Job Purpose
The Chief Information Security Officer (CIO) will spearhead the creation and maintenance of the enterprise’s vision, strategy, and programs to safeguard information assets and technologies effectively. This executive will oversee the formulation and execution of security policies, risk mitigation approaches, cyber-defense measures, regulatory compliance efforts, and structured incident response frameworks throughout the organization.
Oversee a comprehensive range of critical duties encompassing project management, team collaboration, and strategic planning to ensure organizational objectives are met consistently. Develop and implement robust processes to enhance efficiency, productivity, and operational excellence across all assigned projects. Serve as the primary liaison between senior leadership, cross-functional teams, and external stakeholders to facilitate seamless communication and alignment of goals. Monitor key performance indicators and provide data-driven insights to leadership to support informed decision-making and continuous improvement initiatives. Mentor junior team members through guidance, feedback, and professional development opportunities to foster a high-performing and engaged workforce. Ensure compliance with company policies, industry regulations, and quality standards while driving innovation and sustainable growth within the department.
Provides visionary direction and fosters innovative thinking to guide organizational decisions, ensuring sustainable growth and competitive advantage in dynamic markets. Cultivates high-performing teams through empowerment, mentorship, and a results-driven culture, aligning individual strengths with overarching business objectives. Drives strategic initiatives by analyzing market trends, identifying opportunities, and implementing scalable solutions that enhance operational efficiency and profitability. Demonstrates exceptional interpersonal and communication skills to inspire collaboration, resolve conflicts, and engage stakeholders at all levels. Requires a minimum of 10 years of progressive leadership experience, proven expertise in strategic planning, and a track record of delivering measurable outcomes in complex environments. Proficiency in data-driven decision-making, change management, and cross-functional leadership is essential, along with a strong business acumen and adaptability to evolving industry landscapes.
Formulate and execute the organization’s information security strategy, roadmap, and enduring cybersecurity vision to ensure robust protection of digital assets and infrastructure.
Direct oversight and guidance are provided to the Information Security and Cybersecurity Risk teams, ensuring their effective development and leadership.
Develop and sustain a comprehensive security governance framework across the enterprise, ensuring alignment with globally recognized best practices.
Cybersecurity Operations professionals are tasked with safeguarding an organization’s digital assets and infrastructure against evolving cyber threats. They monitor networks, systems, and applications for vulnerabilities or suspicious activities, investigating and mitigating potential security incidents. Responsibilities include implementing and maintaining security policies, conducting risk assessments, and ensuring compliance with industry regulations and standards. These roles require expertise in threat detection, incident response, and security architecture, along with strong analytical and problem-solving skills. Additionally, professionals in this field must stay current with emerging threats, technologies, and best practices to effectively protect critical data and systems.
Responsible for managing the implementation, ongoing monitoring, and enhancement of cybersecurity measures across networks, applications, endpoints, and cloud infrastructures.
Oversee the operations of the Security Operations Center (SOC) and related threat-intelligence initiatives.
Conduct comprehensive evaluations of vulnerabilities, execute penetration tests, and perform detailed security audits.
The position involves overseeing risk management and ensuring adherence to regulatory and internal compliance standards. Key responsibilities include identifying potential risks, implementing mitigation strategies, and maintaining comprehensive compliance frameworks. The role requires a deep understanding of industry regulations, strong analytical skills, and meticulous attention to detail. Additionally, the individual must collaborate with cross-functional teams to promote a culture of compliance and risk awareness throughout the organization.
Perform regular evaluations of potential risks to detect, assess the magnitude of, and rank security threats based on their impact and likelihood.
To guarantee adherence to applicable regulatory requirements, uphold standards such as ISO 27001, GDPR, NDPR, and PCI-DSS, ensuring all policies, procedures, and operations align with these frameworks.
Ensuring compliance with the regulatory frameworks established by the Department of State Services (DSS), Central Bank of Nigeria (CBN), and Nigeria Deposit Insurance Corporation (FDIC) for financial institutions.
Develop and implement comprehensive security policies, standards, and procedures to ensure robust protection across every business unit. Additionally, oversee incident response protocols and business continuity strategies to maintain operational resilience.
Spearhead the creation and execution of the Cybersecurity Incident Response Plan (CARP) to ensure robust protection and rapid recovery from security incidents.
Oversee the management of security incidents, including breaches, cyber-attacks, and data leaks, and facilitate prompt communication with relevant stakeholders.
Partner with IT leadership to validate the security and efficacy of business continuity and disaster recovery frameworks through rigorous testing and ongoing assessment.
Demonstrating expertise in stakeholder management involves fostering strong, collaborative relationships with key individuals and groups who influence or are affected by organizational decisions. This responsibility requires adept communication, negotiation, and problem-solving skills to align diverse interests and ensure project success. Additionally, it entails identifying stakeholder needs, addressing concerns promptly, and maintaining transparency throughout interactions. Proficiency in stakeholder analysis, expectation management, and conflict resolution is essential to sustain long-term engagement and support.
Prepare and submit regular security reports to the Board, Executive Management, and regulatory authorities as required.
Foster a robust cybersecurity culture by delivering comprehensive security awareness training for all employees.
Act as the main point of contact for interactions with law enforcement agencies, cybersecurity collaborators, and regulatory bodies.
Track and measure performance using established Key Performance Indicators (KPIs) to evaluate progress toward defined objectives, ensuring accountability and driving continuous improvement across operational, financial, and strategic initiatives.
Achieved a measurable reduction in cybersecurity incidents and vulnerabilities.
The organization requires strict adherence to Service Level Agreements (SLAs) for incident response and breach resolution times.
Ensuring adherence to regulatory standards and achieving high audit compliance ratings represent critical responsibilities within this role, requiring meticulous attention to detail and a thorough understanding of applicable laws and guidelines. The position demands consistent demonstration of compliance with internal policies and external regulatory frameworks, as well as the ability to identify and mitigate potential risks before they escalate. Additionally, the individual must proactively collaborate with cross-functional teams to maintain robust compliance practices, conduct periodic audits, and prepare comprehensive documentation to support regulatory assessments. Strong analytical skills, a commitment to ethical integrity, and the capacity to interpret complex regulatory requirements are essential for success in this position.
Accomplishing the projected milestones within the cybersecurity roadmap entails a structured and timely execution of planned initiatives. This position demands meticulous adherence to established timelines, a thorough understanding of cybersecurity frameworks, and the ability to prioritize tasks effectively to ensure seamless advancement toward strategic objectives.
We oversee and ensure the successful completion of cybersecurity awareness and training programs for all staff members. Our role involves monitoring participation rates, addressing any gaps in completion, and fostering a culture of security mindfulness across the organization. This includes tracking progress, providing reminders or additional resources as needed, and reporting on overall compliance to leadership to reinforce accountability and continuous improvement.
Qualifications & Requirements
A bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a closely related field is required, with a master’s degree considered a strong advantage.
Professional certifications in cybersecurity, including CISSP, CASM, CEA, CCSP, RISC, ISO 27001 Lead Implementer/Auditor, and SEC, are required.
We seek candidates possessing a minimum of a decade of integrated IT and cybersecurity expertise, including at least half of that tenure in a managerial capacity.
Proficient knowledge of information security frameworks is essential.
We specialize in designing and implementing secure cloud and network architectures, ensuring robust protection against evolving cyber threats while optimizing performance and scalability. This role requires expertise in cloud security best practices, including identity and access management, encryption, and compliance frameworks such as NIST, ISO 27001, and SOC 2. Additionally, you should possess hands-on experience with cloud platforms like AWS, Azure, or Google Cloud, as well as proficiency in network security technologies such as firewalls, VPNs, and intrusion detection/prevention systems. Your responsibilities will include assessing security risks, developing mitigation strategies, and collaborating with cross-functional teams to integrate security into all phases of the cloud and network lifecycle. Strong problem-solving skills and the ability to communicate complex technical concepts to non-technical stakeholders are essential.
Digital risk mitigation and strategic oversight are key responsibilities in this role, ensuring robust protection of organizational assets and adherence to regulatory standards. Governance frameworks must be developed and enforced to maintain compliance while proactively identifying and addressing potential vulnerabilities. Strong leadership is required to align risk policies with business objectives, fostering a culture of accountability and resilience across all operational levels.
The role entails ensuring adherence to all applicable regulatory compliance requirements, maintaining up-to-date knowledge of evolving regulations, and implementing necessary policies and procedures to mitigate compliance risks. This includes conducting regular audits, documenting compliance activities, and providing guidance to stakeholders on regulatory obligations. Strong attention to detail, analytical skills, and the ability to interpret complex regulatory frameworks are essential, along with proficiency in compliance management systems and tools.
Proficiency in overseeing cybersecurity initiatives within financial services or technology-centric enterprises is highly beneficial.
Responsibilities include developing and executing software solutions, analyzing system requirements, and providing technical support to ensure optimal performance. Key qualifications encompass proficiency in programming languages such as Java, Python, or C++, strong problem-solving abilities, and experience with database management systems. The role demands excellent communication skills to collaborate with cross-functional teams, adherence to coding standards and best practices, and a commitment to continuous learning to stay updated with emerging technologies. Additionally, the position may require participation in code reviews, system testing, and troubleshooting to maintain high-quality software deliverables.
Strategic thinking and leadership are essential for this role, requiring the ability to analyze complex challenges and develop innovative solutions. The position demands strong decision-making skills to guide teams toward achieving organizational goals. Candidates must demonstrate experience in leading cross-functional initiatives and fostering collaboration across diverse departments. Additionally, the ideal applicant will possess a clear vision for driving long-term growth while maintaining operational efficiency. Proficiency in strategic planning and the capacity to inspire and motivate teams are critical for success in this position.
Cyber risk management involves identifying, assessing, and mitigating potential threats to an organization’s digital assets and operations. This role requires a deep understanding of cybersecurity frameworks, risk assessment methodologies, and regulatory compliance standards. Professionals in this field are responsible for developing and implementing robust security measures to protect against data breaches, cyberattacks, and other digital vulnerabilities. They analyze security incidents, propose corrective actions, and ensure adherence to industry best practices. Strong analytical skills, problem-solving abilities, and familiarity with tools like SIEM, IDS/IPS, and vulnerability scanners are essential. Additionally, the position demands effective communication to convey complex security risks to stakeholders and collaborate with IT teams to enhance overall security posture.
Incident command decisions are made with critical evaluation and strategic oversight to ensure effective response and resolution. This role involves analyzing situational data, assessing risks, and determining appropriate actions to mitigate potential escalations. Responsibilities include coordinating with cross-functional teams, establishing clear objectives, and implementing structured protocols to manage incidents efficiently. Strong leadership, analytical skills, and the ability to make timely, informed decisions under pressure are essential for success in this position.
Establish and enforce policies, standards, and procedures to ensure the effective management, security, and compliance of organizational data and information assets. Oversee the development and implementation of frameworks that align with regulatory requirements, industry best practices, and organizational objectives. Monitor compliance with data protection laws, confidentiality agreements, and internal policies to mitigate risks related to unauthorized access, breaches, or misuse. Collaborate with cross-functional teams to identify data governance needs, assess risks, and implement controls that enhance data integrity, availability, and usability. Lead initiatives to classify data, define retention schedules, and enforce access controls to safeguard sensitive information while supporting strategic business goals.
Demonstrates exceptional proficiency in conveying information clearly and concisely, both verbally and in writing, alongside a strong aptitude for compiling and presenting accurate, insightful reports.
The position requires expertise in stakeholder engagement and crisis resolution, ensuring effective communication and alignment with key parties. Responsibilities include developing strategies to mitigate risks, maintaining transparent dialogue with stakeholders, and leading rapid response efforts during critical situations. The role demands strong interpersonal skills, the ability to navigate complex relationships, and a proactive approach to identifying potential issues before they escalate. Experience in conflict resolution, negotiation, and maintaining organizational reputation under pressure is essential.
Highly analytical with a strong commitment to ethical standards and confidentiality is essential.
Qualifications
BA/BSc/HND , MBA/MSc/MA
Experience Required
10 years
