IT and Digital Compliance Officer at Wema Bank Plc

Job Summary

The ideal candidate would be in charge of Identifying weaknesses within the organization's information systems and infrastructure, Devising, innovating and implementing controls to minimize/mitigate risks, vulnerabilities and threats identified for the realization of business objectives.

Primary Duties and Responsibilities

• Conduct compliance assessments by understanding business objectives, structure, policies, and procedures, internal controls, and external regulations.
• Assess the bank's IT Infrastructure and Digital operations compliance with CBN and other regulatory requirements.
• Review user access roles and privileges across the organization's critical applications and other IT assets.
• Perform risk assessments using various industry-standard frameworks.
• Assess the effectiveness of internal controls over key IT risks.
• Follow up on IS Audit exceptions remediation.
• Identify and recommend business process changes to strengthen internal controls.
• Collaborate with control owners to implement process changes and track them to completion.
• Advise and collaborate on projects by providing IT controls expertise and considerations.
• Proficient in SQL scripting and Python.
• Proficient in the use of Information security tools such as Log360, endpoint security tools, and others.
• Report on the review and exceptions remediated.
• Conduct in-depth application security reviews and assessments leveraging OWASP Top 10 and other available frameworks.
• Review and assess DevOps and Cloud Infrastructure security controls.

Requirements

• Bachelor’s degree in computer science, Information Technology, or a similar technical field. 
• Minimum of three years of experience in IT security/control/audit functions in a commercial bank or fintech.
• Relevant certifications such as CC, CISA, CISM, AZ900, or any relevant security certification.
• Proven track record in developing and implementing security solutions, protocols, and risk management practices.
• In-depth knowledge of security frameworks such as NIST, ISO 27001, NDPR, and PCI DSS.
• Knowledge of network and security technologies such as firewalls, IDS/IPS, VPN, anti-virus, and encryption.
• Strong technical skills in infrastructure, application, network, databases, cloud security, identity & access management, and security automation.
• Understanding of applicable CBN regulations on electronic and digital banking operations.
• Proficient in the functionalities and operations of the Core Banking application, specifically Finacle.
• Good interpersonal skills and the ability to work in a fast-paced environment.
• Understanding of general privacy concepts and practices.