DESCRIPTION
We are pleased to announce the following vacancy in the Cyber Security Department within the Corporate Security division. In keeping with our current business needs, we are looking for a person who meets the criteria indicated below:
Reporting to the Senior Manager, Cyber Security Strategy & Design, the successful candidate will lend support in ensuring all new and existing systems/products/services comply with Safaricom’s security policies & standards and other industry best practices e.g. ISO27001, CIS, Vodafone CSB standards etc… The candidate will also provide timely security assurance reports and advice to the business when required even with very tight timelines.
Key Responsibilities:
Conduct periodic security reviews, vulnerability assessments & penetration tests across all of Safaricom’s systems/infrastructure
Ensure all new and existing systems/products/services comply with Company’s security policies & standards and other industry best practices e.g. ISO27001, CIS and Kenya Data Protection Act
Provide timely and quality security assurance reports and advice to the business when required even with very tight deadlines
Do regular follow ups with system custodians/owners to ensure any security risks identified are addressed within the agreed timelines
Define Cyber Security metrics and report periodically on security compliance across all networks/systems
Research on new threats/technologies/vulnerabilities/security design principles etc.
QUALIFICATIONS
Degree in Information Security/Computer Forensics/Computer Science/Information Technology or other relevant Technical Degree
Information security certifications e.g. CEH/CISSP/CISM/CISA/GIAC/CPTP/OSCP
Advanced Networking certifications: CCNA/CCNP/CCSP/CCIE are also preferred
Certifications in Microsoft Windows and Linux/Unix Operating Systems
Demonstrate competency in the use and administration of ethical hacking tools e.g. KALI Linux, Metasploit, Nexpose, Nessus, Nmap, BurpSuite etc…
Minimum of 3 years’ working experience in Information Systems Security – e.g. Ethical Hacking, Penetration Testing, Vulnerability Assessments, ICT Audits, Pre-and-Post Implementation System Reviews etc…
Minimum of 3 years’ working experience in Networking and Operating Systems e.g. Cisco, Huawei, Windows (All), Unix, Linux etc…
go to method of application »
Use the link(s) below to apply on company website.
Apply via :
