IT Information Security Lead at Ikeja Electricity Distribution Company

Full Time
Lagos
Posted 2 years ago
Applications have closed
Ikeja Electricity Distribution Company (IKEDC) profile

Ikeja Electricity Distribution Company (IKEDC)

IT Information Security Lead at Ikeja Electricity Distribution Company (IKEDC). Please ensure you read the job requirements before applying for this position.

Ikeja Electricity Distribution Company (IKEDC) – Buoyed by a mission to redefine customer experience and be the provider of choice wherever energy is consumed, the Ikeja Electric (IE), Nigeria’s largest power distribution network, came into existence on November 1st, 2013 following the handover of the defunct Power Holding Company Of Nigeria (PHCN) to NEDC/ KEPCO Consortium under the privatization scheme of the Federal Government of Nigeria.

We are recruiting to fill the position below:

Job Title: IT Information Security Lead

Location: Lagos
Employment Type: Full time
Reporting To: Head, Information /technology

Role Purpose

Ikeja Electric (IE) intends to protect its business sensitive information by implementing relevant controls that cuts across People, Processes and Technology. We will achieve this by implementing information security policies, procedures and practices within various business processes, services, and employee activities across all business functions.
This role will be responsible for the enforcement and continuous monitoring of security operations within Ikeja Electric, strategic partners and other third parties.
This role requires the candidate to be hands-on.

Responsibilities

Develop, publish, and maintain comprehensive Ikeja electric information security policy, procedures, and guidelines.
Responsible for defining security configuration baselines, developing IT security policies and security operations standards for security systems and applications.
Drive the implementation of disaster recovery, backup and business continuity plans, processes, and policies.
Manage security incident end to end to protect corporate data and secure IT assets.
Responsible for ensuring that IE is protected from security threats and vulnerabilities by keeping all security management and monitoring platforms functional.
Carry out vulnerability assessments to identify control weaknesses, test the effectiveness of existing controls and recommend remedial actions to address identified control weaknesses.
Research and assess new threats and security alerts and recommends remedial action.
Drive the remediation effort to closure of all audit exceptions raised by Internal and external Auditors during any IT audit exercise.
Responsible for security investigations, forensic investigations and compliance reviews as requested by internal or external auditors.
Advise Management on risk that are related to information security and recommend actions to IE’s wider risk management function.
Assess and validate information security requirements in new application developments, ensuring controls are in line with the ISP.
Develop and implement security awareness programs and act as control SPOC during significant information security incidents.
Carry out other duties as assigned by the Head, Information Technology.

Minimum Qualifications

First Degree or equivalent in Electrical / Electronic, Computer Science or Engineering or any other relevant discipline.
Minimum of 8 years relevant experience

Technical Competencies:

Relevant Enterprise Information Security and infrastructure Certifications are required e.g., CISA, CISSP, CCNA, CCSP, ITIL, CoBIT, CEH etc.
Experience in computer forensics, information warfare, cybercrime, etc. is desirable.
Good understanding of Information Security standards e.g., ISO 27001 Standard.
Experience in operational and strategic information security risk management.
Extensive experience in handling information security operations.
Excellent knowledge of Information Security standards, policies, controls and structures prevalent in the utilities industry.

Behavioral Competencies: