Kenya
Trending
Job Description
Reporting to the Senior Manager – Cyber Security Governance, Risk and Control, the successful candidate will be responsible for ensuring that the organization’s cyber security risks are under explicit management control and as well coordinate strategic integration of cyber security programs within Safaricom.
He or she will be part of the team that drives compliance to internal and global cyber security related policies and standards, Vodafone Cyber Health & Adaptive Risk Method (Baseline controls) and applicable Kenyan laws and regulations
Responsibilities
Key Responsibilities:
- Lead in continual review and update of security policies, standards, and guidelines in response to the ever-changing cyber threats in coordination with Enterprise Risk Management team.
- Drive compliance to internal and global cyber security related policies and standards, Vodafone Cyber Health & Adaptive Risk Method (Baseline controls) Program, and applicable Kenyan laws and regulations.
- Lead in coordination of stakeholders to deliver on targets or agreed business outcomes.
- Lead in coordination of periodic independent assurance of critical products and services and environment team’s readiness for external audits.
- Coordinating implementation of recommendations from independent assessments.
- Lead Cyber security risk assessments to determine cyber risk profile and define treatment plans.
- Recommend cyber security services improvement plans.
- Coordinate projects handover process within the cyber security functions.
- Continually review, implementation and improvements of the user access governance process.
- Coordinate periodic cyber security knowledge transfer, awareness sessions and phishing simulations to staff in line with strategy.
- Participate actively in cyber security events and trade shows, reporting and presentations.
- Communications, reporting and presentations skills.
Qualifications
- Bachelor’s degree in computer science/ Telecomm /electrical Eng./ Information Technology (or equivalent) from a recognized university.
- At least one professional Information Security Qualification: CISM/CISA/CISSP/CEH/CRISC.
- At least 4+ years proven experience in Information Security Governance and Compliance Frameworks; Cyber Security related Standards (CIS, ISO 27001, PCI-DSS, etc.).
- Proven experience with GDPR, Kenyan Data Protection laws, CBK guidelines on Cyber Security amongst others.
- At least 3+ years of hands-on experience in managing Cyber Security technologies and operations.
- Experience in the use of security tools.
- Project management skills, and proven task execution (getting things done)
- Good communication skills and team player
- Superior Report writing skills
- Analytical Thinking
How to apply
If you feel that you are up to the challenge and possess the necessary qualification and experience, kindly proceed to update your candidate profile on the recruitment portal and then Click on the apply button. Remember to attach your resume
About Us
We are the leading telecommunication company in East Africa. Our purpose is to transform lives by connecting people to people, people to opportunities and people to information. We keep over 42 million customers connected and play a critical role in the society, supporting over one million jobs both directly and indirectly while our total economic value was estimated at KES 362 Billion ($ 3.2 billion) for the 12 months through March 2021.
We are listed on the Nairobi Securities Exchange (NSE) and with annual revenues of close to KES 298 Billion ($2.5 billion) as at March 2022. We were founded in 1997 as a fully owned subsidiary of Telkom Kenya before a 40 percent acquisition by Vodafone Group PLC in May 2000, and a public offering of 25 percent shares through the NSE in 2008.
Under the management of Vodafone Group PLC, we welcomed Michael Joseph, as our first CEO, a few months later in July of 2000. He led the company’s growth to accommodate 16.71 million subscribers from the previous 20,000, largely owing to innovative products like M-PESA in 2007.
