Head, Risk Assurance at Nigeria Inter-Bank Settlement System Plc - NIBSS

Grade: Assistant Manager

Department: Risk Management

Reports to: Chief Risk Officer (CRO)

 DUTIES AND KEY RESPONSIBILITIES

• Emergency Management & Organizational Resilience (ER)
• Actively testing monitoring ER activities, including business continuity, information system contingency, disaster recovery and incident response, and other ER activities.
• Reviewing and improving, and maintaining all ER plans including for continuity of operations (and service continuity), crisis communications, critical infrastructure protection, and occupant emergency.

Internal Control Measures

• Developing and maintaining operating procedures for all risk management activities, particularly for providing management assurance at the enterprise and processes tiers of the risk management framework.
• Reviewing and improving operating procedures for implementing all organizational policies at least annually.
• Supporting the continuous improvement of Management Systems for business continuity (BCMS) and information security (ISMS), and supporting the implementation for service management.

Risk Assessments
Conducting process risk assessments for the 18 baseline policy domains and for the underlying processes of all high-risk threat areas in the annual assessment plan, including (for FY 2017 high-risk): cyber security, service design, human capital, product development, and revenue assurance processes.

COMPETENCY REQUIREMENTS

• Independence & Integrity
• Stakeholder Management
• Project Management
• Risk Management
• Information Analysis

REQUIRED EXPERIENCE

• A minimum of 7 years of relevant experience related to the Job, of which 3 years must be in a supervisory role with direct or indirect reports.
• Experience must include functioning as an Analyst, Associate, Consultant, Manager, or similar role in Risk Management, Business Operations, Information Security, or related disciplines.
• Demonstrate working knowledge of standards, guidelines, and regulatory requirements to manage enterprise risk and to improve internal controls.
• Demonstrate working knowledge of internal business processes and proficiency in project management practices.

REQUIRED QUALIFICATION

• Possess a Bachelor degree from an accredited university. A Master degree or other postgraduate university education is a plus.
• Must have attained any of the following professional designations:
• Certified in Risk and Information Systems Control (CRISC)
• Certified Information Systems Auditor (CISA)

The following professional designations are a plus:

• Project Management Professional (PMP)
• Certified Information Security Manager (CISM)
• PCI Internal Security Assessor (ISA) or ISO Lead Auditor
• Certified Information Systems Security Professional (CISSP)