Jobs at Unified Payments Services Limited

Job Objectives

• Delivers information security risk report and certification
• Ensure the business comply with local and international certification and standards
• Communicate and report risk metric to management
• Work with relevant stakeholders in conducting project risk appraisal
• Develop competent officers to take on managerial responsibilities.
• Review operations approval request
• Ensure approvals protect business assets

Duties & / Responsibilities

• Deliver information security risk assessment of projects, new technologies, applications, service providers, IT changes and new businesses
• Provide subject matters expertise on enterprise security architecture
• Participate in the selection of technology and tools for business operations
• Research applicable business technology for adoption for business improvement
• Responsible for establishing the risk culture
• Ensure risks are managed within the risk appetite of the business
• Ensure risk management processes are properly documented and adequate.
• Ensure all relevant personnel are aware of their risk responsibilities
• Ensure continuous compliance with all PCI requirements
• Ensure continuous compliance with VISA CVP requirements
• Ensure continuous compliance with MasterCard GVCP requirements
• Ensure continuous compliance with CUP PSP requirements.

Requirements

• Education Bachelor’s Degree in information security, Cybersecurity, Computer Engineering, Computer Science, or a related field.
• General Experience: Candidates should have a minimum of 10 years of experience in managing information security operations or incident response within complex organizations, business and financial operations, IT project operations and management.
• Technical Skills: Proficiency in network and systems security, intrusion detection/prevention systems (IDS/IPS), EDR (Endpoint Detection Response), malware analysis, and familiarity with cybersecurity frameworks such as NIST CSF. Candidates should also have experience with various operating systems (e.g., Unix/Linux, Windows) and TCP/IP networking.

go to method of application »

Job Objectives

• To provide independent assurance to management on IT General Controls.
• Ensure best assurance practice in the plan and execution of IS Audit Programs.
• Ensure enterprise wide compliance of business processes and operations to internal policies, procedures and documentations.
• Incorporation of standard practices, principles and processes into audit programs and execution.
• Review of risk related control issues and draft appriopriate remediation plans.
• Understand the business environment and develop relationships with audit client in providing value added solutions and best practices implementation.

Duties & / Responsibilities

• Audit Review of Database Management Systems, Enterprise Network security and Device configuration, Antivirus, Systems Patches and Log Management.
• Audit Review of Software Development Life cycle, Project Management Implementation and Change Management Procedures.
• Audit Review of Data Encryption Processes, Key Management Lifecycle, and Operating Systems, physical and logical security of card holder environment.
• Audit Review of Active Directory, Operating Systems, Data backup and tape management.
• Assess systems and general IT controls and provide practical and Value added remediation plans.
• Prepare audit reports that summarize the most significant control weaknesses and resulting impact to the organization.
• Participate in multiple and simultaneous risk▪ Contribute to internal departmental initiatives such as trainings, departmental development initiatives and other internal projects as requested.
• Effectively discuss audit issues and develop business focused controls recommendations to strengthen control lapses and weaknesses based audit while maintaining departmental quality standards. Function as part of a team or work independently when requires.

Requirements
Education:

• University: First Degree(s) in Information Technology, Computer Science, or Related field. OTHERS: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or related professional certifications would be an added advantage.

Experience:

• Minimum of 6- 10 yearsof experience in IT Auditing or a similar role.
• Understanding of the key technology and general controls around enterprise Applications and information systems.
• Candidate must possess the ability to Communicate effectively audit issues and remediation plans.

Knowledge:

• Knowledge of Systems and General IT Controls.
• Analytical skills to access Operational and Compliance Requirements of Application Systems and infrastructure.
• Strong Data Analysis and experience with Computer Assisted Auditing Techniques.

go to method of application »

Job Objectives

• To provide independent assurance to management on IT General Controls.
• Ensure best assurance practice in the plan and execution of IS Audit Programs.
• Ensure enterprise wide compliance of business processes and operations to internal policies, procedures and documentations.
• Incorporation of standard practices, principles and processes into audit programs and execution.
• Review of risk related control issues and draft appriopriate remediation plans.
• Understand the business environment and develop relationships with audit client in providing value added solutions and best practices implementation.

Duties & / Responsibilities

• Audit Review of Database Management Systems, Enterprise Network security and Device configuration, Antivirus, Systems Patches and Log Management.
• Audit Review of Software Development Life cycle, Project Management Implementation and Change Management Procedures.
• Audit Review of Data Encryption Processes, Key Management Lifecycle, and Operating Systems, physical and logical security of card holder environment.
• Audit Review of Active Directory, Operating Systems, Data backup and tape management.
• Assess systems and general IT controls and provide practical and Value added remediation plans.
• Prepare audit reports that summarize the most significant control weaknesses and resulting impact to the organization.
• Participate in multiple and simultaneous risk▪ Contribute to internal departmental initiatives such as trainings, departmental development initiatives and other internal projects as requested.
• Effectively discuss audit issues and develop business focused controls recommendations to strengthen control lapses and weaknesses based audit while maintaining departmental quality standards. Function as part of a team or work independently when requires.

Requirements
Education:

• University: First Degree(s) in Information Technology, Computer Science, or Related field.
• Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or related professional certifications would be an added advantage.

Experience:

• Minimum of 10 years of experience in IT Auditing or a similar role.
• Understanding of the key technology and general controls around enterprise Applications and information systems.
• Candidate must possess the ability to Communicate effectively audit issues and remediation plans.

Knowledge:

• Knowledge of Systems and General IT Controls.
• Analytical skills to access Operational and Compliance Requirements of Application Systems and infrastructure.
• Strong Data Analysis and experience with Computer Assisted Auditing Techniques.

go to method of application »

Job Objectives

• The Head of Governance Risk is responsible for establishing and maintaining a comprehensive governance framework that ensures compliance with cybersecurity standards and certifications across the organization. This role involves developing risk management strategies, overseeing the implementation of cybersecurity frameworks, and ensuring that all security policies align with regulatory requirements.
• The Head will collaborate with various stakeholders to promote a culture of risk awareness and compliance while leading efforts to achieve and maintain relevant cybersecurity certifications. Additionally, this position includes continuous monitoring of the organization's security posture and adapting governance practices to address emerging threats and evolving regulatory landscapes.

Duties & Responsibilities 

• Develop and implement a comprehensive governance framework for cybersecurity that aligns with organizational objectives.
• Oversee the organization’s compliance with relevant cybersecurity regulations and standards (e.g., ISO 27001, ISO 20000, ISO 22301, PCIDSS, PCIPIN, PCICVP, PCI3DS, NDPC).
• Conduct risk assessments to identify vulnerabilities and recommend appropriate mitigation strategies.
• Lead efforts to achieve and maintain cybersecurity certifications, ensuring all processes meet the required standards.Develop training programs to enhance staff awareness of governance policies, risk management practices, and compliance requirements.
• Monitor industry trends and advancements in cybersecurity frameworks to continuously improve governance strategies.
• Prepare reports for senior management on the status of governance initiatives, risks, and compliance efforts.  
• Facilitate audits and assessments related to governance and compliance, addressing any identified gaps or deficiencies.
• Engage with external partners and regulatory bodies to stay informed about changes in cybersecurity regulations and best practices.

Requirements

• Education Bachelor’s degree in Information Security, Cybersecurity, Computer Science, or a related field. General Experience: Candidates should have a minimum of 10 years of experience in governance, risk management, or compliance within the cybersecurity domain.
• Technical Skills: Proficiency in risk management frameworks (e.g., NIST RMF, ISO 31000), knowledge of data privacy laws and regulations (e.g., GDPR, NDPC), and experience in conducting security audits and assessments.

Certifications:

• Key certifications Include Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) or Certified in Risk and Information Systems Control (CRISC), which validates expertise in governance, risk management, and compliance.