Lead Information Security Analyst - Remote

Our client is seeking a highly experienced and strategic Lead Information Security Analyst to build and manage their cybersecurity posture. This is a fully remote, leadership role, offering the opportunity to establish and execute comprehensive security strategies for our organization. You will be responsible for protecting our digital assets, systems, and sensitive data from evolving threats. This role requires a proactive, hands-on leader who can operate independently and guide security initiatives.

Responsibilities: Develop, implement, and maintain robust information security policies, procedures, and standards across the organization. Oversee and manage the security operations center (SOC) functions, including threat detection, incident response, and forensic analysis. Conduct regular vulnerability assessments, penetration testing, and security audits to identify and remediate risks. Design and implement security controls for networks, applications, and cloud environments (AWS, Azure, GCP). Manage security awareness training programs for all employees to foster a security-conscious culture. Lead the incident response team during security breaches, coordinating containment, eradication, and recovery efforts. Stay current with emerging cybersecurity threats, vulnerabilities, and technologies, and adapt security strategies accordingly. Evaluate, recommend, and implement new security technologies and solutions. Collaborate with IT teams to ensure secure system configurations and architectural designs. Develop and manage the information security budget. Ensure compliance with relevant data privacy regulations and industry standards (e.g., GDPR, ISO 27001). Develop and maintain business continuity and disaster recovery plans. Provide expert security guidance and support to business units and leadership. Mentor and guide junior security analysts and team members. Create comprehensive security reports for management and relevant stakeholders. Qualifications: Bachelor's or Master's degree in Computer Science, Information Security, Cybersecurity, or a related field. Minimum of 7-10 years of progressive experience in information security, with a focus on security operations, incident response, and risk management. Proven experience in developing and implementing enterprise-wide security strategies and programs. Deep understanding of network security, endpoint security, application security, cloud security, and cryptography. Hands-on experience with SIEM tools, IDS/IPS, firewalls, endpoint detection and response (EDR) solutions, and other security technologies. Strong knowledge of incident response methodologies and forensic investigation techniques. Experience with vulnerability management and penetration testing. Excellent analytical, problem-solving, and decision-making skills. Strong leadership, communication, and interpersonal skills, with the ability to influence stakeholders at all levels. Relevant security certifications such as CISSP, CISM, CISA, or OSCP are highly desirable. Ability to work independently and manage multiple priorities in a remote environment. Experience with scripting languages (e.g., Python, PowerShell) for security automation is a plus. This is a pivotal role for an experienced security leader to shape the future of our organization's cybersecurity landscape, based in **Abuja, Federal Capital Territory, NG**, but fully remote.