Head of Department (HOD), IT Risk

August 3, 2023

Job Overview

  • Date Posted
    August 3, 2023
  • Location
  • Expiration date
    September 13, 2024
  • Gender
  • Qualification
    Bachelor Degree

Job Description

Job Title: Head of Department (HOD), IT Risk

Location: Victoria Island, Lagos
Employment Type: Full-time

Job Description

  • Documentation of information security policies and procedures.
  • Monitoring of cyber threat events via the Security Incident and Event Management (SIEM) platform and the Intrusion Prevention and Detection System (IPS/IDS).
  • Ensure collection and review of activity logs from critical systems for unusual events, internal compromises and anomalies. This will include privilege user events from processing, payment and banking applications, networks and databases.
  • Analysis and response of incidents and threat events by investigating and providing remediation plans and consulting with stakeholders for prompt implementation.
  • Review of threat intelligence, identification of vulnerable assets and implementation of threat prevention plan. This include keeping abreast with emerging cyber security threats, trends and proffering actionable solutions to mitigate them.
  • Routine vulnerability assessment, remediation management and ensuring quarterly passing of PCI scan
  • Penetration testing across all enterprise infrastructure to proactively identify and mitigate potential weaknesses.
  • Application security assessment and Software Development Lifecycle (SDLC) implementation.
  • Security certification – Payment Application Data Security Standard (PADSS)
  • Business continuity and disaster recovery management.
  • Coordination of physical security activities and management of access control, CCTV and fire response operations.
  • Coordination of occupational health and safety in conjunction with Admin department.
  • Designing and reviewing of the company’s information security systems and programs.
  • Liaison with stakeholders in relation to cyber security issues and provide recommendations.
  • Generating periodic reports and dashboards for both technical and non-technical stakeholders.
  • Assist with the creation, maintenance and delivery of cyber security awareness training for staff.

Application Closing Date
29th August, 2023.