Description

Jumia is a leading e-commerce platform in Africa. It is built around a marketplace, Jumia Logistics, and JumiaPay. The marketplace helps millions of consumers and sellers to connect and transact. Jumia Logistics enables the delivery of millions of packages through our network of local partners. JumiaPay facilitates the payments of online transactions for Jumia's ecosystem. With over 1 billion people and 500 million internet users in Africa, Jumia believes that e-commerce is making people's lives easier by helping them shop and pay for millions of products at the best prices wherever they live. E-commerce is also creating new opportunities for SMEs to grow, and job opportunities for a new generation to thrive.

With over 5,000 employees in more than 10 countries in Africa, Jumia is led by top talented leaders offering a great mix of local and international talents and is backed by very high-profile shareholders. Jumia is committed to creating sustainable impact in Africa. Jumia offers unique opportunities in a vibrant and booming environment, creating new jobs, new skills, and empowering a new generation. 

Responsabilities:

• Drive the transformation: from DevOps team to a DevSecOps team
• Promote the security-first culture - Deliver practical awareness training on information security standards, policies and best practices.
• Develop and implement Information Security policies and procedures. Test and validate that the business complies with applicable IS requirements;
• Assist the Business in managing policies, procedures and technical specifications to support audit efforts while ensuring compliance with group security policies;
• Determine and validate appropriate level of controls to safeguard sensitive data
• Partner with business stakeholders across the company to raise awareness on Information Security and Risk Management;
• Participate in real incident response, including steps to minimize the impact and then contributing to the investigation and post-mortem documentation.
• Carry out Risk Assessments, including completing accurate inventory reporting, data classification, threat analysis, and action plans

Requirements:

• Minimum of 5 to 7 years of experience in a combination of risk management, information security and IT jobs
• Understand and be familiar with statutory or regulatory compliance and best practices, such as: PCI DSS, ISO 27001, COBIT, SOX, GDPR;
• Relevant Certification (e.g. CISA, CISSP) or equivalent expertise
• Experience with Cloud environments (e.g. AWS, Azure, GCP).
• Experience in payments securiy/fintech environment will be considered a plus
• Fluency in English, both written and spoken.

We offer:

• A unique experience in an entrepreneurial, yet structured environment
• The opportunity to become part of a highly professional and dynamic team working around the world
• An unparalleled personal and professional growth as our longer-term objective is to train the next generation of leaders for our future internet ventures

Please send your CV in English. CV in other languages will not be considered.

Apply at: https://africainternetgroup.peoplehr.net/Pages/JobBoard/Opening.aspx?v=464f67b9-5b51-4f8d-a5f4-f82a8af27612