IT Governance Specialist at AppMart

Job Summary

• Our client is seeking a knowledgeable and proactive IT Governance Specialist to enhance our IT governance framework and ensure robust compliance with various standards.
• The ideal candidate will lead the implementation of key ISO standards, including ISO 22301 (Business Continuity Management System BCMS), ISO/IEC 27001 (Information Security Management System ISMS), and ISO/IEC 27017 (Cloud Security), as well as other relevant IT governance and fintech standards.
• This role is essential for aligning our practices with the Central Bank of Nigeria (CBN) framework, Nigerian Data Protection Regulation (NDPR), and international best practices.

Responsibilities
Development and Implementation of IT Governance Framework:

• Design, implement, and continuously enhance the IT governance framework in accordance with ISO standards (BCMS, ISMS, SMS) and regulatory requirements from CBN, NDPR, and other relevant international standards.
• Establish policies, procedures, and controls that optimize IT resources, manage risks, and ensure compliance with applicable regulations.

ISO Standards Implementation:

• Lead the adoption of ISO 22301 (BCMS) to ensure business continuity and effective recovery in the event of disruptions.
• Oversee the implementation of ISO/IEC 27001 (ISMS) to establish a framework for managing sensitive company information and ensuring information security.
• Facilitate the implementation of ISO/IEC 27017 (Cloud Security) and other relevant standards to enhance security in cloud computing environments.

Compliance and Risk Management:

• Conduct regular risk assessments and audits to identify vulnerabilities and ensure compliance with CBN guidelines, NDPR, and other relevant regulations.
• Monitor and evaluate the effectiveness of controls and governance practices, ensuring they meet established standards and frameworks.

Training and Awareness Programs:

• Develop and deliver comprehensive training programs to enhance employee awareness and understanding of IT governance policies, ISO standards, and compliance requirements.
• Foster a culture of security and compliance throughout the organization through ongoing education and engagement initiatives.

Reporting and Documentation:

• Prepare detailed reports on governance, risk management, and compliance status for review by senior management and relevant stakeholders.
• Maintain thorough documentation of IT governance policies, procedures, risk assessments, and compliance activities.

Stakeholder Collaboration:

• Serve as the primary point of contact between IT, compliance, legal, and operational teams to ensure alignment on governance initiatives and regulatory requirements.
• Engage with external auditors, regulatory bodies, and industry groups to facilitate compliance assessments and audits.

Continuous Improvement:

• Stay updated on the latest developments in IT governance, data protection regulations, and emerging technologies relevant to the fintech sector.
• Recommend enhancements to existing governance frameworks, policies, and practices based on industry best practices and regulatory changes.

Policy Development and Review:

• Lead the development and regular review of IT governance policies to ensure they remain effective and aligned with organizational goals and compliance requirements.
• Ensure that all policies are effectively communicated to employees and stakeholders.

Qualifications

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Business Administration, or a related field.
• Professional certifications such as CISA, CISM, ISO 27001 Lead Implementer, ISO 22301 Lead Implementer, ISO 27017, or equivalent are highly desirable.
• Minimum of 5 years of experience in IT governance, risk management, or compliance roles, with a strong understanding of relevant ISO standards and regulations from CBN, NDPR, and international best practices.
• Proven experience in implementing and managing ISO 22301 (BCMS), ISO/IEC 27001 (ISMS), and other IT governance frameworks.
• Strong knowledge of risk management principles, compliance auditing, and the regulatory landscape relevant to the fintech sector.
• Excellent analytical, problem-solving, and organizational skills.
• Strong communication and interpersonal skills, capable of working effectively with diverse teams and stakeholders.

Working Conditions:

• Primarily office-based with the possibility of remote work flexibility.
• Occasional travel may be required for training, audits, or stakeholder engagements.