Job Description
- Job Type: Full Time
- Qualification: BA/BSc/HND
- Experience: 3 years
- Location: Lagos
- Job Field: ICT / Computer
Job Summary
The ideal candidate would be in charge of identifying weaknesses within the organization’s information systems and infrastructure, Devising, innovating and implementing controls to minimize/mitigate risks, vulnerabilities and threats identified for the realization of business objectives.
Primary Duties and Responsibilities
- Conduct compliance assessments by understanding business objectives, structure, policies, and procedures, internal controls, and external regulations.
- Assess the bank’s IT Infrastructure and Digital operations compliance with CBN and other regulatory requirements.
- Review user access roles and privileges across the organization’s critical applications and other IT assets.
- Perform risk assessments using various industry-standard frameworks.
- Assess the effectiveness of internal controls over key IT risks.
- Follow up on IS Audit exception remediation.
- Identify and recommend business process changes to strengthen internal controls.
- Collaborate with control owners to implement process changes and track them to completion.
- Advise and collaborate on projects by providing IT controls expertise and considerations.
- Proficient in SQL scripting and Python.
- Proficient in the use of Information security tools such as Log360, endpoint security tools, and others.
- Report on the review and exceptions remediated.
- Conduct in-depth application security reviews and assessments leveraging OWASP Top 10 and other available frameworks.
- Review and assess DevOps and Cloud Infrastructure security controls.
Requirements
- Bachelor’s degree in computer science, Information Technology, or a similar technical field.
- Minimum of three years of experience in IT security/control/audit functions in a commercial bank or fintech.
- Relevant certifications such as CC, CISA, CISM, AZ900, or any relevant security certification.
- Proven track record in developing and implementing security solutions, protocols, and risk management practices.
- In-depth knowledge of security frameworks such as NIST, ISO 27001, NDPR, and PCI DSS.
- Knowledge of network and security technologies such as firewalls, IDS/IPS, VPN, anti-virus, and encryption.
- Strong technical skills in infrastructure, application, network, databases, cloud security, identity & access management, and security automation.
- Understanding of applicable CBN regulations on electronic and digital banking operations.
- Proficient in the functionalities and operations of the Core Banking application, specifically Finacle.
- Good interpersonal skills and the ability to work in a fast-paced environment.
- Understanding of general privacy concepts and practices.