Threat Intelligence and Vulnerability Management Associate (Hybrid)


  2026-07-17
  Lagos, Nigeria
  N100,000
  Information Technology

Duplo is building the platform to power the next generation of financial services. Our mission is to help companies expand financial access for all. Our simple and powerful banking-as-a-service API helps companies quickly launch financial products.

We are recruiting to fill the position below:

Job Title: Threat Intelligence and Vulnerability Management Associate

Location: Lagos (Hybrid)

Job Description

  • We are looking for a Threat Intelligence & Vulnerability Management Associate (Contract) who will support cyber threat intelligence operations, vulnerability assessments, penetration testing coordination, remediation tracking, risk reporting, compliance monitoring, and security governance initiatives across infrastructure, applications, cloud environments, and third-party ecosystems.

Responsibilities
Threat Intelligence Management:

  • Produce threat intelligence advisories, alerts, and situational awareness reports.
  • Track emerging cyber threats, ransomware campaigns, vulnerabilities, and attack trends relevant to the financial sector.
  • Collaborate with SOC, Incident Response, and Engineering teams during security investigations and incidents.
  • Monitor and analyze cyber threat intelligence feeds, indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs).
  • Conduct threat hunting activities and provide actionable intelligence to relevant stakeholders.

Vulnerability Management:

  • Ensure timely patch management coordination with infrastructure and application teams.
  • Coordinate periodic penetration testing and remediation activities.
  • Analyze vulnerability trends and provide risk-based recommendations to management.
  • Maintain vulnerability dashboards, risk registers, and remediation trackers.
  • Validate remediation actions and ensure closure of identified vulnerabilities within agreed timelines.
  • Conduct vulnerability assessments across servers, endpoints, databases, applications, cloud, and network devices.

Governance, Risk & Compliance (GRC):

  • Maintain risk registers, exception registers, and compliance evidence repositories.
  • Support compliance with regulatory and industry requirements, including CBN Cybersecurity Framework, NDPC, ISO/IEC 27001, ISO/IEC 22301, ISO/IEC 20001, and PCI DSS.
  • Assist in policy development, control reviews, and cybersecurity governance reporting.
  • Support internal and external audits, regulatory examinations, and compliance reviews.
  • Perform cyber risk assessments and control effectiveness reviews.

Security Monitoring & Reporting:

  • Monitor vulnerability remediation SLA compliance.
  • Develop and maintain cybersecurity metrics, dashboards, and executive reports.
  • Provide periodic reports on cyber risks, threat exposure, and compliance posture.
  • Support continuous improvement of cybersecurity controls and operational resilience.

Stakeholder Engagement:

  • Conduct awareness sessions on cyber threats and vulnerability management best practices.
  • Provide security advisory support for projects, system upgrades, and digital transformation initiatives.
  • Work closely with IT Engineering, DevOps, Risk & Compliance teams.

Requirements

  • 2-3 years’ experience in cybersecurity operations, vulnerability management, threat intelligence, and GRC.
  • Experience within banking, fintech, telecommunications, or highly regulated industries is an advantage.
  • Strong knowledge of cybersecurity principles, including threat intelligence, vulnerability management, incident response, SIEM tools, cloud security fundamentals, security governance, and regulatory compliance.
  • Bachelor’s Degree in Computer Science, Information Security, Cybersecurity, Information Technology, Engineering, or related discipline.
  • Excellent analytical thinking/problem solving skills
  • Ability to analyze security risks, solve problems, communicate effectively, collaborate with stakeholders, maintain confidentiality, and demonstrate strong attention to detail and continuous learning.
  • Strong knowledge of cybersecurity principles, including threat intelligence, vulnerability management, incident response, SIEM tools, cloud security fundamentals, security governance, and regulatory compliance.
  • Relevant certifications such as CEH, Security+, CySA+, CTIA, CISSP, CISA, CRISC, ISO 27001 Lead Implementer/Auditor, COBIT 2019 Foundation, or CGRC are preferred.
  • Excellent communication and reporting skills

Salary
N100,000 / month.


Click link to Apply





Get the Latest Jobs Delivered to Your Inbox