Specialist - Technology Cyber Risk at MTN Nigeria

Description:

• Support the development of the risk management roadmap that delivers increased assurance, effectiveness, and efficiency regarding the safeguarding of Technology assets and Product lines 
• Responsible for the management and governance of the Risk Management Program and will work to embed functional risk management in the Technology & Information Security domains 
• Ensure adherence to directives guidelines & frameworks issued by MTN Group 
• Communicate the importance of Technology & Cyber risk throughout the business
• Lead functional and process risk assessments workshops to identify key risks and mitigation activities 
• Identify emerging risks within the Technology landscape and report to relevant stakeholders, as appropriate 
• Responsible for the identification and assessment of Technology, Product and Project risks, including necessary escalations and developing effective solutions to identified risks 
• Develop fit for purpose solutions that meet all business requirements and that lead to a best possible scenario in avoiding disruptions to the availability, scalability, quality, and efficiency of business products and information systems (internally) and risks emerging from external environments (including cyber attacks, data breaches, and unplanned IT and Telecom outages) 
• Evaluate the effectiveness of existing policies and procedures, and work with business units and the Lead Information Security Officer to initiate enhancements as identified 
• Support the execution of the Technology Risk Management program for within the second line of defense model, to align with MTN Group’s overarching Risk Management Framework 
• Support the oversight of the testing of Technology Risk Strategies on an ongoing basis to verify if they are relevant, appropriate and remain fit for purpose
• Monitor implementation of action plans to ensure risk mitigation efforts are proceeding, as required 
• Implement risk policies including those concerning Technology 
• Drive best practice, continuous improvement, and innovation of the Technology Risk program at the process and procedural level 
• Participate in the preparation of reports and respond to requests from the Board Risk committees and other key governance forums 
• Assist in testing Risk Programs and related systems, processes, and procedures to ensure their ongoing effectiveness and provide recommendations, where necessary 
• Perform Business Impact Trend Analyses on both internal and external risks that need to be addressed to sustain business operations stability 
• Identify possible implications arising out of the Trend analysis and propose recommendations on corrective actions to be pursued 
• Monitor implementation of action plans to ensure risk mitigation efforts are proceeding, as required 
• Collaborate with the Lead Information Security Offices in ensuring systems are protected 

Education:

• First degree in Engineering/Information Technology/Computer Science or related field 
• Professional qualification as CISM, CRISC, CISSP or other relevant qualification is advantageous
• Membership of a Professional body is advantageous 

Experience:

• 3 - 7 years of relevant work experience in Technology and cyber security management 
• Experience in managing complex telco, Digital, and/or ICT products or projects and related risks 
• Experience working in a medium to large organization 
• Experience in e-commerce and electronic payment business is advantageous