Cyber Security Analyst

KEY RESPONSIBILITIES

• Provide tactical security expertise across various security domains as assigned from time to time in support of the Cybersecurity Specialists
• Conduct Vulnerability Assessment and Penetration Testing and configuration review for infrastructure, network, web application, mobile application, endpoints, email & cloud security.
• Provide technical security related support to ICT projects and changes from inception through to successful implementation.
• Identify and provide solutions for cybersecurity related problems & anomalies and report violations of security policies.
• Conduct continuous research and provide technical security expertise on threats affecting KCB Group information assets.
• Monitor the bank’s ICT systems for indicators of compromise, investigate incidents and take appropriate steps to contain, neutralize and prevent breaches from happening in the future.
• Participate in activities aimed at mitigating information and cyber risks identified by various assurance teams such as Information Risk and Audit.
• Continuous support of the Cybersecurity Identity Access Management systems and associated governance process.
• Contribute to development of KCB Group security policies and baseline standards.
• Define, create, and deliver status reports and relevant metrics to the Senior Manager, Assurance

DAILY RESPONSIBILITIES: NOT MORE THAN 5 OF THE MOST TYPICAL

• Support implementation. Maintenance and administration of Cybersecurity tools and systems.
• Send and receive notifications to the System administrators of vulnerabilities within the infrastructure. 
• Prepare technical assessment reports.
• Administration and support of various Cybersecurity toolsets, platforms, and processes.
• Perform any other security task(s) as it may be assigned by the cyber security leadership.

CHALLENGES: GIVE ONE EXAMPLE OF THE CHALLENGES ENCOUNTERED IN THIS JOB

The business requires that its services are deployed in a timely fashion and as securely as possible. This is to improve time-to-market, as well as reduce risks while ensuring compliance to cybersecurity regulations. The organization may lose data or its competitive edge, incur financial losses or be exposed to cyber, reputational, and regulatory risks, otherwise. Striking a balance between speed of deployment and an acceptable level of security is critical.
 

MINIMUM POSITION QUALIFICATION REQUIREMENTS

Academic & Professional

The Person

For the above position, the successful applicant should have the following: 

• A Bachelor’s degree-BSc. Information Technology / Computer Science / Telecommunications / Engineering (Electrical, Electronic).  
• Master’s degree in MBA/MSC is an added advantage
• Professional qualification/certification in OSCP: Offensive Security Certified Professional, CEH: Certified Ethical Hacker,CISA:Certified Information Systems Auditor, CISM: Certified Information Security Manager , CISSP: Certified Information Systems Security Professional,SSCP: Systems Security Certified Practitioner, CompTIA Security+, CSX-F: Cyber Security Fundamentals, SSCP: Systems Security Certified Practitioner, CISA: Certified Information Systems Auditor, Certified in Cybersecurity, CISM: Certified Information Systems Manager, CISSP: Certified Information Systems Security Professional, CCNA: Cisco Certified CyberOps Associate, CCNA: Cisco Certified CyberOps Professional, CompTIA Security+ (Plus), CRISC: Certified in Risk and Information System Control, Microsoft Azure Security, ECSA: EC-Council Certified Security Analyst (At least one is required)
• 1 years work experience in IT is required.  
• 1-year work experience in Cybersecurity is essential
• 1-year work experience in vulnerability management and Cybersecurity Identity Access Management is essential. 
• 1 year work experience in Banking / Finance is desired. 
• 1 year work Project Implementation and user training is desired.