• Application Deadline:
• Position: Analyst, System Security Management


• Job Type Full Time


• Qualification BA/BSc/HND


• Experience 10 years


• Location Lagos


• Job Field ICT / Computer 
  

Job Identification Number: 595

Duties & Responsibilities

• Participate in planning & design of infrastructure security architecture for the Group and subsidiaries.


• Specify, allocate, and assign confidentiality, integrity, and availability requirements to development and acquisition organizations and assets within the Group and subsidiaries.


• Develop and maintain an enterprise security architecture.


• Ensure that security requirements are adequately addressed throughout the development and acquisition lifecycles for all assets across the Group and subsidiaries.


• Perform certification and accreditation prior to releasing new systems and software to production


• Serves as an internal information security consultant to the organization.


• Assists in the development and implementation of security policies and procedures.


• Initiates, facilitates and promotes activities to create information security awareness within the organization.


• Assists with performing information security risk assessments and serves as an internal expert for information security related issues across the Group and subsidiaries.


• Help reviews system-related security plans throughout the organization's corporate information systems and applications.


• Monitors compliance with information security policies and procedures, referring problems to the appropriate department manager or business area.


• Maintains information security devices and solutions for the organization, such as Intrusion Detection Systems, e-Discovery, Hard Disk Encryption, and Vulnerability Scanners.


• Supports the security incident response process within the Group and subsidiaries.


• Provides input in selection of system software and hardware, with emphasis on security and compliance requirements.


• Provides incident and problem resolution


• Supports development of security deliverables for enhancements to production systems and new development across the Group and subsidiaries.


• Monitors security queues for daily tickets in support with the organizations daily operations for the Group and subsidiaries.

Job Requirements

Minimum Education:  

• First Degree in Computer Science / Engineering, Higher Degrees


• At least three Relevant Professional Certifications as appropriate.

Experience:

• Minimum experience – Ten (10) years relevant working experience and 3 year working experience at supervisory level.

Key Competency Requirements:

Knowledge:

• Banking structure, policies and procedures.


• Operating systems


• Systems architecture


• Banking industry


• Banking Operations


• Banking services/products


• Microsoft office suite


• Information security expertise


• Security implementations and methodology


• Understanding of information security principles


• Project Management knowledge


• Working knowledge of financial services


• Security regulatory environment (i.e., PCI DSS)


• Understanding of IT infrastructure


• One or more of the following certifications:
  
  
  
  • CISSP
  
  
  • CEH
  
  
  • ISSAP
  
  
  • CWSP
  
  
  • GSE
  
  
  
  


• Cisco certifications


• Microsoft Certifications


• CheckPoint Certification (CCSA, CCSP)


• PMP.

Skills / Competencies:

Core SFIA 5 Skill Requirements:

• Information Management (IRMG 4)


• Information Security (SCTY 3)


• Security Administration (SCAD 4)


• Problem Management (PBMG 4)


• Technology Audit (TAUD 4)

Other SFIA 5 Skill Requirements:

• Service Level Management (SLMO 3)


• Learning Delivery (ETDL 3)

Other Required Knowledge and Capabilities:

• Proficient knowledge of technology security best practices and standards (ISO27001, ITIL, TOGAF, CISSP etc.)


• Proficient understanding of security management and controls (e.g. Threat and Vulnerability Management, Penetration Testing, anti-virus solutions and end-point protection, etc.)


• Proficient knowledge of network infrastructure and architectures


• Proficient knowledge of core IT (Infrastructure, Applications)


• Proficient knowledge of security methods, processes and tools


• Good strategic planning and management skills


• Good interpersonal and communication skills and the ability to work effectively with business stakeholders


• Sound conflict management skills


• Good administrative and managerial ability


• Customer-centricity


• Creative, results-oriented and analytical with strong problem-solving capability


• Good leadership and influencing ability


• Customer Relationship


• Business/ Operational Strategy


• Technical Strategy & Planning


• Business Continuity Management


• Business Change Management


• Human Factor Engineering


• Installation And Integration


• Service Strategy


• Records Management


• Procurement Management


• IT Appreciation & Application


• Hardware Configuration


• Business Analysis


• Database Design & Administration


• Server Administration


• Operating Systems Administration


• Network Planning & Design.