IT Security Analyst at HR-EX Consulting

HR-EX Consulting partners with small businesses looking for affordable HR professional advisory and services. In practice, we operate as an outsourced HR departmentand provide professional HR servicesto small businessesat a fraction of the cost of hiring a full-time staff.

We are recruiting to fill the position below:

Job Title: IT Security Analyst

Location: Lagos
Employment Type: Full-time

Job Purpose

• The IT Security Analyst is responsible for safeguarding the organization’s information assets by ensuring compliance with cybersecurity standards (such as PCI DSS and ISO27001), enhancing security awareness across the organization, and integrating security best practices throughout the software development lifecycle. 
• This role also monitors, detects, and responds to cybersecurity threats and vulnerabilities while supporting incident response efforts, forensic investigations, and security reporting.

Key Responsibilities

• Act as the primary liaison between the organization and external PCI DSS and ISO27001 assessors and auditors.
• Develop and deliver security awareness training programs on a quarterly, annual, and on-demand basis.
• Create and distribute security awareness materials, such as presentations, posters, and email alerts.
• Measure the effectiveness of security awareness programs through surveys, tests, and other metrics.
• Define and enforce security requirements for applications in development.
• Collaborate with development teams to integrate security best practices into the software development lifecycle.
• Monitor and ensure compliance with security requirements throughout the development process.
• Participate in the delivery of cybersecurity operations through vulnerability and threat identification,
• incident detection and response, forensic investigations, Patch and Vulnerability Management. Engage
• with infrastructure and applications teams in mitigation and remediation efforts.
• Maintain key metrics that are indicative of the security posture of the infrastructure.
• Keep abreast of threat intelligence feeds to stay abreast of industry reports and emerging threat that
• may affect.
• Produce Executive Dashboard Security reporting showing actionable insights from IT Security
• monitoring tools
• Engage with other IT units, where applicable, to establish and enforce security best practices.
• protection objectives, and process improvements.

Key Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field.
• Relevant certifications such as CISSP, CISM, CEH, CompTIA Security+, or ISO27001 Lead Implementer/Auditor are strongly preferred.
• 3–5 years of experience in information security, cybersecurity operations, or a related IT role.
• Experience with regulatory frameworks and compliance standards such as PCI DSS and ISO27001.
• Strong understanding of cybersecurity principles, risk management, and security tools (e.g., SIEM, IDS/IPS, endpoint protection).
• Proficiency in analyzing threat intelligence feeds and translating findings into actionable insights.
• Ability to interpret complex security data and generate clear, actionable executive-level reports.
• Excellent written and verbal communication skills.

Application Closing Date
Not Specified.

How to Apply
Interested and qualified candidates should send their CV to: recruitment@hrexng.com using the Job Title as the Subject of the mail.

Note: Only qualified candidates will be contacted.