Safaricom is the leading provider of converged communication solutions in Kenya. In addition to providing a broad range of first-class products and services for Telephony, Broadband Internet and Financial services, Safaricom seeks to uplift the welfare of Kenyans through value-added services and support for community projects.

Read more about this company

Senior Specialist – Cloud & Network Cyber Security

Job Type

Full Time , Hybrid

Qualification

BA/BSc/HND , Professional Certificate

Experience

5 years

Location

Nairobi

Job Field

ICT / Computer

More specifically you will:

• Drive increased security of our Cloud and network end to end within the M-Pesa processes;
• Support with Cloud Security and Network Architecture to all projects.
• Provide HLDs, LLDs, define templates, modularize and industrialize configuration items and implementation.
• Deploy cloud and network fit for purpose including understanding of how our services/applications layer will run across the network (capacity, capability, utilization)
• Implement automation of Network related controls across the organization on both cloud and on-premises;
• Implement evolved cybersecurity initiatives such as A.I., Zero Trust and others that touch on Network Security.
• Experienced with Azure security services (IAM, Security Groups, VPC, WAF, etc.).
• Experienced with Cloud Security Operations, Cloud Security Posture Management (CSPM) and Cloud Workload Protection.
• Familiar with shared responsibility models in cloud environments as well as Privileged Access management, Cloud Threat prevention on Azure Cloud
• Responsible to ensure a network documentation for both cloud and on-premises;
• Responsible to ensure network harmonization and standardization across the Region / the local market and cloud environments;
• Being a SPOC in Cyber Security for one African Market and backup SPOC for another, assisting with remediation of vulnerabilities, patching and systems hardening;
• Maintenance and support of various cybersecurity systems including (but not limited to) Firewalls, WAF, Antivirus, Logging Solutions, Network and Host IDS/IPS.
• Troubleshoot and remediate Level 1/2/3 issues impacting Cybersecurity operations
• Facilitate implementation, management and optimization of Cyber Security policies, standards and procedures;
• Provide support for cyber incident detection and response;
• Drive standards of excellence to achieve the Cyber Security strategy
• Implement actions to close MPA risks, Audit & Reviews (Internal and External)
• Improvement of the Cyber security posture of the company through several initiatives, including but not limited to Cyber Security Baselines

Impact on the business

• Coordinate optimization of the Operational & Monitoring cyber security baselines (CSB) controls across all MPA relevant business areas and processes associated to Network Security;
• Design and implement network security measures to protect data, software, and hardware.
• Monitor network traffic for unusual activity and respond to security breaches.
• Conduct regular security audits and vulnerability assessments for perimeter security and Network related vulnerabilities such as unsecure ports.
• Develop and enforce security policies and procedures.
• Collaborate with IT and other departments to ensure comprehensive security measures.
• Stay updated with the latest security trends, threats, and technology solutions.
• Provide training/Knowledge share and support to staff on network security practices.
• Support all internal and external audits around Technology systems and processes, ensure these systems are free from known Technology audit findings and ensure all audit findings in these systems are closed within agreed timelines

Customers, supplier and third parties

• Ensure compliance with Legal, Regulatory and key stakeholders’ requirements across the Technology domains
• Responsible for monitoring of compliance of the Cyber security managed services contract, to ensure it is within agreed SLA
• Support for validation, timely completion and accuracy of Technology audit checklists and user access rights reviews
• Coordination of analytical processes and incident response measures
• Ensure proper implementation and change management processes compliance for all planned and emergency changes in Technology systems

Innovation and change

• Contribute to the Security and Privacy by Design Assurance (SPDA) processes of the GDPR and business requirements
• Continually review and enforce security policies and controls, to support business requirements and changing security landscapes
• Set-up of analytics framework and tools
• Drive continuous improvement through simplification of key cyber security processes

Communication

• Drive internal and third-party service review meetings covering performance, service improvements, quality and processes
• Make recommendations for Cyber security service Improvement Plans and ensure actions are followed through to completion in a timely manner
• Support information security awareness and training to all MPA users and third-party vendors
• Driving incident planned and emergency communication processes to both internal and external audience

Qualifications

• Degree in Electrical Eng/Computer Science/information Technology or equivalent Technology-related degree
• Proven experience as a Network Security Senior Specialist or similar role.
• In-depth knowledge of network protocols, firewalls, VPNs, and security tools.
• At least one professional Network Security Qualification: ComptiaSecurity+/CCNA Security
• Advanced competencies in Network Security
• Minimum of 5 years Network Security experience with Intrusion Prevention Systems, Web Application Firewalls, VPN administration, Content Filters, Security Scanning tools.
• Minimum of 2-year focused Network Security Solutions implementation and maintenance.
• Experience in the use of security tools.
• Project management skills, and proven task execution (getting things done).
• Proactive approach to staying ahead of potential security threats.
• Analytical Thinking.

• Drive increased security of our Cloud and network end to end within the M-Pesa processes;
• Support with Cloud Security and Network Architecture to all projects.
• Provide HLDs, LLDs, define templates, modularize and industrialize configuration items and implementation.
• Deploy cloud and network fit for purpose including understanding of how our services/applications layer will run across the network (capacity, capability, utilization)
• Implement automation of Network related controls across the organization on both cloud and on-premises;
• Implement evolved cybersecurity initiatives such as A.I., Zero Trust and others that touch on Network Security.
• Responsible to ensure a network documentation for both cloud and on-premises;
• Responsible to ensure network harmonization and standardization across the Region / the local market and cloud environments;
• Being a SPOC in Cyber Security for one African Market and backup SPOC for another, assisting with remediation of vulnerabilities, patching and systems hardening;
• Maintenance and support of various cybersecurity systems including (but not limited to) Firewalls, WAF, Antivirus, Logging Solutions, Network and Host IDS/IPS.
• Troubleshoot and remediate Level 1/2/3 issues impacting Cybersecurity operations
• Facilitate implementation, management and optimization of Cyber Security policies, standards and procedures;
• Provide support for cyber incident detection and response;
• Drive standards of excellence to achieve the Cyber Security strategy
• Implement actions to close MPA risks, Audit & Reviews (Internal and External)
• Improvement of the Cyber security posture of the company through several initiatives, including but not limited to Cyber Security Baselines
• Coordinate optimization of the Operational & Monitoring cyber security baselines (CSB) controls across all MPA relevant business areas and processes associated to Network Security;
• Design and implement network security measures to protect data, software, and hardware.
• Monitor network traffic for unusual activity and respond to security breaches.
• Conduct regular security audits and vulnerability assessments for perimeter security and Network related vulnerabilities such as unsecure ports.
• Develop and enforce security policies and procedures.
• Collaborate with IT and other departments to ensure comprehensive security measures.
• Stay updated with the latest security trends, threats, and technology solutions.
• Provide training/Knowledge share and support to staff on network security practices.
• Support all internal and external audits around Technology systems and processes, ensure these systems are free from known Technology audit findings and ensure all audit findings in these systems are closed within agreed timelines
• Ensure compliance with Legal, Regulatory and key stakeholders’ requirements across the Technology domains
• Responsible for monitoring of compliance of the Cyber security managed services contract, to ensure it is within agreed SLA
• Support for validation, timely completion and accuracy of Technology audit checklists and user access rights reviews
• Coordination of analytical processes and incident response measures
• Ensure proper implementation and change management processes compliance for all planned and emergency changes in Technology systems
• Contribute to the Security and Privacy by Design Assurance (SPDA) processes of the GDPR and business requirements
• Continually review and enforce security policies and controls, to support business requirements and changing security landscapes
• Set-up of analytics framework and tools
• Drive continuous improvement through simplification of key cyber security processes
• Drive internal and third-party service review meetings covering performance, service improvements, quality and processes
• Make recommendations for Cyber security service Improvement Plans and ensure actions are followed through to completion in a timely manner
• Support information security awareness and training to all MPA users and third-party vendors
• Driving incident planned and emergency communication processes to both internal and external audience

• Azure security services (IAM, Security Groups, VPC, WAF, etc.)
• Cloud Security Operations
• Cloud Security Posture Management (CSPM)
• Cloud Workload Protection
• Shared responsibility models in cloud environments
• Privileged Access management
• Cloud Threat prevention on Azure Cloud
• Network protocols
• Firewalls
• VPNs
• Security tools
• Intrusion Prevention Systems
• Web Application Firewalls
• VPN administration
• Content Filters
• Security Scanning tools
• Network Security Solutions implementation and maintenance
• Project management skills
• Task execution
• Proactive approach to security threats
• Analytical Thinking

• Degree in Electrical Eng/Computer Science/information Technology or equivalent Technology-related degree
• Proven experience as a Network Security Senior Specialist or similar role.
• In-depth knowledge of network protocols, firewalls, VPNs, and security tools.
• At least one professional Network Security Qualification: ComptiaSecurity+/CCNA Security
• Advanced competencies in Network Security
• Minimum of 5 years Network Security experience with Intrusion Prevention Systems, Web Application Firewalls, VPN administration, Content Filters, Security Scanning tools.
• Minimum of 2-year focused Network Security Solutions implementation and maintenance.
• Experience in the use of security tools.
• Project management skills, and proven task execution (getting things done).
• Proactive approach to staying ahead of potential security threats.
• Analytical Thinking.