls.
  • Drives the implementation of Information Security Management System (ISO 27001) across the business.

IT Risk Management:

  • Assess and evaluate all IT risks and work with Risk Owners to eliminate/mitigate/accept the risks.
  • Report on IT risks & security issues to the IT Leadership team and Change Leadership Team as it might happen.
  • Mentor Business Units to improve with regards to IT risk and security management.
  • Leads on project related risks and security issues.
  • Promote a culture whereby risk/security is considered and observed with the correct balance by IT staff, projects, suppliers, and our customers to achieve appropriate levels of assurance.
  • Demonstrate with colleagues, clients, and supplier’s habitual behavior consistent with the company’s core values.

General:

  • Co-ordinate the responses and actions together with external auditors around the annual audit.
  • Manage Business Solutions’ processes, operations, and promotional budget.
  • Guarantee the smooth running of all IT systems, including anti-virus software, print services, and email provision.

Requirements
Education:

  • Minimum requirement: First Degree
  • Added advantage: Master’s degree/MBA
  • Experience: 6-9 years cognate experience.

Professional (Memberships & Certifications):

  • Minimum requirement: CISA/CISM/CISSP/ISO 27001 Lead Implementer/ISO22301 Lead implementer
  • Experience: Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT, and ones from NIST.

Knowledge, Skills & Experience Required:

  • Substantial experience in working within a technical IT environment and extensive experience in a combination of risk management, information security, and IT jobs.
  • Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and non-technical audiences.
  • Proven track record and experience in developing risk and information security policies and procedures, as well as successfully executing programs that meet the objectives.
  • Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials, is desirable.
  • Certified ISO 27001 lead implementer.
  • Experience with contract and vendor negotiations.
  • High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity.
  • Ability to work independently in a very large scale and enterprise setting.
  • Experience conducting vulnerability assessments, code reviews, and penetration tests against web/mobile application technologies, APIs, platforms, and languages to find flaws and exploits (e.g. SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery, Clickjacking, Authentication/Authorization, etc.).
  • Knowledge of Windows & Linux operating systems; network and web-related protocols/technologies; along with knowledge of enterprise security design.
  • Poise and ability to act calmly and competently in high-pressure, high-stress situations.
  • Must be a critical thinker, with strong problem-solving skills. Mentor Business Units to improve with regards to IT risk and security management.
  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT, and ones from NIST.

 

 

How to Apply
Interested and qualified candidates should:
Click here to apply

 

Application Deadline 31st October, 2023.