May 7, NCBA Principal Engineer – Cyber Security Assurance Jobs in Kenya

may-7,-ncba-principal-engineer-–-cyber-security-assurance-jobs-in-kenya

NCBA Principal Engineer – Cyber Security Assurance Jobs in Kenya

Job Purpose Statement

The Principal Engineer, Cyber Assurance will be responsible for conducting security reviews on new and existing systems, products and services in compliance with the NCBA Digital Business security policies and industry best practices such as ISO27001, CIS, PCI DSS among others. They will also be responsible for providing timely security assurance reports and advice to the business when required even with very tight timelines.

The role will lead and coordinate all cyber security assurance activities in 5 markets (Kenya, Tanzania,

Rwanda, Ghana and Ivory Coast). They will manage external Penetration testing activities periodically for key systems.

Key Responsibilities & Percentage

  • Conducting Security Reviews for new and existing NCBA Digital systems: Perform security assessment on

    new and existing systems to identify cyber risks and ensure the necessary controls are in place. (40%)
  • DevSecOps Implementation: Drive the culture of implementing built in security controls end to end in

    the software development lifecycle and automate the security testing processes. (20%)
  • Research: Stay up to date with new trends in technology and cyber by continuously researching on

    emerging technologies and threats to ensure necessary controls are in place. (20%)
  • Leadership: Manage and coordinate cyber assurance initiatives by both internal and cyber security external teams. Define and report on key cyber metrics to senior management to measure return of

    investment in Cyber. (20%)

    Main Activities

  • Perform design reviews and provide cyber security input to ensure the necessary security controls are included from the beginning of new projects.
  • Perform threat modelling for the Digital Business systems to ensure threats are identified and mitigated.
  • Perform vulnerability assessments and penetration testing across NCBA Digital Business systems.
  • Perform compliance hardening reviews for the NCBA Digital Business systems.
  • Provide timely and quality security assurance reports to the business.
  • Do regular follow ups with system custodians to ensure identified risks are addressed within the

    agreed timelines.
  • Implement cyber assurance testing tools within the CI/CD pipeline to automate security testing.
  • Research on new technologies, threats and vulnerabilities to inform the necessary security controls and investments in cyber.
  • Continuously review and improve cyber processes to ensure efficient support to the agile process

    of software development.

    Qualification and Experience Requirements

  • A Bachelor’s degree in Computer Science, Information Technology or related field.
  • Minimum of 5 years’ working experience in Information Systems Security – e.g. Ethical Hacking,

    Penetration Testing, Vulnerability Assessments, ICT Audits, Pre-and-Post Implementation System

    Reviews
  • Information security certifications e.g. CEH/CISSP/CISM/CISA/GIAC/CPTP/OSCP
  • Minimum of 2 years’ working experience in Networking and Operating Systems e.g. Cisco,

    Huawei, Windows (All) and Linux.
  • Demonstrate competency in the use and administration of ethical hacking tools e.g. KALI Linux, Metasploit, Nexpose, Nessus, Nmap, BurpSuite etc.
  • Hands on experience in software development with major languages Java, C++, C# and practical experience using relation RDBMS e.g. Oracle and MS SQL etc.
  • Working knowledge of Cloud technologies in at least one of the following: AWS, Azure, Google

    and Huawei.
  • Working knowledge and experience in DevSecOps technologies and practices i.e. AGILE, Jenkins, Jira, Github, Gitlab etc… will be an added advantage
  • Excellent analytical, problem solving and reporting skills
  • A good knowledge of the systems and processes within Financial Services industry.
  • Experience in leading teams of security analysts will be an added advantage.

    How to Apply

    For more information and job application details, see; NCBA Principal Engineer – Cyber Security Assurance Jobs in Kenya

    Find jobs in Kenya. Jobs – Kenya jobs. Search our career portal & find the latest Kenyan job positions, career opportunities & jobs in Kenya.

    Jobs in Kenya – banking jobs, IT jobs, accounting jobs, NGO jobs, business administration, ICT, UN jobs, procurement jobs, education jobs, hospital jobs, human resources jobs, engineering, teaching jobs, and other careers in Kenya.

    Find your dream job from 1000s of vacancies in Kenya posted and updated daily – click here!

  • Click here to post comments

    Join in and write your own page! It’s easy to do. How? Simply click here to return to Africa Jobs.