KEY RESPONSIBILITIES

 IT Audit & Risk Assessment

• Plan and execute IT audits across infrastructure, applications, networks, and cloud environments.
• Assess ITGC, application controls, cybersecurity safeguards, and access controls.
• Identify technology risks and provide actionable mitigation recommendations.

Compliance and Governance

• Ensure adherence to regulatory standards such as ISO 27001, NIST, GDPR, NDPR, COBIT, COSO, and ITIL.
• Support audit exercises and track remediation of identified risks.
• Review effectiveness of IT governance and recommend improvements.

Reporting & Stakeholders Engagement

• Prepare comprehensive audit reports detailing findings, risks, and recommendations.
• Engage IT teams, leadership, and executives to communicate audit outcomes.
• Participate in risk and control self-assessments across business units.

Continuous Improvement

• Identify improvements to IT processes, controls, and security posture.
• Stay updated on emerging risks, technology trends, and regulatory expectations.

KEY COMPETENCIES

• Strong analytical and detail-oriented mindset.
• High integrity and confidentiality handling sensitive information.
• Excellent communication, documentation, and stakeholder management.
• Strong organizational and time-management skills.

EDUCATION & EXPERIENCE

• Bachelor’s degree in information technology, Computer Science, Accounting, or related field.
• 3–6 years’ experience in IT auditing, IT risk management, or information security.
• Knowledge of IT frameworks: COBIT, COSO, ISO 27001, ITIL.
• Hands-on audit experience across cloud, applications, networks, and cybersecurity.
• Strong analytical and report-writing capabilities.

PREFERRED SKILLS

• Certifications: CISA, CRISC, CIA, ISO 27001 Lead Auditor.
• Familiarity with AWS/Azure/GCP platforms and enterprise infrastructure.
• Understanding of cybersecurity principles and compliance standards.

go to method of application »

KEY RESPONSIBILITIES

Security Strategy & Governance

• Develop and implement cybersecurity strategies aligned with business and regulatory requirements.
• Define enterprise-wide security policies, standards, procedures, and governance frameworks.
• Establish oversight mechanisms for risk management, compliance, and security operations.

Operational Security Leadership

• Oversee SOC operations including monitoring, incident response, and threat intelligence.
• Lead vulnerability management, penetration testing, and threat modeling initiatives.
• Ensure secure SDLC processes and DevSecOps integration.

Risk Management & Compliance

• Conduct audits, risk assessments, and compliance reviews across the enterprise.
• Ensure adherence to ISO 27001, NIST, GDPR, NDPR, and internal frameworks.
• Collaborate with legal, compliance, and audit teams on remediation efforts.

Team Leadership & Development

• Lead and mentor cybersecurity professionals across operations and governance.
• Promote a culture of security awareness organization wide.
• Drive certification, continuous learning, and capability development.

 Stakeholder Engagement

• Serve as cybersecurity advisor to the CTO, executives, and strategic partners.
• Support client engagements, solution proposals, and major enterprise programs.
• Represent the organization in regulatory audits and external assessments

 KEY COMPETENCIES

• Strong strategic decision-making and leadership abilities.
• Excellent communication, influence, and stakeholder management.
• High accountability, integrity, and resilience.
• Business acumen with a strong risk and compliance mindset.
• Advanced analytical and problem-solving capabilities.

EDUCATION & EXPERIENCE

• Bachelor’s degree in information security, Computer Science, or related field; master’s is an advantage.
• Minimum of 10 years’ cybersecurity experience, with at least 5 years in leadership.
• Hands-on expertise in network, application, cloud, IAM, SOC operations, vulnerability management, pen-testing.
• Strong experience with ISO 27001, NIST, GDPR, NDPR frameworks.
• Proven track record leading high-performing security teams.

PREFERRED SKILLS

• CISSP, CISM, CISA, CEH or equivalent certifications.
•  Azure/AWS/GCP security expertise.
• Experience in fintech, telco, or regulated industries.
•  Strong executive presentation and reporting skills.