Data Protection Officer (Remote) at Moniepoint Incorporated

Job Description

Moniepoint Incorporated is hiring a Data Protection Officer to support its compliance and privacy operations across regulated environments. The role focuses on implementing and maintaining data protection frameworks in line with the Nigeria Data Protection Act (NDPA) 2023, NDPC regulations, and other global privacy standards.

The successful candidate will oversee privacy governance, data subject rights management, compliance audits, vendor risk management, breach response, and regulatory engagement while working closely with cross-functional teams.

Job Responsibilities

• Develop, implement, and monitor compliance with Data Privacy policies, procedures, and regulatory requirements including NDPA 2023, NDPC directives, and CBN regulations.
• Maintain and update the Record of Processing Activities (RoPA) and coordinate Data Protection Compliance Audits.
• Manage Data Subject Access Requests (DSARs) and ensure timely handling of requests related to access, rectification, erasure, restriction, objection, and portability.
• Conduct and review Data Protection Impact Assessments (DPIAs) for products, systems, vendors, and operational processes.
• Identify and mitigate data privacy risks in collaboration with IT, Risk, and Compliance teams.
• Coordinate privacy awareness campaigns and employee training programmes across departments.
• Monitor developments in Nigerian and international data protection laws and recommend compliance updates where necessary.
• Oversee third-party data processor due diligence and ensure Data Processing Agreements (DPAs) are properly maintained.
• Manage data breach investigations, incident registers, regulatory reporting, and post-incident reviews within statutory timelines.
• Support Business Continuity Planning (BCP) and Disaster Recovery (DR) initiatives relating to data protection and recoverability.
• Prepare documentation, reports, and responses for regulators including NDPC, NITDA, and NCC.
• Maintain regulatory filings, registrations, renewals, and compliance correspondence.

Job Requirements

• Bachelor’s Degree in Law, Information Technology, Computer Science, or a related discipline.
• 7–10 years of experience in Data Protection, IT Governance, Risk & Compliance (GRC), Cybersecurity, or related fields.
• Experience within financial services, fintech, or regulated institutions is an advantage.
• Professional certifications such as CIPP/E, CDPO, or CIPM from accredited institutions.
• Strong knowledge of the Nigeria Data Protection Act (NDPA 2023), NDPC regulations, GDPR, and other global privacy frameworks.
• Excellent understanding of data privacy principles, governance frameworks, and risk management processes.
• Familiarity with data lifecycle management and customer data handling in financial environments.
• Strong analytical, communication, documentation, and stakeholder management skills.
• Proficiency with data governance and compliance management tools.
• Ability to identify compliance risks and recommend practical solutions.
• Strong organizational skills with the ability to work independently and collaboratively.

Hiring Process

• Preliminary phone interview with the recruiter
• Technical interview with the Hiring Manager
• Behavioural and technical interview with a member of the Executive Team