Ascentech Services Limited – Our client, a leading provider of world-class Digital Solutions, with head office in Lagos, is looking to recruit suitable candidates to fill the position below:
Job Title: Information Security & Internal Compliance Officer
Location: Lagos
Job Objective
To enforce the information security management system security standards, policies, procedures, in line with our regulatory requirements and managing documents.
Duties
- Planning and performing periodic security audits
- Performing periodic checks on hardware and software systems to identify areas where deviation from standards exist
- Periodically reviewing system access logs to see if access to systems / information is maintained on a need to know and need to do basis
- Conducting internal audits on quarterly basis in line with the regulatory scope(s)
- Planning, implementing periodic security training programs for staff (according to functional need) to create security awareness among them
- Work with the information technology team in ensuring that users cannot connect to the personalization network from the internet and that personalization data is not transferred via wireless networks or any other means that has not been approved by Management
- Reporting to Line Manager on security issues on a regular and timely basis
- Schedule with banks/issuers for the due diligence audits that come up from time to time
- Track audit findings and ensure that they are closed and escalate delays to Line Manager
- Enforcing compliance with production room procedures, ensuring that records are adequately maintained
- Reporting non-compliance to Line Manager / Head of Department responsible for audited functional areas and ensuring that corrective actions are promptly taken as required by the brand/regulatory bodies
- Regular follow up on the versions installed software (operating systems, application software and anti-virus) to ensure that they are always up to date and report any deviations
- Review systems and device times on weekly basis to ensure that they are synchronized and report any non-conformity
- Provide internal communication regarding electronic cards compliance issues and applicable regulation changes
- Review of the systems and network devices to ensure that the configurations are in line with the organizational policy and best practice
- Aid in the creation of gap analysis to any new/changed/modified regulations
- Maintain files generated from each and every audit
- Responsible for the regular on-site audits and reviews
- Formally document audit findings
- Maintain Issue ad Change registers for information security
- Act as a consultant to projects, advising on matters relating to security
- Conduct spot-check audits within the production, outside production and as required by the Line Manager
- Maintain currency with security and security enhancing technologies and brief colleagues as needed to enable measures to be implemented where and when necessary/desirable
- Provide advice and take action, where necessary, in response to Audit findings and recommendations in respect of information security
- Work with the Units/Departments audited by regulatory bodies to resolve compliance issues, provide recommendation, communication on status of action resolution and bringing to the notice of Line Manager, issues that require attention and taking/tracking corrective actions
Qualifications
Education:
- BSc/HND in Computer Science, Computer Engineering or related discipline. MSc in a relevant discipline will be an added advantage. A Microsoft or Cisco certified candidate will be highly preferred.
Experience:
- 4+ years in a similar position
Key Competencies:
Fundamental knowledge of:
- Analytics
- Research
- Web application security
Deadline: 31st August, 2020.
How to Apply
Interested and qualified candidates should kindly send their CV to: cv@ascentech.com.ng with the “Job title and preferred Location” as subject of the email
Note: Only shortlisted candidates will be contacted.
Leave a Reply