Background information about the job or company (e.g., role context, company overview)

The Cybersecurity Analysts will work to Identify flaws in KCB Group Plc’s security systems, solutions, and programs while recommending specific measures to improve the company’s overall security posture.

They will also provide support to Security Specialists across various technology and cyber security domains to prioritizing vulnerabilities discovered along with remediation recommendations.

Responsibilities or duties

• Provide tactical security expertise across various security domains assigned from time to time in support of the Cybersecurity Specialists
• Conduct Vulnerability Assessment and Penetration Testing and configuration review for infrastructure, network, web application, mobile application, endpoints, email & cloud security.
• Provide technical security related support to ICT projects and changes from inception through to successful implementation.
• Identify and provide solutions for cybersecurity related problems & anomalies and report violations of security policies.
• Conduct continuous research and provide technical security expertise on threats affecting KCB Group information assets.
• Monitor the bank’s ICT systems for indicators of compromise, investigate incidents and take appropriate steps to contain, neutralize and prevent breaches from happening in the future.
• Participate in activities aimed at mitigating information and cyber risks identified by various assurance teams such as Information Risk and Audit.
• Perform continuous vulnerability monitoring in the KCB group environment and report compliance failures to management for immediate remediation.
• Contribute to development of KCB Group security policies and baseline standards.
• Define, create, and deliver status reports and relevant metrics to the Senior Manager, Cybersecurity Operations.

Qualifications or requirements (e.g., education, skills)

The Person

For the above position, the successful applicant should have the following:

• Bachelor’s degree in information technology / computer science / Telecommunications / Engineering (Electrical, Electronic) is required.
• Professional qualification/certification in OSCP: Offensive Security Certified Professional, CEH: Certified Ethical Hacker,CISA:Certified Information Systems Auditor, CISM: Certified Information Security Manager , CISSP: Certified Information Systems Security Professional,SSCP: Systems Security Certified Practitioner, CompTIA Security+, CSX-F: Cyber Security Fundamentals, SSCP: Systems Security Certified Practitioner, CISA: Certified Information Systems Auditor, Certified in Cybersecurity, CISM: Certified Information Systems Manager, CISSP: Certified Information Systems Security Professional, CCNA: Cisco Certified CyberOps Associate, CCNA: Cisco Certified CyberOps Professional, CompTIA Security+ (Plus), CRISC: Certified in Risk and Information System Control, Microsoft Azure Security, ECSA: EC-Council Certified Security Analyst (At least one is required).
• Master’s Degree in MBA / MSc is added advantage.

Experience needed

• 1 year experience in technology (Required).
• 1 year experience in IT Security (Essential)
• 1 year experience in vulnerability management and penetration testing (Essential)
• 1 year experience in Banking/finance (Desired)
• 1 year experience in Project Implementation and user training (Desired)

Any other provided details (e.g., benefits, work environment, team info, or additional notes)

The above position is a demanding role for which the Bank will provide a competitive remuneration package to the successful candidate.

Qualified candidates with a disability are encouraged to apply.

Only short-listed candidates will be contacted.

candidates will be contacted.

• Provide tactical security expertise across various security domains assigned from time to time in support of the Cybersecurity Specialists
• Conduct Vulnerability Assessment and Penetration Testing and configuration review for infrastructure, network, web application, mobile application, endpoints, email & cloud security.
• Provide technical security related support to ICT projects and changes from inception through to successful implementation.
• Identify and provide solutions for cybersecurity related problems & anomalies and report violations of security policies.
• Conduct continuous research and provide technical security expertise on threats affecting KCB Group information assets.
• Monitor the bank’s ICT systems for indicators of compromise, investigate incidents and take appropriate steps to contain, neutralize and prevent breaches from happening in the future.
• Participate in activities aimed at mitigating information and cyber risks identified by various assurance teams such as Information Risk and Audit.
• Perform continuous vulnerability monitoring in the KCB group environment and report compliance failures to management for immediate remediation.
• Contribute to development of KCB Group security policies and baseline standards.
• Define, create, and deliver status reports and relevant metrics to the Senior Manager, Cybersecurity Operations.

• Vulnerability Assessment
• Penetration Testing
• Configuration Review
• Infrastructure Security
• Network Security
• Web Application Security
• Mobile Application Security
• Endpoint Security
• Email Security
• Cloud Security
• Cybersecurity Problem Solving
• Security Policy Enforcement
• Threat Research
• Incident Investigation
• Risk Mitigation
• Vulnerability Monitoring
• Security Policy Development
• Status Reporting
• Metrics Delivery

• Bachelor’s degree in information technology / computer science / Telecommunications / Engineering (Electrical, Electronic) is required.
• Professional qualification/certification in OSCP: Offensive Security Certified Professional, CEH: Certified Ethical Hacker,CISA:Certified Information Systems Auditor, CISM: Certified Information Security Manager , CISSP: Certified Information Systems Security Professional,SSCP: Systems Security Certified Practitioner, CompTIA Security+, CSX-F: Cyber Security Fundamentals, SSCP: Systems Security Certified Practitioner, CISA: Certified Information Systems Auditor, Certified in Cybersecurity, CISM: Certified Information Systems Manager, CISSP: Certified Information Systems Security Professional, CCNA: Cisco Certified CyberOps Associate, CCNA: Cisco Certified CyberOps Professional, CompTIA Security+ (Plus), CRISC: Certified in Risk and Information System Control, Microsoft Azure Security, ECSA: EC-Council Certified Security Analyst (At least one is required).
• Master’s Degree in MBA / MSc is added advantage.