Information Security Analyst

Zedcrest Group

Job Overview

Location

Lagos, Lagos, Nigeria

Employment Type

Full Time

Work Arrangement

On-site

Sector

Finance & Banking

Experience Level

Mid-level (3-5 years)

Application Deadline

March 6, 2026

About the Company

Zedcrest Group is a leading African financial services and investment firm headquartered in Nigeria. Evolving from a modest trading company, Zedcrest has transformed into a diversified financial powerhouse. The group operates across key segments of the financial sector, strategically leveraging state-of-the-art digital platforms to achieve its vision.

As a forward-thinking organization, Zedcrest Group is committed to innovation and excellence in financial services. The company's operations are designed to meet the diverse needs of its clients, underpinned by a strong focus on technology and robust operational frameworks.

Job Description

We are seeking a proactive and detail-oriented Information Security Analyst to join our team in Lagos. In this critical role, you will be responsible for the continuous monitoring, detection, analysis, and response to security events across Zedcrest’s IT and cloud environments. Your expertise will be vital in managing SIEM alerts, handling security incidents, conducting vulnerability assessments, and supporting the Chief Information Security Officer in enhancing our overall security posture.

You will play a key role in maintaining robust security protocols, ensuring compliance with regulatory and industry best practices, particularly within the financial sector. This position offers an excellent opportunity to contribute to a leading financial services firm and grow your career in cybersecurity.

To apply for this role, click the Apply button on this page and follow the instructions.

Required Skills

Good understanding of security incident handlingCommunication SkillsAbility to interpret logs from firewalls, IDS/IPS, proxies, servers, and applicationsSolid understanding of networking, operating systems, and common attack techniques (phishing, malware, ransomware, web attacks, etc.)Analytics SkillsProblem Solving SkillsSIEM platformsVulnerability scanning toolsSecurity frameworks (ISO 27001, NIST CSF, CIS Controls, PCI-DSS, NDPR)Cloud platforms (AWS, Azure, GCP) security controls

Key Responsibilities

Monitor SIEM dashboards and alerts, escalating suspicious activities to CISO & IT Audit.
Log, track, and support closure of security incident tickets under supervision.
Perform basic investigation of alerts (log review, IP/domain lookups, user verification).
Run scheduled vulnerability scans and generate reports.
Follow up with IT/DevOps on remediation status for vulnerabilities and patches.
Engage with third-party vendors and service providers to track and remediate security issues impacting Zedcrest.
Maintain incident and vulnerability registers with accurate, up-to-date information.
Assist in preparing security reports and metrics for the CISO and management.
Help document and update SOC procedures, playbooks, and checklists.
Support basic security awareness activities (e.g., phishing simulations, training logistics).
Participate in risk assessments for new projects, third-party engagements, and technology changes.

Qualifications

Bachelor’s degree in Computer Science, Information Security, Engineering, or related field (or equivalent experience).
2 - 3 years’ experience in Information Security, SOC operations, or related IT security roles (experience in a bank, fintech, or financial institution is a strong advantage).
Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, Azure Sentinel, ELK, or similar).
Practical experience with vulnerability scanning tools (e.g., Qualys, Nessus, OpenVAS, etc.) and patch management processes.
Familiarity with security frameworks and standards: ISO 27001, NIST CSF, CIS Controls, PCI-DSS, and NDPR.
Exposure to cloud platforms (AWS, Azure, GCP) and their native security controls is an advantage.
Good understanding of security incident handling.
Strong communication skills.
Ability to interpret logs from firewalls, IDS/IPS, proxies, servers, and applications.
Solid understanding of networking, operating systems, and common attack techniques (phishing, malware, ransomware, web attacks, etc.).
Analytics Skills.
Problem Solving Skills.

How to Apply

To apply for this role, click the Apply button on this page and follow the instructions.

https://hris.peoplehum.com/ehire/jobs/71ed8aa0-b6e3-49bf-937e-31553a725eba/54487e7a-87b1-4b9e-b061-3b5174004cec?source_name=PEOPLEHUM_EXTERNAL&source_type=Direct&locale=en-US

Apply Now