Cyber Security Architecture & Assurance Senior Specialist Job, Kenyan Current IT Jobs 2021,

Role profile

Brief Description

Reporting to Head of Cyber Security (MPA), as the Senior Specialist – Cyber Security Architecture & Assurance, you will be responsible for:

  • Manage the Security and Privacy by Design Assurance (SPDA) processes
  • Ensure all new and existing systems/products/services comply with Company’s security policies & standards and other industry best practices
  • Define, analyze and implement the cyber security strategy and roadmap based on the evolving threat landscape and ensure risks identified are mitigated
  • Architect and design cyber security systems in line with best practices to ensure they meet user requirements including adequate security, capacity and
  • Managing Cyber security Planning and execution of the company and Group strategy, Capex budgets and Project deliverables, specifically related to Cyber security
  • Deliver the Cyber security posture of the company through Project initiatives, including but not limited to Cyber Security
  • Through projects facilitate implementation, management and optimization of Cyber Security policies, standards and procedures
  • ensure adequate CAPEX budget, resource and management focus is on cyber security risks
  • drive standards of excellence to achieve the Cyber Security strategy
  • Implement Cyber Security Projects and review Company Technology Projects to close MPA risks, Audit & Reviews (Internal and External)

Key Roles:

Impact on the business

  • Coordinate Project delivery and assessment of the Long-term cyber security baselines (CSBs) across all MPA relevant business areas and processes
  • Design effectively and efficiently implement Cyber Security controls Projects and requirements across MPA environments
  • Own demand planning and forecasting for Cyber security, for all systems, services and processes within the portfolio, working together with vendors and internal customers
  • Ensure all M-Pesa and third-party systems’ products, services and projects are compliant to the MPA minimum security requirements and Cyber Security Baselines (CSBs) before Go-Live
  • Management of the vulnerability scanning, patching and penetration tests for technology projects before Go-live
  • Coordinate all internal and external Pentest around Technology systems and processes and ensure all audit findings in these systems are closed within agreed timelines
  • Support risk assessments across Technology areas and input into risk reports (including risk management committee reports and audit committee reports) to management as and when requested

Customers, supplier,s and third parties

  • Ensure Cyber compliance with Legal, Regulatory and key stakeholders’ requirements across the Technology domains for all technology projects
  • Ensure Security is embedded in Technology Infrastructure (Mobile and Fix)including planning, designing, building and reviewing cycle
  • Create execution strategies that focuses on embedding Tech Security controls into existing developer and tester practices and methodologies to enhance effectiveness
  • Responsible for validation, timely completion and accuracy of Pre go-live Technology audit checklists and user access rights reviews
  • Ensure proper implementation, projects and change management processes compliance for all planned and emergency changes in Technology systems projects

Leadership, Planning and Human Resource Management

  • Manage all the Cyber security CAPEX budgets and planning, in alignment with the company and Group strategy
  • Manage the Cyber security subordinate resources (FTEs and contractors) for their tasks/job descriptions effective implementations
  • Skills development within Cyber security department
  • Performance Management of the Cyber security team
  • Provide input to Security Policies and requirements on Technology security methods and technologies
  • Provide regular and accurate management reporting on Cyber security Projects and Strategy
  • Build and manage relationships with key stakeholders to disseminate information and drive mitigating

Innovation and change

  • Drive continuous improvement through simplification and automation of key cyber security processes


  • Work closely with the projects management team to ensure secure development of software codes and products is adhered and maintained throughout the software development life cycle
  • Make recommendations for Cyber security service Improvement Plans and ensure actions are followed through to completion in a timely manner
  • Provide SME input to Cyber Security Policy requirements and procedures


  • Bachelor’s Degree in Electrical /Computer Science/ Information Technology (or equivalent) from a recognized university.
  • Advanced professional information security certifications g. CISSP/CISM/CISA/GIAC/CEH/CPTP/OCSP
  • Advanced Networking certifications: CCNA/CCNP/CCSP/CCIE/Network+/CompTIA also preferred
  • Certifications in Microsoft Windows and Linux/Unix Operating Systems g. MCSE, LPI, RHCE, CompTIA Linux+ etc…
  • Certifications in the use and administration of cyber security tools e.g. Firewalls/IDS/Content Filters/Antivirus
  • Demonstrate competency in the use and administration of ethical hacking tools g. KALI Linux, Metasploit, Nexpose, Nessus, Nmap, BurpSuite etc

Skills and Experience

  • Minimum of 3 years’ experience in implementing and administering Cyber Security Systems – g. Firewalls, IDS/IPS, VPN, Content Filters, Antivirus, Encryption tools etc…
  • Minimum of 3 years’ working experience in Information Systems Security testing – g. Ethical Hacking, Penetration Testing, Vulnerability Assessments, Pre-and-Post Implementation System Reviews, etc.
  • Experience in IT Networks and Systems Administration g. Cisco, Fortinet, Checkpoint, Huawei, Windows, Linux, Unix etc would be an added advantage
  • Working knowledge and experience in DevOps and Microservices technologies e. Docker, Kubernetes, Jenkins, Gitlab/Github etc… will be an added advantage
  • Excellent communication skills and team player
  • Excellent project and time management skills (getting things done in a timely manner)
  • Excellent report writing and presentation skills
  • Very analytical and logical thinker
  • Self-driven with minimal supervision
  • Customer focused

How To Apply

If you feel that you are up to the challenge and possess the necessary qualification and experience, please send your resume with your cell phone contact indicating your experience and why you are the most suitable candidate for the role, clearly quoting the job title and job reference to the address below.

[email protected]

N.B: Looking For A New Job? Find Your Next Job With Us. Click Here To Register Your CV. It’s Free.