Data Protection Officer

Moniepoint

This job listing has expired

Find similar jobs instead:

Contracts Manager

Azizi Developments

Compliance Officer

Breezy Digital Solutions

Compliance officer

Payscribe

Job Overview

Location

Remote

Employment Type

Full-time

Work Arrangement

Remote

Sector

Information Technology & Software

Experience Level

Senior (5-8 years)

About the Company

Moniepoint stands as a leading force in Africa's financial technology landscape, offering a comprehensive suite of tools designed to empower businesses and their clientele. Our integrated ecosystem provides seamless solutions for payments, banking, credit, and business management. In 2023, we achieved a significant milestone by processing $182 billion, solidifying our position as Nigeria's largest merchant acquirer. Our core mission is to foster financial happiness for individuals and businesses across the continent. At Moniepoint, we cultivate a customer-centric community that thrives on innovation and data-driven best practices. We are dedicated to developing cutting-edge solutions, including providing essential credit and overdraft facilities, while ensuring the utmost security for every transaction. Our commitment extends to fostering a culture of continuous learning, teamwork, and professional growth, making Moniepoint an exceptional place to build a career.

Job Description

Moniepoint, a leading African financial ecosystem, is seeking a dedicated Data Protection Officer to join our Compliance Team. This remote role is crucial for implementing and maintaining our robust data protection framework, ensuring full compliance with the Nigeria Data Protection Act (NDPA) 2023, GAID, and other relevant privacy regulations.

In this position, you will be responsible for the day-to-day oversight of data processing activities, managing customer privacy rights requests, conducting essential awareness training, and supporting comprehensive privacy risk management across all Moniepoint operations. Your contributions will be vital in upholding our commitment to financial happiness and data security for everyone.

To apply for this role, click the Apply button on this page and follow the instructions.

Required Skills

Data ProtectionIT GRCComplianceCybersecurityNigeria Data Protection Act (NDPA) 2023GDPRData GovernanceData Lifecycle ManagementFinancial Customer Data HandlingRisk ManagementControl FrameworksStakeholder ManagementAnalytical ThinkingReport WritingData Subject RightsData Processing Agreements (DPAs)Data Protection Impact Assessments (DPIAs)Incident ManagementRegulatory ReportingEncryptionAccess ControlsTokenizationAudit LoggingBusiness Continuity Planning (BCP)Disaster Recovery (DR)

Key Responsibilities

Develop, implement, and monitor adherence to Data Privacy policies, procedures, and controls, including NDPA 2023, CBN regulations, and NDPC directives.
Ensure compliance with lawful processing, purpose limitation, data minimisation, accuracy, storage limitation, integrity, and confidentiality principles.
Maintain and update the Record of Processing Activities (RoPA) and oversee the NDPC Data Protection Compliance Audit.
Coordinate timely and compliant responses to all Data Subject Access Requests (DSARs) and other individual rights requests.
Manage data subject rights requests, including access, rectification, erasure, restriction, objection, and portability within statutory timelines.
Develop and enforce the organization's Data Protection Policy, Privacy Notice, Cookie Policy, Retention Policy, and all supporting privacy documentation.
Conduct and review DPIAs for new products, systems, and vendors.
Facilitate the identification and mitigation of Data Protection/Privacy risks and ensure technical measures are in place in collaboration with IT and Risk teams.
Execute privacy awareness campaigns and training across departments, including developing and maintaining learning materials.
Monitor and interpret changes in Nigerian and International Data Protection laws.
Oversee third-party data processor due diligence, ensure Data Processing Agreements (DPAs) are in place with all vendors and partners, and manage ongoing compliance of processor relationships.
Maintain the Vendor Data Processing Register and support contract reviews for privacy clauses.
Manage data breaches, maintain incident Registers, and participate in post-incident reviews.
Manage data breach response, including documentation, investigation, and regulatory reporting to NDPC within statutory timelines.
Ensure personal data elements are adequately protected within the organization's security architecture, including encryption at rest and in transit, access controls, tokenization of sensitive payment data, and audit logging.
Provide data protection oversight for the organization's Business Continuity Planning (BCP) and Disaster Recovery (DR) programmes, ensuring personal data recoverability and minimised data loss objectives.
Prepare reports, documentation, and responses for the NDPC and other regulators, coordinating responses to NDPC’s notices, directives, and audits.
Serve as a representative in all regulatory engagements with the NDPC, NITDA, NCC, and other data-related matters.
Manage and maintain all associated registrations, filings, renewals, and regulatory correspondence.

Qualifications

Excellent understanding of Data Privacy principles, risk management, and control frameworks.
Familiarity with Data governance, Data lifecycle management, and financial customer data handling.
High ethical standards and attention to detail.
Ability to work collaboratively with cross-functional teams.
Strong organizational and documentation skills.
Tech savvy and familiarity with Data Governance software.
Strong communication and report-writing skills.
Analytical thinking and ability to spot compliance risks.
Ability to work under supervision while taking initiative on assigned tasks.
Bachelor’s degree in Law, Information Technology, Computer Science, or related field.
Minimum of 7–10 years of experience in Data Protection, IT GRC, Compliance, or Cybersecurity, preferably within financial services or regulated institutions.
Professional certification like CIPP/E, CDPO or CIPM from accredited issuing bodies.
Sound knowledge of the Nigeria Data Protection Act (NDPA 2023), NDPC Regulations, CBN IT Standards, and global Data Protection frameworks (e.g., GDPR).

Benefits & Perks

Attractive salary
Pension
Health insurance
Annual bonus
Other benefits
Culture that prioritizes well-being, inclusivity, and respect
Learning and development-focused environment with emphasis on knowledge sharing, training, and regular internal technical talks

How to Apply

This job has expired

Join Our Communities

Join WhatsApp Channel Join Telegram Group

In Nigeria's rapidly expanding fintech sector, robust data protection is paramount. This role is critical for upholding compliance with the Nigeria Data Protection Act (NDPA) 2023, GAID, and other privacy regulations. You will be instrumental in safeguarding sensitive information, managing data subject rights, and ensuring adherence to lawful processing principles. Your expertise in data governance, data lifecycle management, and financial customer data handling will directly impact the company's reputation and operational integrity, contributing significantly to business ROI by mitigating risks and fostering trust.