IT Security Engineer at Credit Direct Limited

Credit Direct Limited a leading innovation-driven financial services company based in Lagos, Nigeria with branches spread across the country. We pioneered the unsecured micro-lending space in Nigeria and are positioned to be the dominant market leader in the Country and beyond. Our services are hinged on a partnership with employers and our customers to provide friendly innovative loan and investment products while our various repayment options give our customers the freedom, flexibility, and confidence to enjoy their lives. Our services are trusted by over 300,000 active customers, the largest endorsement in the Nigerian public and private sectors; and this has inspired us to remain the leader in Nigeria's micro-lending space.

Job Summary

• As an IT Security Engineer at Credit Direct Limited, you will be responsible for designing, implementing, and maintaining robust security measures to protect our critical IT infrastructure, data, and systems from potential cyber threats.
• You will collaborate with cross-functional teams to identify vulnerabilities, develop security policies and procedures, and implement security solutions.
• Your role will be crucial in safeguarding our organization against unauthorized access, data breaches, and other security incidents.

Responsibilities

• Conduct regular security assessments and vulnerability scans to identify potential risks and vulnerabilities within the IT infrastructure.
• Develop and implement security policies, procedures, and guidelines to ensure compliance with industry standards and best practices.
• Configure and manage firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), and other security tools to monitor and protect the network.
• Monitor security events, analyze logs, and investigate security incidents to identify the root cause and recommend appropriate actions.
• Collaborate with internal teams to perform risk assessments and develop mitigation strategies to address identified risks.
• Conduct security awareness training sessions for employees to promote a culture of security awareness and best practices.
• Stay updated with the latest security trends, technologies, and threats, and provide recommendations for security enhancements.
• Participate in incident response activities, including containment, investigation, and recovery, in coordination with the IT and management teams.
• Work closely with application development teams to ensure secure coding practices and conduct security code reviews.
• Participate in the development and maintenance of disaster recovery and business continuity plans.

Job Requirement

• Minimum 5 years of experience in a similar role
• Bachelor’s degree in computer science, Information Security, or a related field. Relevant certifications (e.g., CISSP, CISM, CEH) are highly desirable.
• Proven experience as an IT Security Engineer or in a similar role, with a strong understanding of information security principles and best practices.
• In-depth knowledge of network protocols, firewalls, IDS/IPS, endpoint protection, encryption technologies, and other security technologies.
• Experience with vulnerability assessment tools, penetration testing methodologies, and security incident response.
• Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, PCI DSS).
• Strong analytical and problem-solving skills, with the ability to analyze complex security issues and provide effective solutions.
• Excellent communication and interpersonal skills to collaborate effectively with cross-functional teams and stakeholders.
• Ability to work in a fast-paced environment, prioritize tasks, and manage multiple projects simultaneously.
• Strong commitment to maintaining the confidentiality, integrity, and availability of sensitive information.

Person Specification

• Strong attention to detail and a proactive approach to identifying and resolving security issues.
• Ability to work both independently and collaboratively within a team.
• Strong ethical standards and a commitment to maintaining high levels of integrity and confidentiality.
• Continuous learning mindset and the ability to keep up with evolving security technologies and threats.
• Excellent problem-solving and decision-making skills, with the ability to analyze complex situations and recommend effective solutions.
• Flexibility and adaptability to changing priorities and business needs.

Method of Application