Regulatory and Compliance Officer

About the job We are seeking a Regulatory & Compliance Officer with solid technical security knowledge to bridge the gap between regulatory requirements and technology implementation. This role ensures that regulatory obligations are not just documented, but technically enforced across infrastructure, applications, cloud environments, and digital banking platforms. The ideal candidate understands how compliance maps to firewalls, logs, encryption, access control, APIs, and cloud security configurations. Core Responsibilities Regulatory Compliance & Interpretation Interpret financial and data protection regulations and translate them into technical and operational controls. Ensure compliance with Central Bank guidelines and fintech regulations. Liaise with regulators and manage regulatory examinations. Prepare and submit regulatory returns and statutory reports. Technical Compliance & Security Oversight Validate implementation of security controls across systems. Review firewall rules, access controls, IAM policies, and encryption standards. Ensure secure configuration baselines are maintained. Review vulnerability assessment and penetration testing reports. Track remediation of critical and high-risk findings. Validate logging, monitoring, and incident response readiness. Data Protection & Governance Ensure compliance with National Data Protection Commission regulations (NDPA/NDPR). Oversee Data Protection Impact Assessments (DPIA). Validate encryption and data retention controls. Manage breach notification processes. Financial & Security Standards Compliance Oversee compliance with: PCI-DSS NDPA Central Bank Of Nigeria AML/CFT KYC regulations ISO 27001 controls Map regulatory requirements to technical controls. Support security audits and QSA assessments. Audit & Risk Management Maintain compliance risk register. Conduct control effectiveness reviews. Coordinate internal and external audits. Provide compliance dashboards to executive management. Policy, Training & Awareness Develop compliance and information security policies. Conduct regulatory and security awareness sessions. Promote accountability across business and technical teams. Requirements Required Qualifications Bachelor’s degree in Law, Cybersecurity, IT, Finance, or related field. 3+ years experience in fintech, banking, or regulated digital environments. Strong understanding of both regulatory frameworks and technical security controls. Experience working with DevOps, Security, or Infrastructure teams. Technical Knowledge Required Understanding of: Cloud security (AWS/Azure/GCP basics) IAM and access control models Encryption standards (TLS, AES) Logging & SIEM concepts Vulnerability management lifecycle API security principles Ability to read and interpret technical security reports. Preferred Certifications CISM or CISSP CAMS ISO 27001 Lead Implementer / Auditor CDPO PCI Internal Security Assessor (ISA) Core Competencies Regulatory interpretation with technical mapping ab