Job Openings at Moniepoint

The IT General and Application Control Manager is a critical role responsible for developing and implementing internal control assessments across all IT and cybersecurity domains within Moniepoint MFB. This position focuses on ensuring the adequacy and effectiveness of information systems and critical infrastructure, verifying that they are protected, controlled, and aligned with business models. The manager will assess IT strategy, governance, and organizational structure, oversee communication of assessment findings, manage control deficiency remediation, and conduct follow-up assessments. A key aspect of the role involves assessing risk ownership and risk registers, monitoring KPIs and KRIs, and evaluating business continuity and information asset protection. The position requires a deep understanding of internal control frameworks, particularly COSO, and relevant ISO standards (ISO 31000, ISO 27001, ISO 22301, ISO 37301, ISO 9001:2015), with a specific focus on testing and reporting on control effectiveness.

How Will You Create Impact?

• Develop and implement the annual ITGC and ITACs internal control assessments plan across all IT and cybersecurity domains, ensuring alignment with the COSO framework , relevant ISO standards and the standard Moniepoint MFB business requirements.
• Plan and execute internal control assessments to establish the adequacy and effectiveness of information systems and critical infrastructure within Moniepoint MFB and to determine whether information systems are protected, controlled, and meet the intended functional design of business models defined in BRD/PRD.
• Assess the IT and Cybersecurity risk ownership and their related risk registers to determine whether the risk universe has been sufficiently captured and mitigating controls adequately designed and operated
• Assess the monitoring and reporting of IT and CyberSecurity key performance indicators (KPI/OKRs) and the IT/CyberSecurity key risk indicators (KPIs), incorporating metrics relevant to the effectiveness of controls.
• Assess and report on Moniepoint MFB’s ability to continue business operations, storage, back-up, and restoration policies and processes for effectiveness and resilience.
• Assess logical, physical, and environmental controls within Moniepoint MFB to verify the confidentiality, integrity, and availability of information assets
• Assess controls at all stages of the information systems development life cycle.
• Assess the governance around information systems for gaps in implementation and change management.
• Assess the level of post-implementation reviews on systems in place to determine whether project deliverables, controls, and requirements are met.
• Assess Moniepoint MFB’s database management practices, data governance program, and privacy program.
• Assess data classification practices for alignment with the Moniepoint MFB data governance program, privacy program, and applicable external requirements.
• Assess Moniepoint MFB’s problem and incident management program.
• Assess Moniepoint MFB’s change, configuration, release, and patch management programs, evaluating their effectiveness in mitigating vulnerabilities.
• Assess Moniepoint MFB’s log management program, testing and reporting on its role in detective controls.
• Assess IT strategy, governance, and organizational structure for alignment with the enterprise risk management posture of Moniepoint MFB, integrating principles from ISO 31000.
• Oversee the communication and collection of feedback on controls design and operational effectiveness tests, general control assessment findings and recommendations with stakeholders within Moniepoint MFB, ensuring clear and timely information exchange.
• Develop and manage the control deficiency remediation dashboard for follow-up and closure of open findings from control assessment, internal audit, and any external examination and assessment for each SBU and specific core units within Moniepoint MFB.
• Oversee the conduct of post-review follow-up assessments to evaluate whether all identified open findings from all assessments have been sufficiently mitigated.
• Carry out any other task, as might be assigned or becomes necessary to improve the information system security posture and the internal control maturity model of Moniepoint MFB, with a continuous focus on the principles of the COSO framework and the specified ISO standards.

Skills and Qualifications

• Educational Background: A Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field.
• Certifications: Relevant professional certifications such as CISA (Certified Information Systems Auditor), CISSP (Certified Information Security Professional), or others related to IT audit, cybersecurity, or risk management.
• Experience: Proven experience in IT internal control assessments, IT auditing, or a related field, with a strong understanding of IT General Controls (ITGC) and IT Application Controls (ITACs). Experience in the banking or financial services sector is often preferred.
• Framework and Standard Knowledge: In-depth knowledge and practical experience with the COSO internal control framework and relevant ISO standards, including ISO 31000 (Risk Management), ISO 27001 (Information Security), ISO 22301 (Business Continuity), ISO 37301 (Compliance Management), and ISO 9001:2015 (Quality Management System).
• Technical Understanding: A solid understanding of information systems, critical infrastructure, cybersecurity domains  and the information systems development life cycle.
• Assessment Skills: Strong planning and execution skills for conducting internal control assessments, including design and operations effectiveness testing.
• Risk Management: Experience in assessing IT and CyberSec risk ownership, risk registers, and integrating principles from ISO 31000.
• Communication: Excellent written and verbal communication skills to effectively communicate assessment findings, results, and recommendations to stakeholders at various levels.
• Analytical Skills: Strong analytical and problem-solving skills to identify control deficiencies, assess their impact, and develop remediation plans.
• Organizational Skills: Excellent organizational and time management skills to manage multiple assessments, remediation efforts, and reporting requirements.
• Attention to Detail: Meticulous attention to detail to ensure accuracy in assessments, documentation, and reporting.
• Integrity and Professionalism: High level of integrity and professionalism in handling sensitive information and maintaining objectivity in assessments.

go to method of application »

The Portfolio Manager is responsible for overseeing the loan portfolio and leading a team of Field Credit Officers within a specific state. This role involves setting performance targets, ensuring credit risk is managed effectively, maintaining a healthy loan portfolio, and driving growth of the business and loan products. The Portfolio Manager will collaborate closely with other departments (Products, Risk, Operations, etc.) to uphold credit policies and ensure successful loan disbursement and repayment.

Key Responsibilities

Team Leadership and Management

• Supervise, mentor, and provide guidance to Field Credit Officers (FCOs) within the assigned state.
• Set and communicate clear performance goals and objectives for the FCOs, ensuring alignment with the company’s overall targets and strategy.
• Conduct regular performance reviews, identify training needs, and foster professional growth among team members.

Portfolio Oversight and Growth

• Develop and implement strategies to grow a robust and profitable loan portfolio in the assigned state.
• Monitor and analyze overall portfolio performance, including loan approvals, disbursements, and repayments, to ensure targets are met.
• Identify trends and potential risks, taking proactive measures to mitigate any issues that could impact portfolio health.

Credit Risk Management

• Ensure adherence to the organization’s credit policies and procedures.
• Review and approve on loan applications recommended by FCOs, providing final credit decisions where necessary.
• Conduct periodic credit risk assessments and collaborate with the Regional Credit Manager and VP, Credit Portfolio Management to refine and enhance credit evaluation frameworks.

Compliance and Reporting

• Maintain compliance with regulatory requirements and internal policies related to credit operations and portfolio management.
• Prepare and present regular portfolio performance reports to Regional Credit Manager and VP, Credit Portfolio Management, highlighting key metrics, trends, and recommendations for improvement.
• Ensure all documentation and records are accurate, up-to-date, and in line with compliance standards.

Stakeholder Engagement

• Collaborate with cross-functional teams (Products, Operations, Risk, etc.) to ensure seamless loan disbursement and servicing processes.
• Develop and maintain strong relationships with business clients and community stakeholders to enhance the company’s market presence.
• Address and resolve escalated customer issues and inquiries related to the loan portfolio.

Process Improvement

• Identify process gaps and inefficiencies within credit administration, making recommendations for system and process enhancements.
• Stay informed of industry best practices, market trends, and competitor activities, adapting strategies as needed.

Qualifications

• Bachelor’s Degree (or higher) in Business, Finance, Economics, or a related field
• Minimum of 4-5 years of relevant experience in lending, credit, or portfolio management, with at least 2 years in a supervisory role.
• Demonstrable experience in credit risk analysis and financial analysis.
• Strong knowledge of regulatory requirements and compliance in the financial sector.
• Proven track record in managing and growing a loan portfolio in a fast-paced environment.
• Must be resident in the state of responsibility.

Relevant Skills

• Leadership & Team Management
• Analytical & Problem-Solving Skills
• Communication & Interpersonal Skills
• Strategic Thinking & Planning
• Attention to Detail
• Technology Proficiency

Other Requirements

• High degree of integrity, professionalism, and confidentiality when dealing with sensitive information.
• Flexibility to travel for client visits, team meetings, and on-site evaluations as needed.
• Proactive and results-driven mindset, with a commitment to continuous improvement.

go to method of application »

Moniepoint is actively seeking skilled and dedicated Security Analysts to join our dynamic cybersecurity team. In this role, you will support incident detection, investigation, and response, while also supporting threat intelligence monitoring, and assist in vulnerability management across our systems and infrastructure. You’ll work closely with experienced security professionals to help protect the integrity and resilience of Moniepoint’s products, services, and customer data.

Key Responsibilities:

Security Monitoring & Incident Response

• Monitor Alerts and Events using SOC tools such as SIEM, EDR, and other security solutions.
• Perform initial triage, document security incidents, and escalate issues per response protocols.
• Assist in Incident Response, Threat Hunting, evidence gathering and post-incident analysis.
• Conduct Tabletop exercises and simulations to evaluate incident response readiness.

Threat Intelligence

• Collect and analyze threat intelligence from internal and external sources.
• Track emerging threats, vulnerabilities, and tactics used by relevant threat actors.
• Contribute to threat briefings and recommendations for security controls.

Vulnerability Management

• Conduct regular vulnerability scans and assessments on networks, systems, and applications.
• Analyze scan results to identify vulnerabilities, potential risks and ensure timely remediation.
• Create detailed reports on vulnerability findings, remediation efforts, and overall security posture.

Collaboration & Documentation

• Communicate incident details, analysis, and remediation strategies effectively to both technical and non-technical stakeholders.
• Work cross-functionally with infrastructure, and development teams to improve security posture.
• Maintain accurate and up-to-date records for incidents, threat intelligence, and vulnerabilities.
• Help refine and document security processes and Incident Response playbooks.

Compliance and Continuous Improvement:

• Ensure SOC practices comply with relevant regulations  such as PCI-DSS, ISO 27001, and industry-specific requirements.

Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Up to 3 years of experience in cybersecurity.
• Good knowledge of cybersecurity principles, vulnerability management & incident response methodologies, and Threat Intelligence Frameworks.
• In-depth knowledge of cybersecurity principles, incident response methodologies, and forensic techniques.
• Experience with SOC tools, Vulnerability Scanners and Threat Intel Platforms is a Plus.
• Foundational understanding of operating systems, networking, and security principles.

Preferred Skills & Certifications:

• Certifications such as Cysa+, BTL1, CCD, GCIH, GCTI, C|TIA or equivalent are a plus.
• Strong Critical Thinking and Problem-solving skills.
• Strong Communication and Report-Writing Skills.
• Ability to work independently and collaboratively in a team environment.