IT Risk Analyst
Lagos, Lagos, Nigeria
Kuda Technologies Ltd
Kuda, the money app for Africans licensed by the CBN. Zero maintenance fees, free transfers, automatic savings & investments. Join Kuda today!Kuda is a money app for Africans on a mission to make financial services accessible, affordable and rewarding for every African on the planet.
We’re a tribe of passionate and diverse people who dreamed of building an inclusive money app that Africans would love so it’s only right that we ended up with the name ‘Kuda’ which means ‘love’ in Shona, a language spoken in the southern part of Africa.
We’re giving Africans around the world a better alternative to traditional finance by delivering money transfers, smart budgeting and instant access to credit through digital devices.
We’ve raised over $90 million from some of the world's most respected institutional investors, and we’re rolling out our game-changing services globally from our offices in Nigeria, South Africa, and the UK.
Role Overview
We are seeking a proactive and detail-oriented IT Risk Analyst to join our growing Risk Management team. The successful candidate will be responsible for identifying, assessing, monitoring, and mitigating technology-related risks across the organization. This role is critical in ensuring the security, resilience, and compliance of our IT infrastructure, applications, and processes in line with regulatory requirements (like CBN guidelines) and industry best practices (such as ISO 27001, PCI DSS).
Requirements
- Conduct comprehensive IT risk assessments across various domains including infrastructure, applications, data security, cloud environments, third-party vendors, and change management processes. Identify potential threats, vulnerabilities, and their potential impact.
- Evaluate the effectiveness of existing IT controls. Recommend, design, and assist in the implementation of new controls and mitigation strategies to reduce identified risks to acceptable levels.
- Develop and monitor Key Risk Indicators (KRIs) for IT risks. Prepare regular risk reports for management and relevant committees, clearly articulating risk posture, control effectiveness, and remediation progress.
- Support IT compliance activities related to relevant regulations (e.g., CBN guidelines, NDPR) and standards (e.g., ISO 27001, PCI DSS). Assist in internal and external audits.
- Participate in the assessment of IT risks associated with third-party vendors and service providers.
- Contribute to the development, testing, and maintenance of IT BCP and DR plans, ensuring technology resilience.
- Assist in the analysis of IT security incidents to identify root causes and recommend improvements to prevent recurrence.
- Assist in the development, review, and updating of IT risk management policies, standards, and procedures.
- Contribute to promoting IT risk awareness across the organization.
Required Qualifications:
- Bachelor's degree in Information Technology, Computer Science, Information Systems, Cybersecurity, Risk Management, or a related field.
- Minimum of 3-5 years of relevant experience in IT risk management, IT audit, information security, or IT governance, preferably within the financial services or fintech industry.
- Strong understanding of IT risk assessment methodologies and frameworks (e.g., NIST RMF, ISO 27005, COBIT).
- Familiarity with relevant regulatory requirements in Nigeria (CBN guidelines, NDPR).
- Knowledge of industry standards like ISO 27001, PCI DSS.
- Experience with assessing risks in areas such as network security, application security, cloud security (AWS/Azure/GCP), identity and access management, data protection, and vendor management.
- Relevant professional certifications such as CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), CISSP (Certified Information Systems Security Professional), or similar are highly desirable.
- Proficiency with risk management tools and Microsoft Office Suite (Excel, Word, PowerPoint).
- Understanding of banking operations and fintech products is a plus.
Benefits
Why join Kuda?
At Kuda, our people are the heart of our business, so we prioritize your welfare. We offer a wide range of competitive benefits in areas including but not limited to:
💜A great and upbeat work environment populated by a multinational team
👴Pension
📈Career Development & growth
😁Competitive annual leave plus bank holidays
🎁Competitive paid time off (Parental, Moving day, Birthday, Study leave etc)
💯Group life insurance
💖Medical insurance
🎁Well-fare package (Wedding, Compassionate and etc)
✅ Perkbox
🏃♀️Goalr - employee wellness app
🥇Award winning L&D training
💒 We are advocates of work-life balance, working in a hybrid in office schedule
Kuda is proud to be an equal-opportunity employer. We value diversity and anyone seeking employment at Kuda is considered based on merit, qualifications, competence and talent.
We don’t regard colour, religion, race, national origin, sexual orientation, ancestry, citizenship, sex, marital or family status, disability, gender, or any other legally protected status. If you have a disability or special need that requires accommodation, please let us know.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits AWS Azure Banking CISA CISSP Cloud COBIT Compliance Computer Science CRISC Finance FinTech GCP Governance IAM ISO 27001 ISO 27005 IT infrastructure Monitoring Network security NIST PCI DSS Risk assessment Risk management RMF Vendor management Vulnerabilities
Perks/benefits: Career development Health care Insurance Medical leave Parental leave Team events Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.