Security & Technology Risk Analyst

Who we are Moniepoint Inc. is Africa’s all-in-one financial ecosystem, helping 10 million businesses and individuals access seamless payments, banking, credit, and business management tools since 2019. As Nigeria’s largest merchant acquirer, it powers most of the country’s Point of Sale (POS) transactions. Through its subsidiaries, Moniepoint Inc. processes $22 billion monthly for its customers while operating profitably. Curious about what makes Moniepoint an incredible place to work? Check out posts on how we cultivate a culture of innovation, teamwork, and growth. About the role We are seeking a detail-oriented and analytically rigorous Security & Technology Risk Analyst to join our Information Security Assurance Team at Moniepoint. In this role, you will be instrumental in identifying, monitoring, and reporting on security and technology operational risks across our fintech ecosystem. You will translate complex risk data into actionable intelligence that enables executive leadership to make informed strategic decisions while ensuring our organization maintains the highest standards of regulatory compliance and operational resilience. As a financial technology company, trust and security are foundational to our brand. Your work directly contributes to Moniepoint's ability to safely expand into new markets, launch innovative products, and maintain the confidence of our customers and stakeholders. Conduct comprehensive risk assessments across security and technology domains (cloud, network, infrastructure, product, endpoint, third-party) using NIST Risk Management Framework, FAIR methodology, and qualitative/quantitative analysis methods. ● Perform Business Impact Analysis (BIA) on critical systems to determine Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO), collaborating with process owners to validate findings and maintain documentation as business operations evolve. ● Administer and maintain the security risk register with current and historical records, ensuring comprehensive documentation and audit evidence for regulatory examinations and internal/external audits. ● Guide development and documentation of risk treatment plans aligned with enterprise risk appetite, collaborating with cross-functional stakeholders (Engineering, Legal, DevOps, IT, Security) on prioritization, execution strategies, and integration into product development and operational processes. ● Track and validate execution of risk treatment plans, monitoring comp