Categories
Business and Finance

Fresh Career Opportunities at First Bank of Nigeria Limited

First Bank of Nigeria Limited (FirstBank) is Nigeria’s largest financial services institution by total assets and gross earnings. With more than 10 million customer accounts, FirstBank has over 750 branches providing a comprehensive range of retail and corporate financial services. The Bank has international presence through its subsidiaries, FBN Bank (UK) Limited in London and Paris, FBNBank DRC, FBNBank Ghana, FBNBank Gambia, FBNBank Guinea, FBNBank Sierra-Leone and FBNBank Senegal, as well as its Representative Offices in Johannesburg, Beijing and Abu Dhabi.

We are recruiting to fill the position below:

Job Title: Senior Analyst, Vulnerability Management

Job Identification: 107
Location: Lagos
Job Schedule: Full Time

Job Objective(s)

  • To identify security loopholes and vulnerabilities within the banks information systems.The Vulnerability Senior Analyst will provide input to the Enterprise Vulnerability Management (EVM) strategic direction and to have a focused leadership role on one or more EVM tools.
  • This role is responsible for implementing and managing enterprise vulnerability tools and processes to reduce technical risks due to vulnerabilities. This includes identifying and evaluating vulnerabilities and remediation activities for the Bank and entire subsidaries IT asserts.

Duties & Responsibilities

  • Conduct regular reviews of Banks network using manual/automated means to ensure that configurations meet best security practices.
  • Coordinate and Provide input to the development and implementation of Enterprise Vulnerability Management strategy and processes. This includes penetration testing strategy.
  • Ownership of critical EVM vulnerability scanning applications such as tools to scan/evaluate cloud and container infrastructures; infrastructure, operational technology and other devices on the network.
  • Interpretation, prioritization, and communication of scanning results to key business partners
  • Execution of emergency (e.g. zero day) vulnerability management process including research, coordination of response, and escalation/communication to senior leadership
  • Primary IT and Business contact for vulnerability related questions, concerns, and support
  • Drive situational awareness to all staff and other stakeholders based on risk identification
  • Conduct payment card data discovery scans to ensure security of Card Holder data
  • Conduct internal and external Penetration tests on the Bank’s information systems and make recommendations to critical findings
  • Engage with vendors and third parties on the identification and remediation of vulnerabilities
  • review the security of critical systems (e.g., e-mail servers, Active Directory, applications databases etc.) and changes to sensitive security controls to ensure appropriate security balance and strength across the Bank.
  • Provide insight on Security defense and hardening practices
  • Research and keep up-to-date with hacking/defense techniques, exploits and countermeasures
  • Analyze and evaluate vulnerabilities for exploitability and relevance.
  • Engage with stakeholders on timelines for closure of vulnerabilities and advise on appropriateness
  • Comply with the principles and policies in the information security hand book

Job Requirements
Education:

  • Minimum Education: First Degree in Computer Science/Engineering, Higher Degrees/Professional Certificates

Experience:

  • Minimum experience – Working knowledge of PCI DSS
  • Working knowledge of ISO 27001
  • Knowledge of the Security tools such as Qualys, Burp Suite, etc
  • Good Knowledge of Penetration testing tools.
  • Good knowledge of MS Windows and Linux
  • Good understanding of Best Practices Security architecture.
  • Working knowledge of penetration testing.
  • Good knowledge of network protocols including UDP/TCP/IP
  • Professional level knowledge of Access control lists, NAT, routing and switching
  • Ability to review rule sets for firewalls
  • Good knowledge of firewalls, IDS and IPS
  • Good knowledge of network/application security and encryption models

How to Apply
Interested and qualified candidates should:
Click here to apply online

Job Title: Forensic Analyst

Job Identification: 102
Location: Lagos
Job Schedule: Full Time

Job Objectives

  • To assist in forensic investigations on security incidents within the bank’s network

Duties & Responsibilities

  • Conduct computer forensic examinations to include the collection, preservation, processing, and analysis of digital evidence
  • Maintain, organize, and document storage of critical equipment and evidence in forensic investigations
  • Assist in data breach and information security incident investigations
  • Assist in forensic artifact handling and analysis
  • Assist in evidence collection, preservation, and transportation after a security event
  • Recover information from computers under investigation
  • Identify systems compromised by cyber attacks
  • Assist to compile digital evidence to aid legal cases
  • Document all technical findings from forensic investigations
  • Coordinate with system administrators to obtain necessary log files and other system evidence as required
  • Build proficiency in forensic, response and reverse engineering skills
  • Comply with the principles and policies in the information security hand book

Job Requirements
Education:

  • Minimum Education: First Degree in computer science/Engineering, Higher Degrees/Professional Certificates.

Experience:

  • Working knowledge of PCI DSS
  • Working knowledge of ISO 27001
  • Forensics experience
  • Chain of custody process
  • Good understanding of Best Practices Security Architecture
  • Knowledge of the Banking industry and banking Operations
  • Knowledge of the Banking applications, services/products

How to Apply
Interested and qualified candidates should:
Click here to apply online

Job Title: Applications Security Personnel

Job Identification: 105
Location: Lagos
Job Schedule: Full Time

Job Objective(s)

  • Perform Security Assessment, Vulnerability Assessment, threat Analysis/modelling & Risk Assessment on the bank’s application (APIs, Mobile, Web Application, Containers) before and after deployment to production.
  • Work with other relevant units or departments to develop standards and guidelines to guide the use and acquisition of software and to protect vulnerable information.

Duties & Responsibilities

  • Participate in the creation of enterprise security policies, standards, baselines, guidelines & procedures.
  • Offering training to Application Developers to become Application Security Experts
  • Review code for security vulnerabilities and practices dangerous to security and privacy.
  • Write custom rules on automated source code scanning tools
  • Build security into infrastructure and architecture designs and guide the implementation with the operations team
  • Create and deliver knowledge sharing presentations and documentation to developers and operations teams
  • Working with developers to refine security checkpoints in the SDLC based on best practice and other industry-accepted doctrine such as NIST SP 800-115 and ISO security standards.
  • Developing secure coding standards that are based on industry-accepted best practices such as OWASP Guide, SANS CWE Top 25, or CERT Secure Coding to address common coding vulnerabilities.
  • Identifying and using tools to perform source code security analyses to identify vulnerabilities and attack vectors in web applications.
  • Perform Security Assessment, Vulnerability Assessment, threat Analysis/modelling & Risk Assessment on the bank’s application (APIs, Mobile, Web Application, Containers) before and after deployment to production
  • Working alongside the Cyber Security Analyst to scope and refine web application penetration testing methods.
  • Obtaining and reviewing all required artefacts as part of approval analyses at security checkpoint phases in the development cycle.
  • Support Head of IT Security in tracking and managing inventory of applications across the organization, gathering and analysing relational data between business systems
  • Assisting in periodic security risk assessments, IT security audits and assessments, and management reporting.
  • Supporting changes to information security policies, procedures and standards as part of a continuous improvement model.
  • Managing/Optimisation the Web Application Firewall, API Security Gateway, Data Masking tool, Load Balancer and Database Activity Monitoring
  • Learn on the job and explore new technologies with little supervision
  • Write reports including recommendations, root cause analysis, security summary analysis, and project roadmap
  • Perform scheduled and adhoc security and compliance reporting
  • Support Security Monitoring team to define and maintain security awareness program
  • Perform other duties as may be assigned by the Unit Head, Infrastructure Security  or the Head, Information Security Operations Department
  • Comply with the principles and policies in the information security hand book

Job Requirements
Education:

  • Minimum Education: First Degree in Computer Science / Engineering, Systems Engineering or with strong Information Security component

Experience:

  • Minimum experience –  3 years Security Engineering experience.

How to Apply
Interested and qualified candidates should:
Click here to apply online

Job Title: System Security Management Analyst

Job Identification: 103
Location: Lagos
Employment Type: Full time

Job Objective(s)
Manage the enterprise applications development and acquisition lifecycle that occurs during security implementation and the operational security activities to ensure that assets (hosts, networks, systems, applications, and information) are secure during operations across the Group and subsidiaries.

Duties & Responsibilities

  • Participate in planning & design of infrastructure security architecture for the Group and subsidiaries.
  • Specify, allocate, and assign confidentiality, integrity, and availability requirements to development and acquisition organizations and assets within the Group and subsidiaries.
  • Develop and maintain enterprise security architecture.
  • Ensure that security requirements are adequately addressed throughout the development and acquisition lifecycles for all assets across the Group and subsidiaries.
  • Perform certification and accreditation prior to releasing new systems and software to production
  • Serves as an internal information security consultant to the organization.
  • Assists in the development and implementation of security policies and procedures.
  • Initiates, facilitates and promotes activities to create information security awareness within the organization.
  • Assists with performing information security risk assessments and serves as an internal expert for information security related issues across the Group and subsidiaries.
  • Help reviews system-related security plans throughout the organization’s corporate information systems and applications.
  • Monitors compliance with information security policies and procedures, referring problems to the appropriate department manager or business area.
  • Maintains information security devices and solutions for the organization, such as Intrusion Detection Systems, e-Discovery, Hard Disk Encryption, and Vulnerability Scanners.
  • Supports the security incident response process within the Group and subsidiaries.
  • Provides input in selection of system software and hardware, with emphasis on security and compliance requirements.
  • Provides incident and problem resolution
  • Supports development of security deliverables for enhancements to production systems and new development across the Group and subsidiaries.
  • Monitors security queues for daily tickets in support with the organizations daily operations for the Group and subsidiaries.
  • Perform other duties as may be assigned by the Unit Head, Security Architecture & Engineering or Chief Information Security Officer(CISO).
  • Develop and Plan principles and policies in the information security hand book

Job Requirements
Education:

  • Minimum Education: First Degree in computer science/Engineering, Higher Degrees
  • At least three Relevant Professional Certifications as appropriate

Experience:

  • Minimum experience – Ten (10) years relevant working experience and 3 years working experience at supervisory level

How to Apply
Interested and qualified candidates should:
Click here to apply online

Job Title: Database Security Management Analyst

Job Identification: 100
Location: Lagos
Job Schedule: Full Time

Job Objective(s)

  • Protection of the Banks databases from internal and external sources of exploits which can lead to information thieft or policy violations that could have a negative impect on the Bank. this will include manageing or coordinating efforts that would include  In-depth analysis of the Banks database security, Manage the Banks incidence response to database security incidence and manage the efforts of the Bank in the monitoring of database activities.  Fine tuning the Database Activity Monitoring, Data masking tools, data encryption tools and DLP

Duties & Responsibilities

  • Coordinate the  planning & design of enterprise database security architecture
  • Coordinate program designed to ensure security of the banks database systems and information assets.
  • Maintain systems to protect against unauthorized access, modification, or destruction Identifies, reports, and resolves security violations.
  • Manage user’s access and permission control for various database and management systems.
  • Coordinate the analyses, development & implementation process for improvement using security tools such as DAM. Assist with the implementation of classification and categorization schema of data.
  • Support the full system engineering life-cycle including requirements analysis, design, development, testing and implementation, assessment, authorization and monitoring of the information systems such as Data loss Protection and other database applications.
  • Manage the monitoring of database audit logs, Access Control List, password, and security assessment reports access on databases.
  • Conduct risk assessment and provides documentation regarding product deficiencies, change or software issues.
  • Provide and develop technical topics, lessons learned and training sessions for FirstBank end users.
  • Maintaining the access control and permission for all databases and monitor the access and use of databases for likely breaches and threats.
  • Support the requirements analysis, design, development, testing, and implementation for the data / content management system
  • Maintain user access and permission control for various data management systems.
  • Perform desktop support and troubleshooting for the various Databases.
  • Conduct risk assessment and provides documentation regarding database issues.
  • eate standards in Database Security processes, procedures and audit requirements
  • CrConduct security tool selection, pilot and implementation
  • Perform other duties as may be assigned by the Unit Head, Infrastructure management and Head, Information Security Operations Department. .
  • Comply with the principles and policies in the information security hand book
  • Fine tuning the Database Activity Monitoring, Data masking tools, data encryption tools and DLP

Job Requirements
Education:

  • Minimum Education:  First degree in Computer Science/Engineering, Systems Engineering or with strong Information Security component
  • Database Security knowledge the following platforms – Oracle (8i, 9i, 10g, 11g), Informix (9, 10, 11), MS SQL Server (6.5, 7, 2000, 2005, 2008), DB2 (8, 9), Sybase (11, 15), Teradata. Certified IBM DB2 DBA, version 8.

Experience:

  • Minimum experience: 3 years banking experience.

How to Apply
Interested and qualified candidates should:
Click here to apply online

Job Title: Senior Analyst – Database Security Management

Job Identification: 106
Location: Lagos
Job Schedule: Full Time

Job Objective(s)

  • Protection of the Banks databases from internal and external sources of exploits which can lead to information thieft or policy violations that could have a negative impect on the Bank.
  • The role will also be responsible for at an enterprise and Subsidaries level the undertaking of database vulnerability assessments; ensuring audit ability of databases; providing secure database baselines; providing security engineering design, implementation and test support; determining, analysing and decomposing security requirements; reviewing and monitoring security designs; assisting with audit activities related to PCI/security compliance; monitoring security controls in the database domain; automation, alerting and correlation with regards to database security events and alerts; creating, owning and promoting the security strategy for protecting databases and integrating it with the wider bank security strategy.
  • This will also  include manageing and coordinating efforts that would include In-depth analysis of the Banks database security, Manage the Banks incidence response to database security incidence and manage the efforts of the Bank in the monitoring of database activities.
  • Fine tuning the Database Activity Monitoring, Data masking tools, data encryption tools and DLP

Duties & Responsibilities

  • Coordinate the planning & design of enterprise database security architecture
  • Design and implement Database security architecture and data sanitisation techniques for the Bank.
  • Implement risk assessment program and controls across the banks database,
  • Develop and implement database security projects and serve as project manager/lead.
  • Translate business strategies into a well-define set of operating procedures
  • Prepare reports on audit findings and make recommendations for correcting unsatisfactory conditions, improving operations and reducing the compliance exception
  • Supervise the role of  junior Database security analysts on administering, analysing database security structures, interpreting and, and troubleshooting to ensure the continued security of the enterprise. Provides trouble resolution on complex problems and leads implementations for system and network security technologies.
  • Coordinate the development of testing plans to ensure quality of database security implementation.
  • Coordinates and prepares the reporting of database security events and incidents.
  • Provides technical support to business and technology associates in risk assessments and implementation of appropriate information security procedures, standards and technologies.
  • Represents major upgrades and reconfigurations in change control.
  • Design & analyze mix of vendor services meeting business and information security requirements.
  • Maintains relationship with key vendors.
  • Determine and perform complex configuration changes to meet business and information security requirements.
  • Perform capacity analysis.
  • Recommend and implement capacity increases.
  • Serve as the technical escalation for results of preventative maintenance routine on enterprise databases .
  • Supervise preventative maintenance.
  • Represents the unit in database security support in significant projects and performs the most complex operations and administration tasks.
  • Respond to level 3 & 4 change and problem requests without supervision.
  • Lead level 1 & 2 incident recoveries and root cause analysis.
  • Coordinate program designed to ensure security of the banks database systems and information assets.
  • Maintain systems to protect against unauthorized access, modification, or destruction Identifies, reports, and resolves security violations.
  • Manage user’s access and permission control for various database and management systems.
  • Coordinate the analyses, development & implementation process for improvement using security tools such as DAM. Assist with the implementation of classification and categorization schema of data.
  • Support the full system engineering life-cycle including requirements analysis, design, development, testing and implementation, assessment, authorization and monitoring of the information systems such as Data loss Protection and other database applications.
  • Manage the monitoring of database audit logs, Access Control List, password, and security assessment reports access on databases.
  • Conduct risk assessment and provides documentation regarding product deficiencies, change or software issues.
  • Provide and develop technical topics, lessons learned and training sessions for FirstBank end users.
  • Maintaining the access control and permission for all databases and monitor the access and use of databases for likely breaches and threats.
  • Support the requirements analysis, design, development, testing, and implementation for the data / content management system
  • Maintain user access and permission control for various data management systems.
  • Perform desktop support and troubleshooting for the various Databases.
  • Conduct risk assessment and provides documentation regarding database issues.
  • Create standards in Database Security processes, procedures and audit requirements
  • Conduct security tool selection, pilot and implementation
  • Perform other duties as may be assigned by the Unit Head, Infrastructure management and Head, Information Security Operations Department. .
  • Comply with the principles and policies in the information security hand book
  • Fine tuning the Database Activity Monitoring, Data masking tools, data encryption tools and DLP

Job Requirements
Education:

  • Minimum Education:  First degree in Computer Science/Engineering, Systems Engineering or with strong Information Security component
  • Database Security knowledge the following platforms – Oracle (8i, 9i, 10g, 11g), Informix (9, 10, 11), MS SQL Server (6.5, 7, 2000, 2005, 2008), DB2 (8, 9), Sybase (11, 15), Teradata. Certified IBM DB2 DBA, version 8.

Experience:

  • Minimum experience: 3 years banking experience

How to Apply
Interested and qualified candidates should:
Click here to apply online

Job Title: Vulnerability Management Analyst

Job Identification: 101
Location: Lagos
Job Schedule: Full Time

Job Objective(s)

  • To identify security loopholes and vulnerabilities within the banks information systems

Duties & Responsibilities

  • Conduct regular reviews of Banks network using manual/automated means to ensure that configurations meet best security practices
  • Carry out periodic vulnerability assessments and penetration testing on Applications and Networks
  • Drive situational awareness to all staff and other stakeholders based on risk identification
  • Conduct payment card data discovery scans to ensure security of Card Holder data
  • Conduct internal and external Penetration tests on the Bank’s information systems and make recommendations to critical findings
  • Provide in-house information security consulting expertise to the Bank
  • Assist in all security operations aimed at identifying cyber-attacks on the Bank
  • Engage with vendors and third parties on the identification and remediation of vulnerabilities
  • Provide periodic report on the status of vulnerabilities in the Bank
  • review the security of critical systems (e.g., e-mail servers, Active Directory, applications databases etc.) and changes to sensitive security controls to ensure appropriate security balance and strength across the Bank.
  • Provide insight on Security defense and hardening practices
  • Research and keep up-to-date with hacking/defense techniques, exploits and countermeasures
  • Analyze and evaluate vulnerabilities for exploitability and relevance.
  • Engage with stakeholders on timelines for closure of vulnerabilities and advise on appropriateness
  • Comply with the principles and policies in the information security hand book.

Job Requirements
Education:

  • Minimum Education: First Degree in Computer Science / Engineering, Higher Degrees / Professional Certificates

Experience:

  • Minimum experience – Working knowledge of PCI DSS
  • Working knowledge of ISO 27001
  • Knowledge of the Security tools such as Qualys, Burp Suite, etc
  • Good Knowledge of Penetration testing tools.
  • Good knowledge of MS Windows and Linux
  • Good understanding of Best Practices Security architecture.
  • Working knowledge of penetration testing.
  • Good knowledge of network protocols including UDP/TCP/IP
  • Professional-level knowledge of Access control lists, NAT, routing and switching
  • Ability to review rule sets for firewalls
  • Good knowledge of firewalls, IDS and IPS
  • Good knowledge of network/application security and encryption models.

How to Apply
Interested and qualified candidates should:
Click here to apply online

Job Title: Applications Security Analyst

Job Identification: 99
Location: Lagos
Job Schedule: Full Time

Job Objective(s)

  • Perform Security Assessment, Vulnerability Assessment, threat Analysis/modelling & Risk Assessment on the bank’s application (APIs, Mobile, Web Application, Containers) before and after deployment to production.
  • Work with other relevant units or departments to develop standards and guidelines to guide the use and acquisition of software and to protect vulnerable information.

Duties & Responsibilities

  • Participate in the creation of enterprise security policies, standards, baselines, guidelines & procedures.
  • Offering training to Application Developers to become Application Security Experts
  • Review code for security vulnerabilities and practices dangerous to security and privacy.
  • Write custom rules on automated source code scanning tools
  • Build security into infrastructure and architecture designs and guide the implementation with the operations team
  • Create and deliver knowledge sharing presentations and documentation to developers and operations teams
  • Working with developers to refine security checkpoints in the SDLC based on best practice and other industry-accepted doctrine such as NIST SP 800-115 and ISO security standards.
  • Developing secure coding standards that are based on industry-accepted best practices such as OWASP Guide, SANS CWE Top 25, or CERT Secure Coding to address common coding vulnerabilities.
  • Identifying and using tools to perform source code security analyses to identify vulnerabilities and attack vectors in web applications.
  • Perform Security Assessment, Vulnerability Assessment, threat Analysis/modelling & Risk Assessment on the bank’s application (APIs, Mobile, Web Application, Containers) before and after deployment to production
  • Working alongside the Cyber Security Analyst to scope and refine web application penetration testing methods.
  • Obtaining and reviewing all required artefacts as part of approval analyses at security checkpoint phases in the development cycle.
  • Support Head of IT Security in tracking and managing inventory of applications across the organization, gathering and analysing relational data between business systems
  • Assisting in periodic security risk assessments, IT security audits and assessments, and management reporting.
  • Supporting changes to information security policies, procedures and standards as part of a continuous improvement model.
  • Managing/Optimisation the Web Application Firewall, API Security Gateway, Data Masking tool, Load Balancer and Database Activity Monitoring
  • Learn on the job and explore new technologies with little supervision
  • Write reports including recommendations, root cause analysis, security summary analysis, and project roadmap
  • Perform scheduled and adhoc security and compliance reporting
  • Support Security Monitoring team to define and maintain security awareness program
  • Perform other duties as may be assigned by the Unit Head, Infrastructure Security  or the Head, Information Security Operations Department
  • Comply with the principles and policies in the information security hand book

Job Requirements
Education:

  • Minimum Education:  First degree in Computer Science/Engineering, Systems Engineering or with strong Information Security component

Experience:

  • Minimum experience –  3 years Security Engineering experience

How to Apply
Interested and qualified candidates should:
Click here to apply online

Job Title: Network & System Security Analyst

Job Identification: 104
Location: Lagos
Employment type: Full time

Job Objective(s)

  • Evaluate and coordinate the design of advanced network security architecture in line with global best practices that will ensure the protection of the enterprise and subsidiaries network from cyberattacks and security breaches, reduce network performance issues including availability, utilization, throughput, and latency; planning and executing the selection, installation, configuration, and testing of network equipment.
  • Work with  the Team Lead network security  in the setting up of network policies and procedures as well as establishing connections with firewalls across the Group and subsidiaries.

Duties & Responsibilities

  • Coordinate  planning & design of infrastructure security architecture for the Group and subsidiaries.
  • Evaluates network performance issues including availability, utilization, throughput, and latency within the Group and subsidiaries.
  • Perform technical analysis on a wide range of cybersecurity issues, with a focus on network activity and data; this includes but is not limited to: network flow (i.e. netflow) or related forms of session summary data, signature-based IDS alert/event data, full packet capture (PCAP) data, proxy and application server logs (various types).
  • Triage IDS alerts, collect related data from various network analysis systems, review available open and closed source information on related threats & vulnerabilities, diagnose observed activity for likelihood of system infection, compromise or unintended/high-risk exposure. Prepare analysis reports detailing background, observables, analysis process & criteria, and conclusions.
  • Analyze large volumes of network flow data for specific patterns/characteristics or general anomalies, to trend network activity and to correlate flow data with other types of data or reporting regarding enterprise-wide network activity.
  • Leverage lightweight programming/scripting skills to automate data-parsing and simple analytics.
  • Document key event details and analytic findings in analysis reports and incident management systems.
  • Identify, extract and characterize network indicators from cyber threat intelligence sources, incident reporting and published technical advisories/bulletins.
  • Assess cyber indicators/observables for technical relevance, accuracy, and potential value/risk/reliability in monitoring systems.
  • Recommend detection and prevention/mitigation signatures and actions as part of a layered defensive strategy leveraging multiple capabilities and data types.
  • Develop IDS signatures, test and tune signature syntax, deploy signatures to operational sensors, and monitor and tune signature and sensor performance.
  • Fuse open-source threat & vulnerability information with data collected from sensors across the enterprise into cohesive and comprehensive analysis.
  • Provide technical assessments, and apply advised remediation actions on identified cyber threats and vulnerabilities
  • Communicate and collaborate with analysts from SOC to provide relevant network logs for triage and orchestration activities.
  • Produce final reports and review incident reports from junior analysts, network security.
  • Monitor and report on trends and activity on network sensor platforms.
  • Produce and update technical analysis documentation (processes, procedures, analysis criteria, report templates, etc.).
  • Responsible for day-to-day management, support and monitoring of technology security in order to protect technology resources and enterprise data in accordance with strategic business objectives, institutional regulations and laws
  • Manages network security threats, provides advice on mitigating the security risk as well as perform configuration changes and troubleshooting of network security devices within the Group and subsidiaries. Also addresses customer issues, and manages customer interaction throughout the issue resolution process
  • Develop planning of executing the selection, installation, configuration, and testing of network equipment across the Group and subsidiaries.
  • Develop setting up of network policies and procedures around all network devices which includes: Firewalls, Routers and Switches as well as establishing Network connections for all devices.
  • Plan the creation of infrastructure security policies, standards, baselines, guidelines & procedures
  • Lead the implementation of new network /system security solutions across the Group and subsidiaries.
  • Plan, Design & Execution of vulnerability assessments, penetration tests and security audits.
  • Manage up to date knowledge of ISOD security industry
  • Manage & Research of new/revised or improved security solutions, processes and development of new threat and attack vectors.
  • Develop, Manage & Perform enhancement of existing network/system security solutions in accordance with standard best operating procedures.
  • Manage and Maintain up-to-date baselines for the secure configuration & operation of all in-place network / system security devices across the Group and subsidiaries.
  • Manage and Maintain operational configurations of all in-place network / system security solutions as per established baselines.
  • Design and deploy secured configurations for all network & system resources and appliances (Routers, Switches, Firewall, Wireless access points, Sniffers, Windows, AIX etc.)
  • Manage security patches and updates to the IOS/firmware, OS on network /system resources/appliances across the Group and subsidiaries.
  • Develop, Plan and Implement all network and operating system security settings in line with develop approved policies
  • Perform other duties as may be assigned by the Unit Head, Security Architecture & Engineering or Chief Information Security Officer(CISO).
  • Develop and Plan principles and policies in the information security hand book

Job Requirements
Education:

  • Minimum Education: First Degree in computer science/Engineering, Higher Degrees
  • At least three Relevant Professional Certifications as appropriate

Experience:

  • Minimum experience – Ten (10) years relevant working experience  and 3 year working experience at supervisory level

How to Apply
Interested and qualified candidates should:
Click here to apply online

Deadline: 1st February, 2021.

Leave a Reply

Your email address will not be published. Required fields are marked *