Dangote Group

Manufacturing

IT Governance, Risk & Compliance Specialist

Job details

Contract Type

Description

Qualification and Experience

  • Bachelor’s degree in IT, Computer Science, Engineering, Information Systems, Accounting/IS, or related field.
  • 6 - 10 years’ experience in IT governance, IT audit, risk management, or compliance.
  • Certifications in CISA, CRISC or CISM; ISO 27001 Lead Implementer / Lead Auditor; COBIT Foundation
  • Experience in complex environments (manufacturing, refinery, cement, FMCG, logistics) preferred.


Responsibilities

Governance & Policy Leadership

  • Lead the development, implementation, and continuous improvement of IT governance frameworks, policies, standards, and procedures
  • Ensure alignment of IT governance practices with enterprise risk management and business objectives
  • Drive adoption and enforcement of IT policies across business units, plants, and shared services

IT Risk Management Oversight

  • Define and maintain the Group’s IT risk management framework and methodology
  • Review and validate IT risk assessments across infrastructure, applications, and cloud environments
  • Provide oversight of the IT risk register and ensure timely remediation of high-risk items
  • Advise leadership on risk exposure, mitigation strategies, and residual risk acceptance

Compliance & Control Governance

  • Define IT control standards aligned with ISO 27001, NIST, COBIT, and regulatory requirements
  • Oversee IT General Controls (ITGC) framework and ensure effectiveness of key controls
  • Review control testing results and ensure remediation of identified gaps
  • Monitor overall IT compliance posture across the Group

Audit &Regulatory Engagement

  • Act as primary liaison for Internal Audit, External Audit, and regulatory assessments
  • Review audit findings and drive remediation strategies across IT functions
  • Ensure audit readiness and completeness of governance documentation

Data, Cloud & Third Party Risk Compliance

  • Provide oversight on cloud governance, data protection, and third-party risk management practices
  • Ensure shared responsibility models are clearly defined and enforced
  • Review vendor compliance with cybersecurity and regulatory requirements


Start hiring with Fuzu

Recruit better talent faster - on your own or with our support.

Explore recruitment platform

Don’t miss your chance to work at Dangote Group. Enter your email to start your application now