Summary
Date Posted: Friday, December 09, 2022 , Base Salary: Not Disclosed

JOB DETAILS:
Detailed Description
• Reporting to the Senior Manager, Cyber Security Strategy & Design, the role holder will lend support in ensuring all new and existing systems/products/services comply with Safaricom's security policies & standards and other industry best practices e.g. ISO27001, CIS etc. The candidate will also provide timely security assurance reports and advice to the business when required even with very tight timelines.

Key Responsibilities
• Conduct periodic security reviews, vulnerability assessments & penetration tests across all of Safaricom’s systems/infrastructure.
• Ensure all new and existing systems/products/services comply with Company's security policies & standards and other industry best practices e.g. ISO27001, CIS and Kenya Data Protection Act.
• Provide timely and quality security assurance reports and advice to the business when required even with very tight deadlines.
• Do regular follow ups with system custodians/owners to ensure any security risks identified are addressed within the agreed timelines.
• Define Cyber Security metrics and report periodically on security compliance across all networks/systems.
• Research on new threats/technologies/vulnerabilities/security design principles etc.

Qualifications
• Degree in Information Security/Computer Forensics/Computer Science/Information Technology or other relevant Technical Degree.
• Information security certifications e.g. CEH/CISSP/CISM/CISA/GIAC/CPTP/OSCP.
• Advanced Networking certifications: CCNA/CCNP/CCSP/CCIE are also preferred.
• Certifications in Microsoft Windows and Linux/Unix Operating Systems.
• Demonstrate competency in the use and administration of ethical hacking tools e.g. KALI Linux, Metasploit, Nexpose, Nessus, Nmap, BurpSuite.
• Minimum of 5 years’ working experience in Information Systems Security – e.g. Ethical Hacking, Penetration Testing, Vulnerability Assessments, ICT Audits, Pre-and-Post Implementation System Reviews.
• Minimum of 5 years’ working experience in Networking and Operating Systems e.g. Cisco, Huawei, Windows (All), Unix, Linux.
• Minimum of 3 years’ working experience in Web and Mobile applications technologies e.g. Java, Python, PHP, Javascript, CSS, Apache, Nginx, IIS.
• Working knowledge of databases e.g. Oracle, MSSQL, MongoDB, Postgress will be an added advantage.
• Working knowledge of Virtualization & Microservices technologies e.g. VMware, Open shift, Kubernetes, Docker will be an added advantage.
• Working knowledge of Cloud technologies e.g. AWS and Azure will be an added advantage
• Working knowledge and experience in DevSecOps technologies and practices i.e. AGILE, Jenkins, Jira, Github, Gitlab will be an added advantage
• Working knowledge of Mobile and GSM technologies e.g. Android, IOS, 2G, 3G, LTE, USSD will be an added advantage.
• Excellent communication skills and a good team player.
• Excellent time management skills i.e. getting things done in a timely manner.
• Excellent report writing and presentation skills.
• Very analytical and keen on details.
• Customer obsessed.

Work Hours: 8

Experience in Months: 60

Level of Education: Bachelor Degree

Job application procedure
• Last Date to Apply: Dec 14, 2022
• Interested and qualified? Click here to apply

All Jobs

QUICK ALERT SUBSCRIPTION