Senior Manager, Information Risk
2026-07-10T16:03:58+00:00
KCB Bank Kenya
https://cdn.greatkenyanjobs.com/jsjobsdata/data/employer/comp_8992/logo/kCB.png
https://ke.kcbgroup.com/
FULL_TIME
Nairobi
Nairobi
00100
Kenya
Finance
Management, Computer & IT, Business Operations
2026-07-24T17:00:00+00:00
8
Background information about the job or company (e.g., role context, company overview)
Looking for an IT job in Kenya? KCB Bank is hiring a Senior Manager, Information Risk skilled in enterprise information security governance, cybersecurity risk management, IT compliance auditing, and data protection strategies.
Responsibilities or duties
Must not be more than 10
- Provide leadership in individual Information Risk / Technology related Risk and advisory assignments for the assigned scope.
- Conduct Technology and Information risk assessments through Information Risk Managers and Analysts to develop the annual Group Information Risk action plan.
- Provide leadership in cyber security risk related reviews and advisory assignments, IT general and IT application control risk reviews on information systems and Technology environment to give assurance on the effectiveness and efficiency of the preventive control and compliance to KCB Group policies, International Standards (ISO 27001, ISO 22301, PCI DSS, NIST 800 series, etc.), and Regulatory requirements and guidelines.
- Provide leadership in emerging risks, threat hunting, Cloud computing & AI/ML by working with business functions in Technology in providing mitigations.
- Providing regular updates to group senior leadership and the board on the latest trends.
- Perform ongoing risk-based project assurance and post implementation reviews on Technology related projects.
- Coordinate Red Team exercises across the group and SWIFT attestation program in timely manner.
- Tracking of outstanding risks in DORCCO, GORCCO, CAB meetings.
- Be a member of CAB representing the Information Risk Department.
- Conduct, follow up and validate closure of PIR & KCSA review issues action plans as per stakeholder engagement agreements and track to completion within agreed timelines.
- Design and monitor implementation of Information risks awareness program across KCB Group
- Responsible for oversight and challenge of Information risks across KCB Group, including Information Security, Technology and Data quality risks.
- Lead and mentor a team of Information Risk Managers and Analysts, fostering a collaborative and high-performing environment.
- Conduct comprehensive reviews and provide independent assurance on projects, cybersecurity, and governance initiatives.
- Offer objective and insightful recommendations to enhance the bank’s information systems and ICT infrastructure.
- Ensure the bank’s data and systems are secure and compliant with industry standards and regulations.
- Stay updated with emerging technologies and trends, identifying potential risks and opportunities for the bank.
- Collaborate with various departments to understand their information risk needs and provide tailored solutions.
- Develop and implement risk assessment frameworks and methodologies to identify and mitigate potential risks.
- Prepare and present risk reports to senior management, offering clear and actionable insights.
- Build and maintain strong relationships with internal stakeholders and external partners to ensure effective risk management.
- Stay informed about industry best practices and contribute to the bank’s overall risk management strategy.
Qualifications or requirements (e.g., education, skills)
Experience needed
- Minimum of 8 years of experience in information risk management, with a proven track record of leading teams.
Any other provided details (e.g., benefits, work environment, team info, or additional notes)
- Provide leadership in individual Information Risk / Technology related Risk and advisory assignments for the assigned scope.
- Conduct Technology and Information risk assessments through Information Risk Managers and Analysts to develop the annual Group Information Risk action plan.
- Provide leadership in cyber security risk related reviews and advisory assignments, IT general and IT application control risk reviews on information systems and Technology environment to give assurance on the effectiveness and efficiency of the preventive control and compliance to KCB Group policies, International Standards (ISO 27001, ISO 22301, PCI DSS, NIST 800 series, etc.), and Regulatory requirements and guidelines.
- Provide leadership in emerging risks, threat hunting, Cloud computing & AI/ML by working with business functions in Technology in providing mitigations.
- Providing regular updates to group senior leadership and the board on the latest trends.
- Perform ongoing risk-based project assurance and post implementation reviews on Technology related projects.
- Coordinate Red Team exercises across the group and SWIFT attestation program in timely manner.
- Tracking of outstanding risks in DORCCO, GORCCO, CAB meetings.
- Be a member of CAB representing the Information Risk Department.
- Conduct, follow up and validate closure of PIR & KCSA review issues action plans as per stakeholder engagement agreements and track to completion within agreed timelines.
- Design and monitor implementation of Information risks awareness program across KCB Group
- Responsible for oversight and challenge of Information risks across KCB Group, including Information Security, Technology and Data quality risks.
- Lead and mentor a team of Information Risk Managers and Analysts, fostering a collaborative and high-performing environment.
- Conduct comprehensive reviews and provide independent assurance on projects, cybersecurity, and governance initiatives.
- Offer objective and insightful recommendations to enhance the bank’s information systems and ICT infrastructure.
- Ensure the bank’s data and systems are secure and compliant with industry standards and regulations.
- Stay updated with emerging technologies and trends, identifying potential risks and opportunities for the bank.
- Collaborate with various departments to understand their information risk needs and provide tailored solutions.
- Develop and implement risk assessment frameworks and methodologies to identify and mitigate potential risks.
- Prepare and present risk reports to senior management, offering clear and actionable insights.
- Build and maintain strong relationships with internal stakeholders and external partners to ensure effective risk management.
- Stay informed about industry best practices and contribute to the bank’s overall risk management strategy.
- enterprise information security governance
- cybersecurity risk management
- IT compliance auditing
- data protection strategies
- information security principles
- risk assessment methodologies
- industry standards
- leadership and mentoring skills
- analytical mindset
- problem-solving approach
- effective communication skills
- ability to work independently
- manage multiple projects simultaneously
- strong interpersonal skills
- proactive and innovative mindset
- Bachelor’s degree in Computer Science, Information Technology, or a related field, with a Master’s degree preferred.
- Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM) certification is an advantage.
JOB-6a5117ee68bc8
Vacancy title:
Senior Manager, Information Risk
[Type: FULL_TIME, Industry: Finance, Category: Management, Computer & IT, Business Operations]
Jobs at:
KCB Bank Kenya
Deadline of this Job:
Friday, July 24 2026
Duty Station:
Nairobi | Nairobi
Summary
Date Posted: Friday, July 10 2026, Base Salary: Not Disclosed
Similar Jobs in Kenya
Learn more about KCB Bank Kenya
KCB Bank Kenya jobs in Kenya
JOB DETAILS:
Background information about the job or company (e.g., role context, company overview)
Looking for an IT job in Kenya? KCB Bank is hiring a Senior Manager, Information Risk skilled in enterprise information security governance, cybersecurity risk management, IT compliance auditing, and data protection strategies.
Responsibilities or duties
Must not be more than 10
- Provide leadership in individual Information Risk / Technology related Risk and advisory assignments for the assigned scope.
- Conduct Technology and Information risk assessments through Information Risk Managers and Analysts to develop the annual Group Information Risk action plan.
- Provide leadership in cyber security risk related reviews and advisory assignments, IT general and IT application control risk reviews on information systems and Technology environment to give assurance on the effectiveness and efficiency of the preventive control and compliance to KCB Group policies, International Standards (ISO 27001, ISO 22301, PCI DSS, NIST 800 series, etc.), and Regulatory requirements and guidelines.
- Provide leadership in emerging risks, threat hunting, Cloud computing & AI/ML by working with business functions in Technology in providing mitigations.
- Providing regular updates to group senior leadership and the board on the latest trends.
- Perform ongoing risk-based project assurance and post implementation reviews on Technology related projects.
- Coordinate Red Team exercises across the group and SWIFT attestation program in timely manner.
- Tracking of outstanding risks in DORCCO, GORCCO, CAB meetings.
- Be a member of CAB representing the Information Risk Department.
- Conduct, follow up and validate closure of PIR & KCSA review issues action plans as per stakeholder engagement agreements and track to completion within agreed timelines.
- Design and monitor implementation of Information risks awareness program across KCB Group
- Responsible for oversight and challenge of Information risks across KCB Group, including Information Security, Technology and Data quality risks.
- Lead and mentor a team of Information Risk Managers and Analysts, fostering a collaborative and high-performing environment.
- Conduct comprehensive reviews and provide independent assurance on projects, cybersecurity, and governance initiatives.
- Offer objective and insightful recommendations to enhance the bank’s information systems and ICT infrastructure.
- Ensure the bank’s data and systems are secure and compliant with industry standards and regulations.
- Stay updated with emerging technologies and trends, identifying potential risks and opportunities for the bank.
- Collaborate with various departments to understand their information risk needs and provide tailored solutions.
- Develop and implement risk assessment frameworks and methodologies to identify and mitigate potential risks.
- Prepare and present risk reports to senior management, offering clear and actionable insights.
- Build and maintain strong relationships with internal stakeholders and external partners to ensure effective risk management.
- Stay informed about industry best practices and contribute to the bank’s overall risk management strategy.
Qualifications or requirements (e.g., education, skills)
Experience needed
- Minimum of 8 years of experience in information risk management, with a proven track record of leading teams.
Any other provided details (e.g., benefits, work environment, team info, or additional notes)
Work Hours: 8
Experience in Months: 12
Level of Education: bachelor degree
Job application procedure
Application Link: Click Here to Apply Now
All Jobs | QUICK ALERT SUBSCRIPTION