Job Purpose
The Chief Information Security Officer (CIO) will spearhead the creation and ongoing oversight of the enterprise vision, strategy, and programs to safeguard information assets and technologies. This role will involve leading the formulation and execution of security policies, risk management frameworks, cyber-defense measures, regulatory compliance efforts, and incident response procedures throughout the organization.
Oversee a range of critical duties, including managing daily operations, developing strategic initiatives, and ensuring adherence to company policies and industry regulations. Conduct performance evaluations, foster team collaboration, and address any operational challenges to enhance productivity and efficiency. Lead cross-functional projects, coordinate with senior leadership, and provide actionable insights to drive organizational growth. Additionally, monitor key performance indicators, optimize workflows, and maintain high standards of quality across all deliverables.
The role demands strategic vision and strong leadership capabilities to drive organizational success. Key responsibilities include guiding teams toward achieving long-term goals, fostering innovation, and cultivating a high-performance culture. Requirements encompass proven experience in leadership roles, exceptional decision-making skills, and the ability to inspire and motivate teams. Proficiency in strategic planning, stakeholder management, and change leadership is essential. The ideal candidate will demonstrate a track record of delivering results in complex environments while maintaining a forward-thinking approach.
Craft a comprehensive information security strategy, strategic roadmap, and forward-looking cybersecurity vision for the organization.
Direct, supervise, and provide guidance to the Information Security and Cybersecurity Risk teams, fostering professional growth and operational excellence.
Develop and sustain a comprehensive security governance framework across the enterprise that adheres to internationally recognized best practices.
Cybersecurity Operations specialists are tasked with monitoring, detecting, analyzing, investigating, and responding to cyber threats to safeguard an organization’s digital assets and infrastructure. They implement and maintain security measures, including firewalls, intrusion detection systems, and encryption protocols, to prevent unauthorized access and mitigate risks. Responsibilities encompass conducting vulnerability assessments, performing penetration testing, and ensuring compliance with security policies and regulatory standards. Additionally, they analyze security logs, investigate incidents, and develop incident response plans to minimize potential damage from cyberattacks. Strong analytical skills, proficiency in security tools, and a deep understanding of threat landscapes are essential for success in this role.
Responsible for directing the execution, surveillance, and ongoing enhancement of cybersecurity measures across networks, applications, endpoints, and cloud infrastructures.
Oversee the Security Operations Center (SOC) and its associated threat-intelligence functions.
Conduct comprehensive vulnerability assessments, execute penetration tests, and perform thorough security audits to identify and mitigate potential risks.
We are seeking a skilled professional to oversee risk management and ensure adherence to regulatory compliance standards within the organization. The ideal candidate will monitor emerging risks, assess potential threats, and implement robust controls to mitigate exposure. Responsibilities include developing and enforcing policies, conducting audits, and providing strategic guidance to senior leadership on compliance matters. A strong understanding of financial regulations, risk frameworks, and industry best practices is essential, along with exceptional analytical, communication, and problem-solving abilities. Qualifications include a degree in finance, law, or a related field, along with relevant certifications such as FRM, CFA, or CPA. Experience in a compliance or risk management role within a regulated industry is preferred.
Perform regular evaluations of risks to detect, assess the magnitude of, and rank security threats in order of importance.
Ensure adherence to all pertinent regulatory frameworks, including ISO 27001, GDPR, NDPR, and PCI-DSS, to uphold organizational compliance and mitigate legal risks.
Financial institutions must adhere to regulations set by the Deposit Money Banks (DMBs), the Central Bank of Nigeria (CBN), and the Nigeria Deposit Insurance Corporation (FDIC).
Develop and implement comprehensive security policies, standards, and procedures to ensure consistent protection across all organizational units. Additionally, oversee incident response protocols and business continuity strategies to maintain operational resilience and safeguard critical assets.
Spearhead the creation and execution of a comprehensive Cybersecurity Incident Response Plan (CARP) to ensure robust security measures are in place.
Ensure prompt and effective responses to security breaches, cyber-attacks, and data leaks while maintaining clear and timely communication with stakeholders.
Work collaboratively with IT leadership to verify the security and effectiveness of business continuity and disaster recovery frameworks through rigorous testing.
Effective stakeholder engagement is essential, requiring the ability to identify, prioritize, and maintain strong relationships with key individuals and groups. This role demands exceptional communication skills to convey complex information clearly and concisely, ensuring alignment and buy-in across diverse stakeholders. A proactive approach to addressing concerns and resolving conflicts is crucial, as is the capacity to influence decisions without direct authority. Strong organizational acumen and the ability to manage multiple priorities in a dynamic environment are necessary to deliver consistent value and support organizational objectives.
Prepare and deliver periodic security reports to the Board, Executive Management, and applicable regulatory bodies.
Facilitate mandatory security awareness training for all employees and cultivate a robust cybersecurity culture across the organization.
Act as the main point of contact for interactions with law enforcement entities, cybersecurity collaborators, and regulatory bodies.
Track and measure performance through specific Key Performance Indicators (KPIs) to evaluate progress toward strategic objectives.
By achieving a measurable reduction in the frequency and severity of cybersecurity incidents and vulnerabilities, the successful candidate will demonstrate their capacity to enhance organizational security posture and mitigate potential risks effectively.
Ensure adherence to the specified service level agreement (SLA) response times for incidents and breaches, maintaining timely resolution and alignment with contractual obligations.
Ensures adherence to regulatory standards and audit compliance protocols, maintaining a high rating in both areas to uphold organizational integrity and operational excellence.
We are tasked with deploying cybersecurity roadmap initiatives at a defined pace. This role requires executing strategic security measures to align with established plans. Key responsibilities include advancing security enhancements, monitoring progress against predefined milestones, and ensuring adherence to compliance standards throughout the implementation process.
To ensure robust cybersecurity measures, we must elevate staff completion rates for cybersecurity awareness and training initiatives. This involves enhancing engagement and participation across all levels of the organization to foster a culture of security mindfulness. Regular assessments and follow-ups will be conducted to monitor progress and address any gaps in training compliance. Additionally, leaders at all levels will be expected to champion these efforts, reinforcing the importance of cybersecurity best practices through their own active involvement and advocacy.
We are seeking a highly motivated professional with a proven track record in [specific field/industry]. Candidates must possess a minimum of [X years] of relevant experience, along with a strong educational background in [required degree/discipline]. Essential skills include [list 2-3 key skills], with proficiency in [specific software/tool] being a significant advantage. The ideal applicant will demonstrate exceptional problem-solving abilities, outstanding communication skills, and the capacity to work effectively in a fast-paced environment. A commitment to continuous learning and adaptability to evolving industry trends is also required.
A bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a closely related discipline is required, with a master’s degree considered advantageous.
Relevant cybersecurity certifications include CISSP, CASM, CEA, CCSP, RISC, ISO 27001 Lead Implementer/Auditor, and SEC.
A minimum of ten years of combined experience in IT and cybersecurity, including at least five years in a leadership capacity, is required.
Possesses a comprehensive grasp of information security frameworks, ensuring alignment with industry standards and best practices.
We are seeking a professional with expertise in cloud security and network architecture. The ideal candidate will possess a deep understanding of cloud platforms, security frameworks, and network infrastructure design. Responsibilities include developing and implementing secure cloud solutions, ensuring compliance with industry standards, and optimizing network performance. Additionally, the role requires collaboration with cross-functional teams to integrate security best practices and maintain robust, resilient systems.
Digital risk management and governance encompass the strategic frameworks, policies, and processes designed to identify, assess, evaluate, mitigate, and monitor risks associated with digital assets, technologies, and operations. This role requires a deep understanding of cybersecurity threats, regulatory compliance, data privacy, and the evolving landscape of digital vulnerabilities. Responsibilities include developing and implementing robust risk management strategies, ensuring adherence to industry standards and legal requirements, and fostering a culture of security awareness across the organization. Additionally, the position demands expertise in aligning digital initiatives with business objectives while balancing risk tolerance and operational efficiency.
Ensure adherence to all applicable regulatory compliance requirements, maintaining meticulous documentation and timely submission of reports to governing bodies. Implement and monitor internal policies and procedures to align with evolving legal standards and industry regulations, mitigating risks and ensuring organizational integrity. Conduct periodic audits and assessments to verify compliance, addressing any discrepancies promptly to uphold operational excellence and legal accountability. Collaborate with cross-functional teams to disseminate compliance updates and foster a culture of regulatory awareness throughout the organization.
Candidates with a demonstrated track record in overseeing cybersecurity initiatives within financial services or technology-intensive enterprises will be strongly preferred.
Core competencies required for this role include a strong foundation in analytical problem-solving, exceptional written and verbal communication skills, and the ability to collaborate effectively within cross-functional teams. Candidates must demonstrate proficiency in project management methodologies, adaptability to evolving priorities, and a commitment to continuous professional development. Additionally, the ideal applicant will possess leadership qualities, a customer-centric mindset, and experience in driving process improvements to enhance operational efficiency. Familiarity with industry-specific tools and technologies is essential, as is a track record of delivering measurable results in previous positions. The position demands a proactive approach, meticulous attention to detail, and the capacity to thrive in a fast-paced, dynamic environment.
Strategic thinking and leadership are essential qualities for this role. Candidates must demonstrate strong analytical skills to assess complex business challenges and formulate innovative solutions. The ability to inspire and guide teams toward shared objectives is critical, as the position requires steering cross-functional initiatives and driving organizational growth. Proficiency in decision-making under uncertainty and aligning actions with long-term company vision will be key to success in this dynamic environment.
Cyber risk management encompasses the identification, assessment, evaluation, and mitigation of potential threats to an organization’s digital infrastructure, data assets, and operational continuity. This role involves implementing robust security policies, conducting regular vulnerability assessments, and ensuring compliance with relevant regulatory standards such as GDPR, HIPAA, or ISO 27001. Professionals in this field are responsible for developing incident response plans, monitoring security systems, and coordinating with stakeholders to address emerging risks. Strong analytical skills, proficiency in risk assessment frameworks, and familiarity with cybersecurity tools are essential, along with the ability to communicate complex technical concepts to non-technical audiences. A background in information security, IT auditing, or related disciplines is typically required.
The position involves making critical decisions in incident command scenarios, ensuring effective response and coordination during emergencies. Responsibilities include assessing situations, determining appropriate actions, and implementing strategies to mitigate risks and resolve incidents efficiently. Strong leadership, analytical thinking, and the ability to communicate clearly under pressure are essential. Experience in emergency management, crisis response, or related fields is required, along with proficiency in incident command systems and protocols. The role demands adaptability, quick decision-making, and a commitment to maintaining safety and operational integrity.
Data and information governance encompasses the policies, procedures, and frameworks designed to ensure the integrity, security, confidentiality, and availability of organizational data. This discipline involves establishing standards for data quality, managing access controls, and ensuring compliance with regulatory requirements such as GDPR, CCPA, or HIPAA. Additionally, it includes overseeing data lifecycle management, mitigating risks associated with data breaches or misuse, and aligning data practices with business objectives. Effective governance fosters accountability, enhances decision-making, and supports strategic initiatives while safeguarding sensitive information.
Outstanding verbal and written communication abilities, along with a talent for preparing clear and comprehensive reports.
Proficient in stakeholder and crisis management, with the ability to navigate complex relationships and mitigate potential risks effectively. Skilled in maintaining clear communication channels with all parties involved while addressing urgent issues promptly. Demonstrated expertise in developing strategic responses to unforeseen challenges, ensuring alignment with organizational objectives. Adept at analyzing stakeholder concerns and balancing competing priorities to foster constructive outcomes. Capable of leading incident response teams and implementing solutions under pressure to minimize disruption and restore stability.
Maintaining an unwavering commitment to ethics, confidentiality, and analytical excellence is essential.
Qualifications
BA/BSc/HND , MBA/MSc/MA
Experience Required
10 years
