Threat Intelligence and Vulnerability Management Associate (Hybrid) at Duplo

Posted on Fri 17th Jul, 2026 - www.hotnigerianjobs.com --- (0 comments)

Duplo is building the platform to power the next generation of financial services. Our mission is to help companies expand financial access for all. Our simple and powerful banking-as-a-service API helps companies quickly launch financial products.

We are recruiting to fill the position below:

Job Title: Threat Intelligence and Vulnerability Management Associate

Location: Lagos (Hybrid)

Job Description

  • We are looking for a Threat Intelligence & Vulnerability Management Associate (Contract) who will support cyber threat intelligence operations, vulnerability assessments, penetration testing coordination, remediation tracking, risk reporting, compliance monitoring, and security governance initiatives across infrastructure, applications, cloud environments, and third-party ecosystems.

Responsibilities
Threat Intelligence Management:

  • Monitor and analyze cyber threat intelligence feeds, indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs).
  • Conduct threat hunting activities and provide actionable intelligence to relevant stakeholders.
  • Track emerging cyber threats, ransomware campaigns, vulnerabilities, and attack trends relevant to the financial sector.
  • Produce threat intelligence advisories, alerts, and situational awareness reports.
  • Collaborate with SOC, Incident Response, and Engineering teams during security investigations and incidents.

Vulnerability Management:

  • Conduct vulnerability assessments across servers, endpoints, databases, applications, cloud, and network devices.
  • Coordinate periodic penetration testing and remediation activities.
  • Validate remediation actions and ensure closure of identified vulnerabilities within agreed timelines.
  • Maintain vulnerability dashboards, risk registers, and remediation trackers.
  • Analyze vulnerability trends and provide risk-based recommendations to management.
  • Ensure timely patch management coordination with infrastructure and application teams.

Governance, Risk & Compliance (GRC):

  • Support compliance with regulatory and industry requirements, including CBN Cybersecurity Framework, NDPC, ISO/IEC 27001, ISO/IEC 22301, ISO/IEC 20001, and PCI DSS.
  • Perform cyber risk assessments and control effectiveness reviews.
  • Assist in policy development, control reviews, and cybersecurity governance reporting.
  • Maintain risk registers, exception registers, and compliance evidence repositories.
  • Support internal and external audits, regulatory examinations, and compliance reviews.

Security Monitoring & Reporting:

  • Develop and maintain cybersecurity metrics, dashboards, and executive reports.
  • Monitor vulnerability remediation SLA compliance.
  • Provide periodic reports on cyber risks, threat exposure, and compliance posture.
  • Support continuous improvement of cybersecurity controls and operational resilience.

Stakeholder Engagement:

  • Work closely with IT Engineering, DevOps, Risk & Compliance teams.
  • Provide security advisory support for projects, system upgrades, and digital transformation initiatives.
  • Conduct awareness sessions on cyber threats and vulnerability management best practices.

Requirements

  • Bachelor’s Degree in Computer Science, Information Security, Cybersecurity, Information Technology, Engineering, or related discipline.
  • Relevant certifications such as CEH, Security+, CySA+, CTIA, CISSP, CISA, CRISC, ISO 27001 Lead Implementer/Auditor, COBIT 2019 Foundation, or CGRC are preferred.
  • 2-3 years’ experience in cybersecurity operations, vulnerability management, threat intelligence, and GRC.
  • Experience within banking, fintech, telecommunications, or highly regulated industries is an advantage.
  • Strong knowledge of cybersecurity principles, including threat intelligence, vulnerability management, incident response, SIEM tools, cloud security fundamentals, security governance, and regulatory compliance.
  • Strong knowledge of cybersecurity principles, including threat intelligence, vulnerability management, incident response, SIEM tools, cloud security fundamentals, security governance, and regulatory compliance.
  • Ability to analyze security risks, solve problems, communicate effectively, collaborate with stakeholders, maintain confidentiality, and demonstrate strong attention to detail and continuous learning.
  • Excellent analytical thinking/problem solving skills
  • Excellent communication and reporting skills

Salary
N100,000 / month.

Application Closing Date
Not Specified. 

How to Apply
Interested and qualified candidates should:
Click here to apply online