Job Purpose

The Cybersecurity and Applications Analyst is responsible for safeguarding KeNIC’s digital infrastructure from cyber threats while ensuring the efficient operation and optimization of software applications.

This role bridges the gap between business users and technology by translating business requirements into functional solutions, driving automation, and ensuring that technology investments directly support organizational goals. The incumbent will manage application lifecycles, oversee cybersecurity controls, and lead or coordinate complex technology and automation projects within tight resource constraints.

Main Duties/Key Accountabilities

1. Implement and Maintain Security Controls – Safeguard KeNIC’s digital infrastructure by developing, monitoring, and enforcing cybersecurity policies, standards, and controls.
2. Monitor and Respond to Threats – Continuously monitor systems, networks, and applications to detect, investigate, and respond to security incidents and vulnerabilities.
3. Conduct Security and Compliance Assessments – Perform regular security assessments, penetration tests, and audits to ensure compliance with KeNIC’s policies and regulatory requirements.
4. Optimize and Secure Applications – Support application performance through maintenance, updates, and secure coding practices while ensuring alignment with cybersecurity standards.
5. Promote Security Awareness and Collaboration – Educate staff on cybersecurity best practices and foster collaboration between cybersecurity, IT, and application development teams.
6. Project management capabilities – Planning, executing, and delivering complex projects on time and within resource constraints, including developing and maintaining project schedules and risk mitigation plans.
7. Facilitate collaboration – Collaborate between cybersecurity, application development, and Technology teams to support secure and efficient application environments.
8. Continuously improve application controls and architecture - through ongoing evaluation of evolving threats, user feedback, and business needs, providing guidance and recommendations to developers and stakeholders.
9. Business–Technology Liaison: Act as the bridge between users and technical teams, translating user requirements into functional specifications, driving automation, and ensuring solutions align with KeNIC’s operational goals.

REQUIREMENTS

Education and Experience

1. Bachelor’s degree in computer science, IT, Information Security, or related field.
2. Minimum 3–5 years of experience in application analysis, cybersecurity, software development, or IT systems management
3. Excellent teamwork, analytical, and communication skills to work collaboratively with technical and non-technical stakeholders
4. Proven project management experience, with a track record of successfully delivering complex, cross-functional, or automation-related projects under resource constraints.
5. Experience working as a business-technology interface, translating user needs into technical solutions.
6. Proficiency in security tools (SIEM, firewalls, vulnerability scanners such as Nessus or Qualys), system integration, and secure coding practices.
7. Relevant certifications (CompTIA Security+, PMP, ITIL, eJPT, Associate-level SANS, or OWASP) are an added advantage.
8. Ability to respond to incidents and critical system issues beyond standard work hours when required to protect KeNIC’s platforms and services

Required competencies

1. Application Management: Deep understanding of application lifecycle management, troubleshooting, integration, and optimization.
2. Automation & Innovation: Ability to identify automation opportunities, streamline workflows, and implement technology-driven efficiency improvements.
3. Business Process Understanding: Capacity to analyze operational needs and align application and cybersecurity solutions to business goals.
4. Technical Expertise: Strong foundation in IT systems, networking, and programming (Python, PHP, or Java).
5. Cybersecurity Knowledge: Advanced understanding of encryption, access controls, IDS/IPS, and vulnerability management.
6. Project Management: Skilled in project scoping, scheduling, resource management, stakeholder coordination, and risk mitigation.
7. Compliance & Standards: Familiarity with ISO 27001, NIST, SOC 2, CIS Controls, and data protection frameworks.
8. Analytical & Problem-Solving Skills: Able to diagnose complex issues and propose innovative yet practical solutions.
9. Communication & Presentation: Capable of explaining technical information clearly to technical and non-technical audiences; strong documentation and reporting skills.
10. Collaboration & Teamwork: Works effectively with cross-functional teams and promotes knowledge sharing and collaboration.
11. Adaptability & Agility: Responds effectively to dynamic business needs, evolving security threats, and new technologies.
12. Commercial Awareness: Understands how technology and security contribute to organizational performance and sustainability.
13. Results Orientation: Focuses on achieving measurable impact in system performance, security posture, and process efficiency.

• Implement and Maintain Security Controls – Safeguard KeNIC’s digital infrastructure by developing, monitoring, and enforcing cybersecurity policies, standards, and controls.
• Monitor and Respond to Threats – Continuously monitor systems, networks, and applications to detect, investigate, and respond to security incidents and vulnerabilities.
• Conduct Security and Compliance Assessments – Perform regular security assessments, penetration tests, and audits to ensure compliance with KeNIC’s policies and regulatory requirements.
• Optimize and Secure Applications – Support application performance through maintenance, updates, and secure coding practices while ensuring alignment with cybersecurity standards.
• Promote Security Awareness and Collaboration – Educate staff on cybersecurity best practices and foster collaboration between cybersecurity, IT, and application development teams.
• Project management capabilities – Planning, executing, and delivering complex projects on time and within resource constraints, including developing and maintaining project schedules and risk mitigation plans.
• Facilitate collaboration – Collaborate between cybersecurity, application development, and Technology teams to support secure and efficient application environments.
• Continuously improve application controls and architecture - through ongoing evaluation of evolving threats, user feedback, and business needs, providing guidance and recommendations to developers and stakeholders.
• Business–Technology Liaison: Act as the bridge between users and technical teams, translating user requirements into functional specifications, driving automation, and ensuring solutions align with KeNIC’s operational goals.

• Application Management: Deep understanding of application lifecycle management, troubleshooting, integration, and optimization.
• Automation & Innovation: Ability to identify automation opportunities, streamline workflows, and implement technology-driven efficiency improvements.
• Business Process Understanding: Capacity to analyze operational needs and align application and cybersecurity solutions to business goals.
• Technical Expertise: Strong foundation in IT systems, networking, and programming (Python, PHP, or Java).
• Cybersecurity Knowledge: Advanced understanding of encryption, access controls, IDS/IPS, and vulnerability management.
• Project Management: Skilled in project scoping, scheduling, resource management, stakeholder coordination, and risk mitigation.
• Compliance & Standards: Familiarity with ISO 27001, NIST, SOC 2, CIS Controls, and data protection frameworks.
• Analytical & Problem-Solving Skills: Able to diagnose complex issues and propose innovative yet practical solutions.
• Communication & Presentation: Capable of explaining technical information clearly to technical and non-technical audiences; strong documentation and reporting skills.
• Collaboration & Teamwork: Works effectively with cross-functional teams and promotes knowledge sharing and collaboration.
• Adaptability & Agility: Responds effectively to dynamic business needs, evolving security threats, and new technologies.
• Commercial Awareness: Understands how technology and security contribute to organizational performance and sustainability.
• Results Orientation: Focuses on achieving measurable impact in system performance, security posture, and process efficiency.

• Bachelor’s degree in computer science, IT, Information Security, or related field.
• Minimum 3–5 years of experience in application analysis, cybersecurity, software development, or IT systems management
• Excellent teamwork, analytical, and communication skills to work collaboratively with technical and non-technical stakeholders
• Proven project management experience, with a track record of successfully delivering complex, cross-functional, or automation-related projects under resource constraints.
• Experience working as a business-technology interface, translating user needs into technical solutions.
• Proficiency in security tools (SIEM, firewalls, vulnerability scanners such as Nessus or Qualys), system integration, and secure coding practices.
• Relevant certifications (CompTIA Security+, PMP, ITIL, eJPT, Associate-level SANS, or OWASP) are an added advantage.
• Ability to respond to incidents and critical system issues beyond standard work hours when required to protect KeNIC’s platforms and services