22 Information Security jobs in Nigeria

Today

P

Abuja Full Time

Education Confidential

• Minimum Qualification :

Are you a strategic leader passionate about creating safe and secure environments for learning and innovation?

Philomath University is seeking a highly experienced and proactive Chief Security Officer (CSO) to join our team on a full-time basis. As the CSO, you will be responsible for developing and implementing comprehensive security strategies to protect our students, staff, assets, and reputation.

Key Responsibilities:

• Develop and oversee campus-wide security policies, protocols, and procedures.
• Lead and manage a team of security professionals, ensuring high performance and accountability.
• Conduct risk assessments and implement measures to mitigate potential threats.
• Collaborate with internal stakeholders and external agencies to maintain a secure environment.
• Ensure compliance with local and national security regulations.
  Manage emergency response planning and crisis management initiatives.

Ideal Candidate:

• Proven experience as a CSO or similar senior security role.
• Strong leadership, communication, and strategic planning skills.
• In-depth knowledge of modern security technology, risk management, and law enforcement coordination.
• A commitment to fostering a safe, inclusive, and welcoming campus culture.

This is a unique opportunity to play a critical role in shaping the safety and future of a growing academic institution.

If you are ready to bring your expertise to a dynamic and mission-driven environment, we encourage you to apply.

To apply, please send your resume and cover letter to

#NowHiring #CSO #ChiefSecurityOfficer #SecurityJobs #AbujaJobs #UniversityJobs #HigherEducation #PhilomathUniversity #Careers #SecurityManagement #NigeriaJobs #CampusSafety

<

We're seeking an Information Security Officer to oversee security governance, risk management, and compliance across the organization. This role ensures that security policies, controls, and practices align with business objectives while meeting local and industry regulatory requirements. The ideal candidate will have deep experience in security governance and translating technical risks into business terms for executives and stakeholders.

At
TeKnowledge
, your work makes an impact from day one. We partner with organizations to deliver AI-First Expert Technology Services that drive meaningful impact in AI, Customer Experience, and Cybersecurity. We turn complexity into clarity and potential into progress—in a place where people lead and tech empowers.

You'll be part of a diverse and inclusive team where trust, teamwork, and shared success fuel everything we do. We push boundaries, using advanced technologies to solve complex challenges for clients around the world.

Here, your work drives real change, and your ideas help shape the future of technology. We invest in you with top-tier training, mentorship, and career development—ensuring you stay ahead in an ever-evolving world.

Why You'll Enjoy It Here:

• Be Part of Something Big
  – A growing company where your contributions matter.
• Make an Immediate Impact
  – Support groundbreaking technologies with real-world results.
• Work on Cutting-Edge Tech
  – AI, cybersecurity, and next-gen digital solutions.
• Thrive in an Inclusive Team
  – A culture built on trust, collaboration, and respect.
• We Care
  – Integrity, empathy, and purpose guide every decision.

We're looking for innovators, problem-solvers, and experts ready to drive change and grow with us.

We Are TeKnowledge. Where People Lead and Tech Empowers.

Responsibilities

• Ensure policies, controls, and security practices are aligned with business goals and regulatory compliance.
• Define, implement, and maintain IT processes derived from security policies.
• Oversee compliance with industry standards, local regulations, and internal security frameworks.
• Translate security risks into clear business impacts for senior leadership and stakeholders.
• Work closely with risk, compliance, and IT teams to monitor adherence to security requirements.
• Contribute to security awareness initiatives and governance reporting.
• Support audit processes, remediation efforts, and continuous improvement of security posture.

Qualifications

Education & Certifications

• 4-year IT-related degree (mandatory).
• CISM and CISSP certifications (required).

Experience

• 7 years of experience in the cybersecurity domain.
• Proven track record in defining IT processes, aligning them with policies, and ensuring compliance with local and industry regulations.

Core Skills & Competencies

• Strong expertise in security governance, risk, and compliance.
• Ability to translate technical security risks into business language.
• Excellent stakeholder engagement and communication skills.
• Strategic mindset with attention to regulatory and operational requirements.
• Proactive approach to identifying gaps and recommending improvements.

The Chief Information Security Officer (CISO) will be responsible for establishing, implementing, and managing a comprehensive cybersecurity strategy for the Oil & Gas organization. This role focuses on safeguarding IT and OT (Operational Technology) environments, ensuring regulatory compliance, managing cyber risks, and protecting critical infrastructure assets. The CISO will collaborate with executive leadership, business units, and external partners to ensure resilience against emerging threats.

Key Responsibilities

Strategic Leadership

• Define and execute the enterprise-wide information and cyber security strategy aligned with business and regulatory requirements.
• Lead security programs covering IT, OT/ICS, cloud, and digital transformation initiatives.
• Advise executive leadership and the Board on cybersecurity risks and investments.

Cybersecurity Governance & Risk Management

• Develop and enforce information security policies, standards, and procedures.
• Oversee enterprise risk assessments, threat modeling, and incident response planning.
• Ensure compliance with industry regulations (e.g., NIST, ISO 27001, IEC 62443, GDPR, local oil & gas cybersecurity regulations).

Operational & Technical Security

• Protect SCADA, ICS, and critical OT infrastructure from cyber threats.
• Implement advanced threat detection, monitoring, and response capabilities (SOC).
• Oversee identity and access management, network security, data protection, and endpoint security programs.

Incident Response & Business Continuity

• Establish and lead a cyber incident response team (CIRT).
• Manage security incidents, forensic investigations, and root cause analysis.
• Align business continuity and disaster recovery with cybersecurity resilience.

Stakeholder & Vendor Management

• Partner with internal stakeholders, regulators, and industry bodies to strengthen security posture.
• Manage third-party vendor security, contract compliance, and supply chain risk.
• Build cybersecurity awareness programs for employees and contractors.

Qualifications & Experience

• Bachelors or Masters degree in Computer Science, Information Security, Engineering, or related field.
• 15+ years of IT/Information Security experience with at least 7+ years in leadership.
• Proven experience in Oil & Gas, Energy, or other critical infrastructure industries.
• Strong understanding of OT/ICS security frameworks (ISA/IEC 62443, NIST CSF, etc.).
• Expertise in risk management, regulatory compliance, cloud security, and incident management.
• Relevant certifications: CISSP, CISM, CISA, CCISO, GICSP (preferred for Oil & Gas).

The Chief Information Officer (CIO) will lead the overall IT and Digital strategy for the organization, enabling operational excellence, innovation, and secure digital transformation within the oil and gas sector. The CIO will be responsible for aligning IT systems, cybersecurity, and digital technologies with business goals across upstream, midstream, and downstream operations while driving cost efficiency and ensuring regulatory compliance.

Key Responsibilities

Strategic Leadership

• Define and execute the companys IT and Digital Transformation roadmap aligned with business objectives.
• Partner with business leaders across Exploration, Production, Refining, and Supply Chain to drive technology-enabled value creation.
• Lead adoption of emerging technologies such as IoT, AI/ML, Cloud, Data Analytics, and Industrial Automation for Oil & Gas operations.

Technology & Operations Management

• Oversee IT infrastructure, enterprise applications (ERP, SCADA, ETRM, Asset Management Systems, etc.), and field automation solutions.
• Implement advanced data analytics for reservoir modeling, predictive maintenance, and production optimization.
• Ensure high availability, resilience, and scalability of IT and OT (Operational Technology) systems.

Cybersecurity & Risk Management

• Develop and enforce cybersecurity strategies protecting both IT and OT environments against evolving threats.
• Ensure compliance with global oil & gas standards (ISO, NIST, NERC, OISD, API, etc.).
• Oversee disaster recovery, business continuity planning, and risk management frameworks.

Vendor & Stakeholder Management

• Drive value through IT procurement, contract negotiations, and vendor partnerships.
• Manage relationships with technology partners, regulators, and industry consortiums.
• Foster collaboration across business, field operations, and support functions.

People Leadership

• Build and lead a high-performing IT and digital workforce.
• Promote a culture of innovation, agility, and continuous improvement.
• Mentor and develop IT leaders for future succession.

Qualifications & Experience

• Bachelors degree in Computer Science, Information Technology, or Engineering (Masters preferred; MBA a plus).
• 15+ years of progressive IT leadership experience, with at least 7 years in senior leadership within Oil & Gas, Energy, or Process Industries.
• Proven expertise in digital transformation within exploration, production, or downstream operations.
• Strong knowledge of ERP systems (SAP, Oracle), field automation, SCADA/DCS, IoT, AI/ML, and cloud adoption.
• Deep understanding of IT/OT convergence and cybersecurity in critical infrastructure.
• Excellent leadership, stakeholder management, and communication skills.

Key Competencies

• Strategic Vision & Business Acumen
• Strong Technology & Operational Knowledge
• Risk Management & Cybersecurity Leadership
• Digital Transformation & Innovation Focus
• Influencing & Change Management Skills
• Collaboration with C-Suite and Global Stakeholders

The Security Engineer (Nigeria) at SWATX will be pivotal in implementing and maintaining security measures across our technology environments. This role offers an exciting opportunity to help protect the organization's infrastructure and data from potential threats, especially within the Nigerian security landscape.

You will be responsible for monitoring security alerts, conducting vulnerability assessments, implementing security best practices, and responding to incidents as they arise. The ideal candidate will bring a blend of technical expertise in security operations and a proactive mindset towards evolving cybersecurity challenges.

• Bachelor's degree in Cybersecurity, Information Technology, or a related field.
• 3-5 years of experience in security engineering or information security roles.
• Strong understanding of network protocols, firewall configurations, and security technologies.
• Experience with security monitoring tools and incident response practices.
• Familiarity with compliance requirements and best practices in cybersecurity.
• Excellent analytical and troubleshooting skills to manage security incidents effectively.
• Effective communication skills to interact with stakeholders at all levels.
• Relevant certifications such as CompTIA Security+, CEH, or equivalent are desirable.
• Experience with security in cloud environments (AWS or Azure) is a plus.
• Knowledge of emerging security trends and threats relevant to the Nigerian technological environment.

We are seeking an experienced Information Security Consultant with strong offensive and defensive cybersecurity skills. The ideal candidate has a hacker's mindset — able to think like an attacker to identify vulnerabilities, but also experienced in building strategies, defenses, and best practices to secure organizations against threats.

Key Responsibilities

• Conduct security assessments and penetration tests across networks, web apps, mobile apps, and cloud environments.
• Identify and exploit vulnerabilities, then provide actionable remediation guidance.
• Advise clients on risk management, security policies, and compliance (ISO 27001, NIST, GDPR, etc.).
• Perform threat modeling and security architecture reviews.
• Develop and deliver incident response plans and conduct post-breach investigations.
• Provide security awareness training and help organizations build a strong security culture.
• Stay current with emerging threats, vulnerabilities, exploits, and mitigation techniques.

Required Skills & Knowledge

• Strong understanding of operating systems (Linux, Windows, macOS, mobile platforms).
• Deep knowledge of networking protocols (TCP/IP, DNS, HTTP/S, VPNs, firewalls).
• Hands-on experience with penetration testing tools (Burp Suite, Metasploit, Nmap, Wireshark, etc.).
• Proficiency in scripting/programming: Python, Bash, PowerShell; familiarity with C/C++ and JavaScript is a plus.
• Knowledge of web app security (OWASP Top 10) and common vulnerabilities (SQLi, XSS, CSRF, privilege escalation).
• Experience with cloud platforms (AWS, Azure, GCP) and their security models.
• Familiarity with cryptography, authentication, and identity management.
• Strong communication skills — ability to present findings to both technical and non-technical audiences.

Preferred Certifications (not mandatory)

• OSCP, OSCE, OSEP (for offensive security skills).
• CISSP, CISM, CISA (for governance & consulting credibility).
• CEH (Certified Ethical Hacker) or equivalent.
• GIAC certifications (GCIH, GPEN, GREM, etc.).

Job Type: Full-time

Pay: ₦250, ₦300,000.00 per month

Duplo is building the platform to power the next generation of financial services. Our mission is to help companies expand financial access for all. Our simple and powerful banking-as-a-service API helps companies quickly launch financial products.

We are recruiting to fill the position below:

Job Position: Information Security Manager

Job Location: Lagos (Hybrid)

Description

• This is a unique opportunity. You'll have the responsibility and resources to take a significant part in the creation of a paradigm-changing product that will impact millions.

Responsibilities

Strategic Leadership & Governance:

• Define and lead the strategic direction of our Information Security program in alignment with the Board-approved policies.
• Oversee the design and execution of enterprise-wide cybersecurity strategies to protect critical business information systems and assets.
• Develop and maintain an information security governance framework, ensuring appropriate accountability, risk management, and compliance with applicable laws and regulations.

Operational & Budgetary Management:

• Direct and manage the security operations, including security architecture, vulnerability management, identity & access management, incident response, and threat intelligence.
  
  Administer the information security budget, optimizing investments in tools, resources, and staff to support ongoing protection efforts.

Regulatory & Risk Management:

• Monitor and interpret national and global regulatory developments, cyber threats, and trends to proactively enhance our security posture.
• Serve as the liaison with the CBN, law enforcement, and other regulatory agencies on security-related matters, including audits and compliance reporting.
• Ensure compliance with CBN guidelines, NDPR, GDPR (where applicable), ISO 27001, PCI-DSS, and other security frameworks or standards.

Program Development & Implementation:

• Develop and continuously improve a comprehensive information security program, encompassing: Risk assessments and management, Data protection and encryption policies, Security awareness training ,Incident detection and response plans and Vendor risk management
• Lead information security planning across all business areas, including administrative, legal, financial, and technology functions.

Stakeholder Communication & Awareness:

• Report regularly to senior management and the Board on the status of the information security posture, risk exposure, mitigation actions, and resource needs.
• Drive a culture of cybersecurity awareness throughout the organization via continuous education and engagement.
• Collaborate with other business units to integrate security considerations into project planning and digital innovation initiatives.

Technical & Professional Requirements

• Bachelor's Degree in Computer Science, Information Technology, Cybersecurity, or related fields.
• Minimum of 7 years of post-qualification experience, with:
• At least 5 years in an IT security or audit role
• Strong knowledge of banking regulations, especially CBN Guidelines related to information and cybersecurity.
• Experience in leading incident response and crisis communication efforts.
• Familiarity with core banking systems, payment platforms, and financial technology infrastructures.
• Proven ability to build and lead high-performing security teams.
• Effective communication skills to convey complex security topics to non-technical stakeholders.

Professional Certifications in at least one of the following:

• Certified Information Systems Auditor (CISA)
• Certified Information Security Manager (CISM)
• Certified Information Systems Security Professional (CISSP)
• ISO/IEC 27001 Lead Implementer or Lead Auditor
• Other relevant IT security/audit certification.

About the Role

We are seeking an entry-level Penetration Tester to join our team. In this role, you'll help

assess, identify, and exploit security vulnerabilities across web applications, networks, and

systems under supervision. This is an excellent opportunity for someone passionate about

cybersecurity, hacking, and problem-solving to gain hands-on experience in offensive security.

Responsibilities

Assist with security assessments, penetration tests, and vulnerability scans of networks, web

apps, APIs, and systems.

Support in simulating real-world attacks to evaluate client security posture.

Document findings clearly and contribute to detailed penetration testing reports.

Research emerging vulnerabilities, exploits, and attack techniques.

Help develop proof-of-concepts (PoCs) for vulnerabilities.

Participate in team exercises.

Work with a team to recommend mitigations and improvements.

Qualifications

BSC or Equivalent

Foundational knowledge of networking, operating systems, and web technologies (TCP/IP,

Linux/Windows, HTTP/S, DNS).

Familiarity with common security tools (e.g., Nessus, Nmap, etc).

Understanding of OWASP Top 10 and common vulnerability types.

Basic scripting skills in Python, Bash, or PowerShell.

Strong analytical and problem-solving skills.

Eagerness to learn, adapt quickly and take the initiative.

Today

I

Lagos Full Time

IT & Telecoms Confidential

• Minimum Qualification :
• Experience Level : Senior level
• Experience Length : 7 years

The Lead SOC Incident Response Analyst will be responsible for driving and maturing the organization's cyber incident response program. This role ensures timely detection, investigation, containment, and recovery from security incidents across cloud and on-premise environments.

Responsibilities

• Drive the organization's security incident response program, ensuring the detection, analysis, containment, eradication, and recovery from cyber incidents across cloud and on-premise environments.
• Lead and support a team of security analysts and engineers during active investigations and escalations.
• Develop and continuously refine incident response playbooks, ensuring alignment with MITRE ATT&CK and NIST standards.
• Coordinate cross-functional incident response activities with IT, Engineering, Legal, Compliance, and Communications teams.
• Conduct root cause analysis and post-incident reviews to identify control gaps, recommend mitigation strategies, and track long-term remediation.
• Implement threat intelligence correlation and alert enrichment to improve detection fidelity and reduce response time.
• Maintain the organization's incident register and deliver executive-level reporting on incident trends, KPIs, and risk reduction outcomes.
• Drive tabletop exercises and red/blue team simulations to strengthen preparedness and response capabilities.
  Collaborate with security engineering teams to improve detection and automate common triage workflows.

Role Requirements

• Bachelor's degree in Computer Science, Information Security, or related field (advanced degree or equivalent experience is a plus).
• 7+ years of hands-on experience in SOC operations, cyber incident response, or threat detection (with at least 2 years in a senior or lead capacity).
• Strong knowledge of incident response lifecycle (detection, analysis, containment, eradication, recovery) across cloud and on-prem environments.
• Deep familiarity with industry frameworks ( MITRE ATT&CK, NIST
• Proven ability to lead and coordinate cross-functional incident response efforts with IT, Engineering, Legal, and Compliance teams.
• Proficiency with SIEM, SOAR, EDR, and threat intelligence platforms; ability to enrich alerts and reduce response times.
• Skilled in log analysis, malware/network forensics, and root cause analysis.
• Experience developing and executing tabletop exercises, simulations, and playbooks.
• Excellent communication skills with a track record of preparing executive-level reports and delivering clear incident insights.
• Professional certifications preferred: GCIH, GCFA, GNFA, CISSP, CISM, OSCP , or equivalent.

<

Management Level
Senior Associate

Job Description & Summary
At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

Those in information security at PwC will focus on protecting sensitive data and systems from cyber threats through risk assessments, security audits, and implementing robust security measures. Your work will help enable the confidentiality, integrity, and availability of information assets for clients.

PwC is driving major changes across information and cyber security by building a centralized model to provide security services across the entire network of member firms.  Mandated at the network level, Network Information Security (NIS) operates outside Information Technology (IT) and is responsible for this major program initiative, from definition of the security strategy to the execution of the global Cyber Readiness Program, moving from local to globally provided services.

Our mission is to identify, control, and reduce the attack surface across the network of member firms while increasing our adversaries' cost of attack.

NIS is redefining cyber security on a global scale at PwC. Our mission protects 223,000 PwC members across 157 member firms worldwide, as well as our global clients.

If you are seeking an exciting career with the scope to grow your cyber security skills through major change on a global scale, then NIS will empower you to do so.

What does your work look like?
This role is part of the Central and Eastern Europe (CEE) Chief Information Security Office (CISO) team.  CEE CISO team enables local and CEE regional security effectiveness and helps remove roadblocks and barriers from Cyber Readiness Program journey.

Your skills and responsibilities include but are not limited to:

• You will collaborate with both the NIS global teams and the CEE network of firms to support issue resolution and drive progress against better adoption of Cyber Readiness Program
• Incident oversight - providing advice, direction and escalation where applicable
• Collaborate with our global teams to ensure member firm needs are reflected in centrally driven activities.
• Support, initiate and run regular Cybersecurity Hygiene activities in CEE
• Risk Identification and follow up on remediation
• Advise on Policy & Standards Compliance
• Application and Infrastructure vulnerability management - track and drive remediation to drive down line of security risk
• Contribution to audits
• Partner with CEE IT, and business teams for large or complex projects requiring senior security input and decision-making capabilities
• Security consultation, governance, escalations, and support regarding Information Security
• Education and coaching CEE Stakeholder communities regarding NIS  Cyber Readiness Program

Who are you?

• High level understanding of professional services industry business model, service offerings, and threat landscapes
• Aligning technical and the business world – ability to influence
• Interest in Information Security and a broad understanding of its ability to act as a differentiator in the market
• Solid understanding of technical information security risks in all of its facets
• Inquisitive nature and intuition regarding what questions to ask, when, and their relative significance.
• Creative problem solving and strong communication skills.
• Possess a growth mindset and be able to adapt to operate in different environments.
• Bachelor or Master's degree, or equivalent Industry certification
• NYSC Certificate / Exemption
• Up to 3 Years' experience in a relevant information security role is an advantage
• CompTIA Security+ or similar professional certification is an advantage

Travel Requirements

Available for Work Visa Sponsorship?

Job Posting End Date
October 3, 2025