Ascentech Services Limited - Our client, a leading provider of world-class Digital Solutions, with head office in Lagos, is looking to recruit suitable candidates to fill the position below:
Job Title: Information Security & Internal Compliance Officer
Location: Lagos
Job Objective
To enforce the information security management system security standards, policies, procedures, in line with our regulatory requirements and managing documents.
Duties
Planning and performing periodic security audits
Performing periodic checks on hardware and software systems to identify areas where deviation from standards exist
Periodically reviewing system access logs to see if access to systems / information is maintained on a need to know and need to do basis
Conducting internal audits on quarterly basis in line with the regulatory scope(s)
Schedule with banks/issuers for the due diligence audits that come up from time to time
Track audit findings and ensure that they are closed and escalate delays to Line Manager
Enforcing compliance with production room procedures, ensuring that records are adequately maintained
Reporting non-compliance to Line Manager / Head of Department responsible for audited functional areas and ensuring that corrective actions are promptly taken as required by the brand/regulatory bodies
Planning, implementing periodic security training programs for staff (according to functional need) to create security awareness among them
Work with the information technology team in ensuring that users cannot connect to the personalization network from the internet and that personalization data is not transferred via wireless networks or any other means that has not been approved by Management
Reporting to Line Manager on security issues on a regular and timely basis
Regular follow up on the versions installed software (operating systems, application software and anti-virus) to ensure that they are always up to date and report any deviations
Review systems and device times on weekly basis to ensure that they are synchronized and report any non-conformity
Provide internal communication regarding electronic cards compliance issues and applicable regulation changes
Review of the systems and network devices to ensure that the configurations are in line with the organizational policy and best practice
Aid in the creation of gap analysis to any new/changed/modified regulations
Maintain files generated from each and every audit
Responsible for the regular on-site audits and reviews
Formally document audit findings
Maintain Issue ad Change registers for information security
Act as a consultant to projects, advising on matters relating to security
Conduct spot-check audits within the production, outside production and as required by the Line Manager
Maintain currency with security and security enhancing technologies and brief colleagues as needed to enable measures to be implemented where and when necessary/desirable
Provide advice and take action, where necessary, in response to Audit findings and recommendations in respect of information security
Work with the Units/Departments audited by regulatory bodies to resolve compliance issues, provide recommendation, communication on status of action resolution and bringing to the notice of Line Manager, issues that require attention and taking/tracking corrective actions
Qualifications
Education:
BSc/HND in Computer Science, Computer Engineering or related discipline. MSc in a relevant discipline will be an added advantage. A Microsoft or Cisco certified candidate will be highly preferred.
Experience:
4+ years in a similar position
Key Competencies:
Fundamental knowledge of:
Analytics
Research
Web application security
Application Closing Date
31st August, 2020.
How to Apply
Interested and qualified candidates should kindly send their CV to: [email protected] with the "Job title and preferred Location" as subject of the email
Note: Only shortlisted candidates will be contacted.