IHS
Towers is a reputable
company and the largest independent mobile telecommunications
infrastructure provider in Europe, Africa and the Middle East. It was established in the year 2001, IHS renders services across the full
tower value chain – colocation on owned towers, deployment and managed services.
IHS
Towers is actively recruiting for
the position below.
Role Title: IT Risk & Control Manager
Location: Lagos State
Role
Responsibility:
- Work closely with Enterprise Risk, Internal Audit, and
other relevant functions across the business to ensure that all risk
registers and compliance-related documentation are up to date in line with
the overall enterprise risk management approach.
- Expected to contribute towards establishing credible risk
governance, promoting an integrated risk management mindset at all levels,
and promoting an execution approach which appropriately prioritizes
actions based on business impact.
- Managing testing of all CUEC in line with SOC reports
requirement.
- Management of the monthly user access review across 10
operating countries.
- Expected to manage and ensure applicable national laws that
concern IT are identified and adhered to.
- Interface with internal and
external auditors and drive remediation of all gaps identified during
audit
- Driving
of a second-line
IT Control reviews across Applications, Infrastructure and Network
Operations Centre (NOC).
- Conducting regular SOX testing across application,
database and operating system.
- Conducting continuous risk assessments and business
impact analyses for new and existing solutions.
- Building awareness of new and evolving IT risks across
the business and implement appropriate systems and processes which ensure
that information risks are detected early and proactively managed with
timely remediation when undesired events occur.
- Leading the identification of Key
Risk Indicators (KRIs) across the business based on up-to- date situational
analyses and trends and drive effective risk oversight by providing timely
and relevant information on KRIs.
- Planning and executing quarterly IT General Control (ITGC) audits,
complete with detailed findings and remediation follow-ups.
- Coordinating and management of the annual IT Risk assessment in line with the
company’s Risk assessment methodology.
- Keeping updated with all IT risks before they
are highlighted by Audit or 3rd-parties. Ensure closure of open audit
items. Aggregate information to identify operational
Required
Qualification:
- Possession of a bachelor's or Advanced degree in Computer Science or any suitable field
- Nine years cognate
working
experience in IT Control, Information Security, IT Audit and Risk.
- Possession professional certification: CISA, ISO27001:LA,
ISO270005 Lead Risk Manager
- Demonstrated experience in security
systems review, including firewalls, intrusion detection systems,
anti-virus software, authentication systems, log management, content
filtering, etc.
- Must be experienced with network
security and networking technologies as well with systems, security, and
network monitoring tools.
- Previous experience working with a ‘’Big 4’’
professional services firm will be an asset.
- Demonstrated experience in Control review, VPN, Windows
server, Linux server,
- Proven knowledge with web-related technologies (web
applications, web services, service-oriented architectures), and network/
web-related protocols.
- MPLS, RMS.
- Proven experience with change management, user
access management, segregation of duties matrix, and incident response.
Application Deadline:
October 5th, 2020.
To apply, click on the link below.
https://bit.ly/2HBz9d2
