Head, IT Risk in a Payments and Financial Technology Company


We are Nigeria's premier Payments & Financial Technology Company. In line with our growth strategy propelled by our various innovative products and ownership of different technologies, we seek to recruit talented individuals who are seeking a long-term career with our organization for a period not less than 3 years, to fill the position below:

 

Job Title: Head, IT Risk

Location: Lagos
Employment Type: Full-time

Job Objective(s)

  • The HOD, IT Risk will work with the Chief Information Security Officer (CISO) and he/she shall be primarily responsible for security monitoring and testing across the organization’s infrastructure.

Duties & Responsibilities

  • Documentation of information security policies and procedures.
  • Monitoring of cyber threat events via the Security Incident and Event Management (SIEM) platform and the Intrusion Prevention and Detection System (IPS/IDS).
  • Ensure collection and review of activity logs from critical systems for unusual events, internal compromises and anomalies. This will include privilege user events from processing, payment and banking applications, networks and databases.
  • Analysis and response of incidents and threat events by investigating and providing remediation plans and consulting with stakeholders for prompt implementation.
  • Coordination of physical security activities and management of access control, CCTV and fire response operations.
  • Coordination of occupational health and safety in conjunction with Admin department.
  • Designing and reviewing of the company’s information security systems and programs.
  • Liaison with stakeholders in relation to cyber security issues and provide recommendations.
  • Generating periodic reports and dashboards for both technical and non-technical stakeholders.
  • Assist with the creation, maintenance and delivery of cyber security awareness training for staff.
  • Review of threat intelligence, identification of vulnerable assets and implementation of threat prevention plan. This include keeping abreast with emerging cyber security threats, trends and proffering actionable solutions to mitigate them.
  • Routine vulnerability assessment, remediation management and ensuring quarterly passing of PCI scan
  • Penetration testing across all enterprise infrastructure to proactively identify and mitigate potential weaknesses.
  • Application security assessment and Software Development Lifecycle (SDLC) implementation.
  • Security certification – Payment Application Data Security Standard (PADSS)
  • Business continuity and disaster recovery management.

Requirements

  • HND / B.Sc / B.Tech in Cyber Security, Mathematics, Computer Science, Computer Engineering or any other related discipline.
  • CISA, CISM, CRISC, CEH, CISSP, GIAC or similar security certification is highly desired.
  • Minimum of 10 years and above in Security Operations or Administration.

 

 

How to Apply
Interested and qualified candidates should:
Click here to apply

Note: Only candidates with the experience below can apply

Application Deadline  22nd June, 2022.