About the Role

We are looking for a Specialist – Cyber Security Assurance to support secure solution design and delivery across client projects. This role will be instrumental in embedding security and privacy by design across the development lifecycle, ensuring compliance, resilience, and robust protection against evolving cyber threats.

Key Responsibilities

Project Delivery (CAPEX-Aligned | ~80%)

• Conduct technical evaluations of Security and Privacy by Design Assurance (SPDA) processes across client projects
• Embed security-by-design principles into all solution architectures and implementations
• Perform security assessments of systems, applications, APIs, and infrastructure
• Design and implement scalable cybersecurity solutions aligned to client and regulatory requirements
• Collaborate with engineering and delivery teams to ensure secure integration of solutions
• Integrate threat modeling and risk assessments into system design and development lifecycles
• Conduct pre-implementation security reviews to identify Material, Procedural, and Administrative (Client) risks
• Perform penetration testing (internal & external) prior to go-live (with potential post-deployment validation)
• Simulate attack scenarios to assess effectiveness of security controls
• Execute both automated and manual security testing
• Ensure all deliverables meet defined security standards and compliance requirements

Operational Excellence (OPEX-Aligned | ~20%)

• Monitor emerging threats, vulnerabilities, and mitigation strategies
• Evaluate and pilot new cybersecurity tools and technologies
• Contribute to internal capability building through knowledge sharing and mentoring
• Support continuous improvement of security practices across delivery teams

What We are Looking For

• Proven experience in cybersecurity assurance, security architecture, or penetration testing
• Strong knowledge of secure system design, threat modeling, and risk assessment
• Experience securing APIs, cloud environments, and enterprise systems
• Understanding of industry standards and regulatory compliance frameworks
• Strong stakeholder engagement and collaboration skills
• Ability to work in a fast-paced, client-facing environment

Why Join Techsavanna contracted at M-Pesa Africa?

• Work on high-impact client projects across multiple industries
• Be part of a growing, innovation-driven tech company
• Exposure to modern technologies and cybersecurity practices
• Opportunity to shape secure digital transformation journeys

• Conduct technical evaluations of Security and Privacy by Design Assurance (SPDA) processes across client projects
• Embed security-by-design principles into all solution architectures and implementations
• Perform security assessments of systems, applications, APIs, and infrastructure
• Design and implement scalable cybersecurity solutions aligned to client and regulatory requirements
• Collaborate with engineering and delivery teams to ensure secure integration of solutions
• Integrate threat modeling and risk assessments into system design and development lifecycles
• Conduct pre-implementation security reviews to identify Material, Procedural, and Administrative (Client) risks
• Perform penetration testing (internal & external) prior to go-live (with potential post-deployment validation)
• Simulate attack scenarios to assess effectiveness of security controls
• Execute both automated and manual security testing
• Ensure all deliverables meet defined security standards and compliance requirements
• Monitor emerging threats, vulnerabilities, and mitigation strategies
• Evaluate and pilot new cybersecurity tools and technologies
• Contribute to internal capability building through knowledge sharing and mentoring
• Support continuous improvement of security practices across delivery teams

• Proven experience in cybersecurity assurance, security architecture, or penetration testing
• Strong knowledge of secure system design, threat modeling, and risk assessment
• Experience securing APIs, cloud environments, and enterprise systems
• Understanding of industry standards and regulatory compliance frameworks
• Strong stakeholder engagement and collaboration skills
• Ability to work in a fast-paced, client-facing environment

• Proven experience in cybersecurity assurance, security architecture, or penetration testing
• Strong knowledge of secure system design, threat modeling, and risk assessment
• Experience securing APIs, cloud environments, and enterprise systems
• Understanding of industry standards and regulatory compliance frameworks
• Strong stakeholder engagement and collaboration skills
• Ability to work in a fast-paced, client-facing environment