Lead, Application & DataBase Control at InterSwitch

Interswitch Limited is an integrated payment and transaction processing company that provides technology integration, advisory services, transaction processing and payment infrastructure to government, banks and corporate organizations. Interswitch, through its “Super Switchâ€Â provides online, real-time transaction switching that enable businesses and individuals have access to their funds across the 24 banks in Nigeria and across a variety of payment channels such as Automated Teller Machines (ATMS), Point of Sale (PoS) terminals, Mobile Phones, Kiosks, Web and Bank Branches.

Job Summary

• The Lead, Application, and Database Control plays a pivotal role in ensuring the resilience and reliability of the organization's technology environment. Reporting to the Head of Information Systems Control, this position is responsible for managing the assessment, enhancement, and monitoring of IT general and application controls across systems, infrastructure, and processes. The role enforces alignment with established frameworks—such as COBIT, COSO, ISO 27001, and ITIL—and ensures compliance with regulatory and internal standards.
• This position conducts periodic system audits, cybersecurity vulnerability assessments, penetration testing, and access certification reviews to identify risks, control weaknesses, or non-compliance. It oversees thorough investigations of incidents—both operational and cyber-related—to perform root cause analysis, document findings, and recommend corrective actions and control enhancements.
• The role coordinates remediation efforts by working closely with control owners, tracking progress, and reporting milestones. It prepares high-quality internal control reports—including ad hoc, monthly, and quarterly summaries—for senior stakeholders such as the Head of IS Control, Group Chief Risk Officer, Group Managing Director, and Audit & Risk Committee, ensuring transparency and timely escalation of critical issues.
• Additionally, the Lead, Application and Database Control would drive quarterly cyber assurance reviews, monitor emerging legislative and regulatory developments, and stay abreast of technology risk trends. The role also supports internal and external audit processes by generating evidence, responding to inquiries, and advocating for the closure of audit findings. Through these efforts, the Lead, Application and Database Control enhances control maturity, fosters accountability, and contributes to the organization's cyber and operational resilience.

Key Responsibilities

• Control Assessment & Implementation – Assist in conducting system audits, cybersecurity vulnerability reviews, access reviews, and IT general control (ITGC)/ICoFR testing to ensure adequacy and compliance. Identify control gaps or weaknesses, escalate findings, and support the design of remediation plans in collaboration with control owners.
• Incident Response & Root Cause Analysis – Support incident investigations involving IT control failures, system outages, or data integrity issues. Conduct root cause analyses, document technical findings, and implement control enhancements under supervision.
• Monitoring & Reporting – Prepare internal control documentation, test results, and status updates for review by the Head of IS Control. Monitor corrective action plans and conduct follow-up testing to verify effective implementation.
• Compliance & Audit Coordination – Provide technical support during internal and external audits, supplying control evidence and assisting in addressing audit queries. Ensure legislative and regulatory changes affecting IS controls are communicated and incorporated into control procedures.
• Continuous Assurance & Knowledge Management – Run automated control monitoring and vulnerability scans; track results and recommend improvements. Maintain awareness of emerging technology risks and regulatory developments to support continuous enhancements.
• Stakeholder Engagement – Work closely with IT teams to validate remediation activities. Collaborate with Audit, Compliance, Operations, and Finance to integrate control improvements and share insights.

Experience

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
• Professional certifications such as CISA, ECSA, Security+, CEH, CISSP, CHFI, ISO 27001 Lead, or equivalent (preferred).
• Minimum of 6 years’ experience in IT control, audit, or risk management roles—preferably within fintech, financial services, or large enterprise environments.
• Hands-on experience conducting system audits, using vulnerability assessment tools, performing ICoFR testing, and tracking remediation activities.
• Strong analytical and problem-solving skills, with a detail-oriented and structured approach to documentation.
• Excellent communication abilities—able to present complex technical findings clearly to both IT teams and business stakeholders.
• Solid understanding of IT control frameworks and compliance standards, including COBIT, COSO, and ISO 27001.

Method of Application