Computer/it jobs at Equity Bank, KCB Bank, St. Paul’s University, Penda Health and other companies

JOB DETAILS:
IT Risk Specialist

The Role
The IT Risk Specialist role is highly technical and challenging with opportunities to be part of a team that will have a meaningful impact. The is expected to possess a adequate understanding of both cyber security and information technology and should understand concepts including computer networking, web and native application functionality, operating system functionality, cloud services, corporate network environments and operations. He should be able to learn advanced concepts such as endpoint protection evasion, covert operations, and tailored exploit development.
The role leverages previous penetration testing and Red Team experience. This may involve delivering Threat Intel-led Red Team exercises, developing social engineering test campaigns and the associated collateral, executing phishing campaigns and attempting to compromise internet-facing systems, conducting privilege escalation and lateral movement within the group’s networks, hunting for objectives with little-to-no information provided at hand and attempting to exfiltrate data from the network; all while avoiding detection from the bank’s security operations teams. The role will require you to perform exploits at scale while remaining stealthy, identify and exploit misconfigurations in the corporate infrastructure, quickly and effectively parse data, present relevant data in a digestible manner, think well outside the bo

Responsibilities
• Support the review and update of the technology risk management framework on an annual basis with the changes in the environment.
• Review technology policies, processes and procedures identify potential opportunities for improvement and alignment.
• Working across the technology department to analyze and better understand their risk profile.
• Review IT initiatives from technology risk perspectives and provide advisory and recommendation.
• Supervise the IT disaster recovery measures deployed across the group.
• Defining a risk and control methodology and framework to use in conducting risk assessments.
• Proactively managing risks so that there are no major incidents, breaches, or examples of non-compliance.
• Adhere to, advise, oversee, monitor and enforce enterprise frameworks and methodologies that relate to technology controls activities.
• Support the definition of the technology risk appetite statements
• Monitor Key Risk Indicators (KRIs) and report on deviation from defined technology risk appetite.
• Assist with the Technology Risk reporting operations, including scheduling key monthly meetings, monitoring key milestones, escalation of past due activities, problem triage and management.
• Increase awareness and enhance risk culture across the organization and provide day to day risk and control advise as trusted 2nd line subject matter expert.

The Ideal Candidate
• Bachelor’s degree in Computer Science, Information and Cyber Security, Technology or equivalent
• 5 years of relevant in information security or risk management, audit, information assurance preferably in Banking and Financial sector
• Must have CISA (Certified Information Systems Auditor) certification
• CISSP (Certified Information Systems Security Professional) * Added advantage
• Must have CCSP (Certified Cloud Security Professional) certification
• Other ISACA related Certification (e.g., CISM, CRISC or CGEIT) * Added advantage
• Consistently able to demonstrate or articulate value proposition
• Candidates must have hands on experience in performing risk assessments in diverse technology environments
• Good understanding of technology infrastructure, networks, and database management systems.
• Good understanding of cloud computing technologies and Microsoft Azure environment.
• Expertise in Linux machine recommended Kali and parrot.
• Familiar with various operating systems and databases
• Ability to both assess priorities and to focus on work in a structured fashion which delivers results
• Sound judgement and anticipation
• Strong integrity, independence, and resilience
• Deliver with minimal supervision.
• Avid researcher of best practices and happenings in the global cyber space.
• Engage key stakeholders on actions required.
• Team player and contributor
• Strong problem-solving, persuasive skills and an ability to grasp abstract concepts and complex technology situations to challenge the status quo and further develop and build on our IT Risk Management Framework.
• Excellent communication skill, both verbal and written, with the ability to initiate and lead conversations with technology and business leaders and risk colleagues regarding anticipated and emerging issues.


JOB DETAILS:
Cybersecurity Specialist, Data Security & Privacy

The Position:
The Information Security Specialist, Data Protection and Privacy is responsible for maintaining the integrity and confidentiality of the organization’s data while in use, in motion and in situ, in the Group’s information systems by implementing, maintaining, and monitoring effective data security controls and policies. The holder is also responsible for the deployment, testing and maintenance of data loss prevention systems, information protection security systems, and enforcement of database security controls.

Key Responsibilities:
• Recommend, implement, administer, optimize, and support appropriate tools and solutions offering data loss prevention, and information protection in compliance with the Bank’s policies and standards.
• Continuously review, enforce, and report on database and data store security controls that cover the major database management systems such as Oracle, Microsoft SQL Server, MySQL, PostgreSQL.
• Collaborate with the Cybersecurity Intelligence and Security Operations Centre (CiSOC) in the continuous monitoring and defence of the Bank’s data, information and databases from data leakage, intrusions, unauthorized access, unauthorized modification as well as assist to detect, report, and respond to data security violations/incidents.
• Develop Data and Database Security Technical Guidelines and Minimum Configuration Baseline Standards in line with industry best practices and technologies commensurate with risk and regulatory requirements and implementing the same cost effectively.
• Implement and enforce technical security controls to achieve data protection objectives set out by the organization and regulatory requirements such as the Kenya Data Protection Act, and CBK Guideline for Cybersecurity
• Define, create, and deliver compliance reports and relevant metrics in Data Security & Privacy to senior management, including violations, utilizing automation as deemed fit.
• Provide data security and privacy related support to projects from inception through to successful implementation in a bid to ensure that data security and overall information protection measures are built in from project inception.
• Conduct continuous data security reviews and data discovery assessments to determine any data security violations as well as efficacy of implemented countermeasures.
• Provide input into Information Security risk and control self-assessments by leveraging specialized knowledge in data security, databases, privacy, and information protection.
• Research on and provide technical data security and privacy expertise in the Group Information Security department, conduct data security awareness and user training sessions across the group.

The Person:
For the above position, the successful applicant should have the following:
• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering (Electrical/ Electronic) or related field.
• Professional qualifications in any one of the following:
• Information Security Certification in CISA/ CISM/CISSP/ Security +.
• Oracle Database certifications in OCP/ Oracle Database Security/ Microsoft Database certifications e.g. MCDBA.
• Data security and/ or privacy certifications in either Certified Data Privacy Solutions Engineer/ Certified Information Privacy Professional.
• 5 years Technology experience with at least 2 years in Cybersecurity.
• 1 years’ experience in Database Administration/ Data/ Data Security.
• Experience in administering data/ information protection and privacy solutions will be desired.
• Strong interpersonal and communication skills.


JOB DETAILS:
Qualifications / Experience Required
• Basic Degree in Library & Information Science, (IT/ ICT) from a recognized University.
• Minimum of Three (3) years working experience as a systems Librarian preferably in an academic library.
• Possesion of IT Certification will be an added advantage


JOB DETAILS:
Role Summary:
This position offers the exciting opportunity to man the helpdesk in offering first level technical support across our entire company! We’re looking for a self-starter who will be responsible in triaging technical requests and gathering more information relevant for escalations. The ideal candidate would have strong knowledge and experience help desk services.

Responsibilities:
• Be the first level support for all incoming tickets and telephone calls.
• Respond to issues raised through helpdesk tickets and support line calls within the set first response time of 15 minutes. Ensure that all issues raised have been captured in a ticket.
• Address all level 1 support tickets and escalate to the appropriate specialists for action any tickets that cannot be addressed on level 1.
• Analyze tickets on a regular basis and create relevant reports that would otherwise be used to improve service delivery.
• Create and distribute learning self-help material as it may be found necessary.
• Update the service desk KPIs dashboard and share related updates to the team on a weekly basis.
• Configure and maintain the service desk platform as per the service desk SOPs, workflows and metrics.
• Provide support to the other teams on projects and user training when required.

Requirements
• A diploma or higher qualification in IT or in a business-related discipline
• A minimum of 1 years’ experience in an IT helpdesk role
• An ITIL certification will be an added advantage.
• Great team player with drive for results and enjoys being part of a team


JOB DETAILS:
Software Development Engineering Lead

Position Overview
Are you passionate about building a strong team of engineers to develop reliable solutions for scale? Do you enjoy working in a high-performance environment and have a real passion for understanding key business needs and opportunities and driving towards measurable goals and results?
Our team is looking for an engineering lead who can take a team of strong engineers to the next level. The successful candidate will lead by example being the ones out in front, doing the new things, learning new/sharpening existing skills and tech and mentoring the team to enable them to solve problems. They should dig deep to understand root causes of issues and guide the team to identify long lasting solutions to issues. They will also be responsible to plan work to ensure optimal delivery and proper prioritization of work.

Required Skills & Experience:
Academic Qualifications
• Bachelor’s degree in Computer Science, Computer Engineering, Information System, Electrical Engineering or related fields.

Required Experience
• >=5 years of active development experience.
• >=3 years of relevant experience building and managing high performance engineering teams.
• Have understanding of the MVC framework and its components.
• Strong knowledge of Design & Architecture of the projects, .NET framework, ASP.NET, C#, VB.NET.
• Building full-stack solutions incorporating web front-end in React or Angular, mid-tier application logic and databases, ideally both relational and NoSQL databases.
• Experience in DevOps practice and site engineering practices for critical live site environments
• Experience in working using Agile tools such as Azure DevOps or Jira and using Git plus CI/CD tools.
• Experience generating metrics and reporting for audiences at all levels from users to senior level management.

Responsibilities
• Understand the why, the technologies in use, the client priorities, the team targets.
o Lead architecture, design, and development features and solutions with high quality with scale, drive cost and operational efficiency, continuous integration, and monitoring.
o Drive consistency, reliability, security, and performance across large environments with a service-centric approach.
o Provide oversight and accountability for technical decisions.
o Build a DevOps culture from how to develop identify the best solutions, how to develop them quickly, release them efficiently, evaluate their value and quality, identify improvements, address any issues effectively and track performance to ensure engineering and operation SLAs are met.
o Plan and prioritize work for your team, including collaborating with project stakeholders.
o Coach and mentor each team member on your team so they all learn, grow, and succeed.
o Constantly learn and grow as an engineering leader..


JOB DETAILS:
Staff Site Reliability Engineer (Traffic)/DevOps

Summary
We are looking for a Staff Site Reliability Engineer to support and develop the platform serving the world’s favorite encyclopedia to millions of people around the globe. Wikimedia’s Site Reliability Engineering (SRE) team is principally responsible for ensuring our global top-15 website, our public-facing services, and underlying infrastructure is healthy and developing further in support of Wikimedia’s mission.
We apply the best software engineering practices in our operations, and we publish all of our documentation, code, and configuration as open source.
We are a globally distributed and diverse team of engineers with a drive to explore, experiment, and embrace new technologies. If you find what we do interesting, if you are up to the challenge of improving the reliability and delivery of one of the Internet’s top websites, and you enjoy the idea of working in a remote-first role, we may just be the right place for you.

You are responsible for:
• Performing day-to-day operational/DevOps tasks on Wikimedia’s public facing infrastructure (deployment, maintenance, configuration, troubleshooting)
• Implementing and utilizing configuration management and deployment tools (Puppet, Kubernetes)
• Leading continuous improvement, by automating the installation, configuration and maintenance of services on our platform
• Assisting in the architectural design of new services and making them operate at scale
• Assisting in or leading incident response, diagnosis, and follow-up on system outages and alerts across Wikimedia’s production infrastructure
• Share our values and work in accordance with them

Skills and Experience:
• 8+ years experience in an SRE/Operations/DevOps role as part of a team
• Experience with shell and any scripting languages used in an SRE context (Python, Go, Bash, Ruby, etc., we use primarily Python), and configuration management tools (Puppet, Ansible, etc.)
• Experience with C, C++, Golang or Rust
• Experience with distributed caching systems: including their underlying algorithms and how to optimize their performance.
• A thorough, protocol-level understanding of TCP/IP, HTTP, and TLS
• Experience with package management on Linux systems (we use Debian)
• Comfortable with Open Source configuration management and orchestration tools (Puppet, Ansible, Chef, SaltStack)
• Good Linux system level skills
• History of automating tasks and processes, identifying process gaps, and finding automation opportunities
• Strong English language skills and ability to work independently, as an effective part of a globally distributed team

Additionally, we’d love it if you have:
• Experience with the use, maintenance and configuration of monitoring, metrics and logging infrastructure (Prometheus, Grafana, ELK, Icinga/Nagios, etc.)
• Experience with high-performance HTTP(S) caching proxy software, such as Varnish, Envoy Proxy, Apache Traffic Server, Nginx or HAProxy
• Experience with Linux kernel tuning for high traffic loads
• Developing/contributing to Free and Open Source software, or being part of an open-source community
• Experience with defining cross-team SLOs and their implementation

Other Jobs