M-Pesa Africa - Senior Specialist – Cyber Security Governance Risk & Compliance

About M-Pesa Africa

At M-Pesa Africa, we’re the heroes that make things happen.​

We are a united, energetic and passionate team. A place where leaders coach, teams connect, and everyone is empowered to go further, faster. A place where heroes become superheroes; through growth, opportunity, and the chance to work with the best minds in FinTech. ​

We are Africa’s largest FinTech providing services to more than 60 million customers and 5 million businesses solutions across Financial Services, Enterprise, Merchant and Retail. We are now well on our way to becoming the preferred digital payment method across the markets that we serve, for both in-store, remote and online payments. With headquarters in both Kenya and South Africa, we serve markets that include Kenya, Tanzania, DRC, Lesotho, Ghana, Egypt, Ethiopia, and Mozambique. 

About the Role

Reporting to the Manager, Cyber Security Governance Risk & Compliance you will be responsible for ensuring that the organization’s Cyber Security risks are under explicit management control and as well coordinate strategic integration of Cyber Security programs within M-Pesa Africa. They will be part of the team that drives compliance to internal and global cyber security related policies and standards, Vodafone Cyber Health & Adaptive Risk Method (CHARM)controls and applicable Kenyan laws and regulations.

 

In this role you will be responsible for:

• Continually reviewing and updating security policies, standards, and guidelines in response to the ever-changing cyber threats in coordination with the Risk Management team.
• Monitoring and driving compliance to internal and global cyber security related policies and standards, Vodafone Cyber Health & Adaptive Risk Method controls and applicable Kenyan laws and regulations.
• Coordinating stakeholders to deliver on targets or agreed business outcomes.
• Coordinating periodic independent assurance of critical products and services.
• Coordinating implementation of recommendations from independent assessments.
• Conducting Cyber Risk Assessments to determine cyber risk profile and define treatment plans.
• Recommending Cyber Security services improvement plans.
• Coordinating projects handover process within the cyber security functions.
• Continually reviewing, implementing and proposing improvements of the user access governance process.
• Coordinating periodic cyber security knowledge transfer, awareness sessions and phishing simulations to staff in line with strategy.
• Participating actively in cyber security events and trade shows, reporting and presentations.

Apply if you have: 

• Experience with the Vodafone Cyber Health & Adaptive Risk Method (CHARM) Program;
• Minimum of 3 years Information Security Governance and Compliance Frameworks;
• Experience in design, delivery and support of Information Security solutions to customers will be and added advantage;
• At least one professional Information Security Qualification: CISSP/CISM/CISA;
• Advanced competencies in Network Security: CCNP or CCIE (Security);
• Advanced competencies in Microsoft, Linux or Unix Operating Systems administration;
• Advance competencies experience in Information Security Technologies;
• Good communication skills and team player;
• Experience in the use of security tools;
• Project management skills, and proven task execution (getting things done)
• Superior Report writing skills;
• Analytical Thinking.

We are happy if you have:

• Experience in working with multi-cultural geographically distributed teams

Our commitment to you:

• A fair and unbiased selection process
• A robust  total reward scheme 
• Dedicated support and mentoring/coaching 
• An opportunity to work with passionate life-long learners
• An opportunity to develop and progress – plus a solid dedication to work-life integration. It all means you’ll have everything you need to advance your career and achieve your full potential.

We are the leading telecommunication company in East Africa. Our purpose is to transform lives by connecting people to people, people to opportunities and people to information. We keep over 42 million customers connected and play a critical role in the society, supporting over one million jobs both directly and indirectly while our total economic value was estimated at KES 362 Billion ($ 3.2 billion) for the 12 months through March 2021. We are listed on the Nairobi Securities Exchange (NSE) and with annual revenues of close to KES 298 Billion ($2.5 billion) as at March 2022. We were founded in 1997 as a fully owned subsidiary of Telkom Kenya before a 40 percent acquisition by Vodafone Group PLC in May 2000, and a public offering of 25 percent shares through the NSE in 2008. Under the management of Vodafone Group PLC, we welcomed Michael Joseph, as our first CEO, a few months later in July of 2000. He led the company’s growth to accommodate 16.71 million subscribers from the previous 20,000, largely owing to innovative products like M-PESA in 2007.