IHS Towers is a reputable company and the largest independent mobile telecommunications infrastructure provider in Europe, Africa and the Middle East. It was established in the year 2001, IHS renders services across the full tower value chain – colocation on owned towers, deployment and managed services.
IHS Towers is actively recruiting for the position below.
Role Title: IT Risk & Control Manager
Location: Lagos State
Role Responsibility:
- Work closely with Enterprise Risk, Internal Audit, and other relevant functions across the business to ensure that all risk registers and compliance-related documentation are up to date in line with the overall enterprise risk management approach.
- Expected to contribute towards establishing credible risk governance, promoting an integrated risk management mindset at all levels, and promoting an execution approach which appropriately prioritizes actions based on business impact.
- Managing testing of all CUEC in line with SOC reports requirement.
- Management of the monthly user access review across 10 operating countries.
- Expected to manage and ensure applicable national laws that concern IT are identified and adhered to.
- Interface with internal and external auditors and drive remediation of all gaps identified during audit
- Driving of a second-line IT Control reviews across Applications, Infrastructure and Network Operations Centre (NOC).
- Conducting regular SOX testing across application, database and operating system.
- Conducting continuous risk assessments and business impact analyses for new and existing solutions.
- Building awareness of new and evolving IT risks across the business and implement appropriate systems and processes which ensure that information risks are detected early and proactively managed with timely remediation when undesired events occur.
- Leading the identification of Key Risk Indicators (KRIs) across the business based on up-to- date situational analyses and trends and drive effective risk oversight by providing timely and relevant information on KRIs.
- Planning and executing quarterly IT General Control (ITGC) audits, complete with detailed findings and remediation follow-ups.
- Coordinating and management of the annual IT Risk assessment in line with the company’s Risk assessment methodology.
- Keeping updated with all IT risks before they are highlighted by Audit or 3rd-parties. Ensure closure of open audit items. Aggregate information to identify operational
Required Qualification:
- Possession of a bachelor's or Advanced degree in Computer Science or any suitable field
- Nine years cognate working experience in IT Control, Information Security, IT Audit and Risk.
- Possession professional certification: CISA, ISO27001:LA, ISO270005 Lead Risk Manager
- Demonstrated experience in security systems review, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
- Must be experienced with network security and networking technologies as well with systems, security, and network monitoring tools.
- Previous experience working with a ‘’Big 4’’ professional services firm will be an asset.
- Demonstrated experience in Control review, VPN, Windows server, Linux server,
- Proven knowledge with web-related technologies (web applications, web services, service-oriented architectures), and network/ web-related protocols.
- MPLS, RMS.
- Proven experience with change management, user access management, segregation of duties matrix, and incident response.
Application Deadline:
October 5th, 2020.
To apply, click on the link below.
No comments:
Post a Comment