Flour Mills of Nigeria Plc has been a part of the lives of Nigerians at home and abroad. Our global vision is to be a leading foods company in Africa providing high quality and affordable products in the most convenient ways to consumers through world class brands like Golden Penny Flour, Golden Penny Semovita, Goldenvita, Golden Pasta and Golden Noodles. The Company’s flagship brand, Golden Penny, remains one of the best known and the preferred brands amongst bakers, confectioneries and consumers in Nigeria.

We are recruiting to fill the position below:

Job Title: IT Risk and Information Security Officer

Location: Nigeria
Employment Type: Full-time

Purpose of the Job

• Responsible for managing and maintaining the cyber-risk management program which includes IT policies, controls, risk assessment and vulnerability management aimed reducing cyber & emerging risks across the entire FMN Group and its subsidiaries.

The Job

• Review and update FMN’s IT Risk and Information security policies, standards, and baselines for effective controls across the organization.
• Conduct risk assessment on existing and new IT/OT system to ascertain risk exposures.
• Review data on cybersecurity incidents tools (EDR, SIEM, NAC) for any suspicious activities.
• To liaise with relevant team to remediate identified gaps from risk assessment on information system.
• Identification and remediation of threats and vulnerabilities on FMN’s Information system.
• Track, measure, and report performance of key risk indicators for IT Risk Management.
• Ensure FMN Group and its subsidiaries are compliant with ISO 27001 standard and controls.

Qualifications

• B.Sc / HND in Sciences or Engineering
• At least one of the Professional Certification – Certified Ethical Hacker (CEH), ISO 27001, CC (Certificate in Cybersecurity) and other relevant training certificate in threat and vulnerability management.
• 3 years cognate experience spanning two or more in information security.
• Experience in conducting vulnerability assessment scan, code reviews and penetration test.

The Person Must:

• Have excellent verbal and written communication skills.
• Possess analytical and problem-solving abilities.
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITILv4
• Knowledge of windows operating systems, Networking protocols and emerging cybersecurity technologies (SOC, SIEM, EDR, threat hunting and modelling).

Application Closing Date
Not Specified.