Cybersecurity Specialist

KEY RESPONSIBILITIES 

• Implement and support the Bank’s identity and access management solution and processes in line with the Bank’s identity lifecycle management policies.
• Design, implement, and support the Bank’s privileged access management solution and processes in line with the Bank’s privileged access management policies and ensure the principle of least privilege.
• Develop a reporting mechanism based on metrics to monitor progress, to measure efficiency and effectiveness of the identity and access management program.
• Provide technical support in the design and implementation of identity/privileged access management in projects from inception through to successful implementationin a bid to ensure compliance to set identity/privileged access management standards.
• Assess the sufficiency of policies, standards and procedures relative to identity and privileged access management best practices.
• Perform and coordinate periodic user recertification exercises across the KCB Group landscape, report compliance failures to management and follow up for immediate remediation.
• Perform periodic privileged access audits across KCB group’s systems identifying excessive permissions granted and follow up for immediate remediation.
• Educate users on how to use identity and access management systems effectively proactively helping maintain a secure access environment and minimize the risk of unauthorized access.
• Provide input into technology security risk control self-assessments by leveraging specialized knowledge in identity/privileged access management.
• Conduct research and development on new areas in identity/privileged access management and perform knowledge sharing with Technology Security team across the group.

 

DAILY RESPONSIBILITIES: NOT MORE THAN 5 OF THE MOST TYPICAL

• Review all mission critical systems’ roles and user access matrices ensuring proper segregation of duties and role-based access control.
• Administer and support the Bank’s privilege access management solution in line with the principle of least privilege.
• Administer and support the Bank’s identity and access management solution for automated identity lifecycle management via federated user access and single-sign-on capabilities
• Conduct user recertification on a regular basis for all mission critical system and provide compliance reports to Technology management, following up with user management unit for remediation.
• Conduct privileged access audits and ensure remediation actions are taken to minimize exposure through excessive privileges granted.

 

CHALLENGES: GIVE ONE EXAMPLE OF THE CHALLENGES ENCOUNTERED IN THIS JOB

The business requires that business applications are deployed in a timely manner and as best practice access granted or restricted as per business function. This is to mitigate any loss through exploitation of excessive rights that may be granted to users, both standard and privileged. The business needs to consistently be vigilant to any exposures through inadequate segregation of duties and least privilege implementation. The organization may lose data or its competitive edge, incur financial losses or be exposed to reputational and regulatory risks.

 

MINIMUM POSITION QUALIFICATION REQUIREMENTS

                    a. Academic & Professional

 

Particulars Detail Specific Field or Qualification Need Type Education  Bachelors Degree BSc. IT or equivalent RQ Professional Qualifications

CISA

CISM, Security+, CISSP, CCSP, IAM certification from Microsoft, Oracle, Okta, Azure, AWS or Google

RQ

AA

  Masters Degree MBA/MSc AA  

 

 

 

 

 

 

 

 

 

1. Experience

 

Total Minimum No of Years’ Experience Required in a Supervisory Role

 

 

5

 

 

 

 

 

Detail Minimum No of Years Need Type Experience in Information Security 3 ES Experience in Identity and Access Management 2 ES Experience in Banking Operations 1 DE Experience in Project Implementation and user training 1 DE