Venture Garden Nigeria (VGN) is a fast growing Software company with a vision to build an enduring organization with an ecosystem of value creators- while delivering high impact technology solutions for emerging markets through a culture of entrepreneurship and innovation. At VGN we wage war against the average, go beyond the ordinary to explore limitless opportunities; breaking the norms and aggressively pursuing success through- Relentless Hard-work, Pursuit of excellence, calculated risk taking and a hunger for knowledge and we have a lot of fun at it!
We are recruiting to fill the position below:
Job Title: Information Risk and Compliance Analyst
Location: Ikeja, Lagos
Job Type: Full-time
Job Description
- As Risk and Compliance Analyst, you will assist in the maintenance and enforcement of the VGG’s security program.
- You will be charged with identifying weaknesses in or deviations from policy and working across departmental lines to ensure the safety of the company’s information resources
Principal Responsibilities and Accountabilities
- Maintenance of Risk Management Policy
- Facilitation of regular risk assessment exercises,
- Integration of Risk Management Policy into key processes
- Enforcement and monitoring of controls arising from risk assessment exercise/information security policy and procedures
- Maintenance of dashboard of control implementation and compliance status
- Work with teams tasked with control implementation to determine the status and identify impediments
- Stays current and reports on emerging security threats based on the company’s risk profile
- Stays current and reports on emerging technologies and their impact on the company’s security
Change management:
- Implementation of a unified change management procedure
- Maintenance of central repository for change documentation.
Information Security Awareness:
- Implement information security awareness program:
- Identification of key topics based on best practice
- The inclusion of topics based on feedback from incidents/awareness measurements
- Facilitate information security awareness sessions
- Develop an Information security awareness plan for the year
- Develop and implement ad-hoc security awareness methods
Compliance management to relevant security standards, legal and contractual requirements:
- ISO 27001
- PCI-DSS
- SWIFT Security Requirements
- CBN Requirements
- Other identified compliance requirements
Qualifications
- Bachelor’s degree in Computer Science, Cybersecurity or related field
- At least 2 years’ experience in information security risk and/or compliance role and operational risk management
- Experience in implementing and maintaining security standards, including ISO 27001, PCI-DSS, NIST etc
- Experiencing in maintaining policy documents and enforcement of information security policies
- Relevant certifications, i.e. CISM, CISSP, CGEIT, CRISC, CEH, CHFI
Skills & Abilities:
- Decision Making
- Flexibility
- Interpersonal Skills
- Personal Leadership
- Excellent Communicator
- Personal Organization
- Problem Solving
- Team Building
- Additional Information
Working Conditions:
- Flexibility is important.
Remuneration
Competitive based on experience.
Method of Application
Interested and qualified candidates should:
Click here to apply online
Job Title: Information Security Analyst
Location: Ikeja, Lagos
Job Type: Full-time
Job Description
- The Information Security Analyst will be responsible for keeping data safe and assets protected across the organization by monitoring, reporting, and addressing actual and potential information security issues.
Principal Responsibilities and Accountabilities
- Monitor computer networks for security issues.
- Investigate security breaches and other cybersecurity incidents.
- Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs
- Document security breaches and assess the damage they cause.
- Work with security team to perform tests and uncover server & network vulnerabilities.
- Fix detected vulnerabilities to maintain high-security standards.
- Stay current on IT security trends and news.
- Develop company-wide best practices for IT security.
- Perform penetration testing.
- Help colleagues install security software and understand information security management.
- Research security enhancements and make recommendations to management.
- Stay up-to-date on information technology trends and security standards.
- Educate developers on secure coding practices.
- Participate in enterprise phishing simulation test.
Qualifications
Essential Competencies:
- Bachelor’s degree in Computer Science, Cybersecurity or related field.
- Experience in information security or related field.
- Experience with computer network penetration testing and techniques.
- Extensive Cloud knowledge
- Understanding of software design patterns
- Understanding of firewalls, proxies, SIEM, antivirus, and IDS/IPS concepts.
- Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
- Understanding patch management with the ability to deploy patches in a timely manner while understanding business impact.
- Certification in of the any of the following will be an added advantage
- CEH: Certified Ethical Hacker
- ECSA: EC-Council Certified Security Analyst
- GSEC / GCIH / GCIA: GIAC Security Certifications
- CISSP: Certified Information Systems Security Professional.
Working Conditions:
- Flexibility is important.
Remuneration
Competitive based on experience.
Method of Application
Interested and qualified candidates should:
Click here to apply online
Note: The role is open to anyone who meets the above criteria regardless of race or nationality.
Leave a Reply Cancel reply