NCBA Group Manager, Cyber Security Assurance Jobs in Kenya

NCBA Group Manager, Cyber Security Assurance Jobs in Kenya

Division/Department: Technology & Operations

Reports to: Cyber Security Assurance Senior Manager

Unit: Information Security - Information Technology

Positions: 1

Closing Date: 25th September 2022

Job Purpose Statement

This role will drive cyber security assurance and best practice in technology projects and systems, instilling security by design practices within the Group, and ensuring that existing and new Bank systems, products and technology is designed for security, and meet the Bank security standards.

This role will also be responsible for developing security practices for a fast-paced and agile digital Banking environment, with focus on modern platforms and practices such as cloud computing, DevSecOps and micro-services architecture.

Key Accountabilities (Duties and Responsibilities)

Cyber Security Architecture

  • Define the cyber security architecture across the Group, by leveraging on best practice and emerging modern security practices, and aligning this to the Bank strategy and roadmap.

  • Periodically benchmarking and reviewing the
    security architecture in line with best practice and business strategy.

    Cyber Security Assurance

  • Define and constantly review cyber security
    requirements & standards for new technology systems & projects.

  • Actively involved in technology & system design by defining security architecture & requirements for new systems, thereby driving a security-by-design approach.

  • Manage and execute security assessments across existing and new technology projects systems, ensuring that exemptions to security standards are flagged and remediated during the build process.

  • Manage security assessment tools for penetration testing, vulnerability and compliance assessments during technology build projects.

  • Working with the development teams, develop
    and implement DevSecOps practices and incorporate relevant tools.

    Change Management

  • Participate in development of cyber security test cases during technology build and testing process.

  • Develop reports and define exit criteria on security compliance of technology projects, as part of the Change Management process.

    Job Dimensions

    Reporting Relationships

    Direct Reports

    Cyber Security Assurance Analyst

    Indirect Reports


    Stakeholder Management


  • IT Department

  • Enterprise Project Management

  • Enterprise Risk Management

  • Internal Audit


  • External Auditors

  • Security Consultancy firms

    Decision Making Authority /Mandates/Constraints

  • Operational

  • Managerial

    Work Cycle and Impact

    6-12 months

    Ideal Job Specifications

  • Bachelor’s Degree in, Information Systems, Computer Science, Information Security or related field required

  • At
    least 7 years’ experience in IT or information security, with 2 years in a managerial role within a highly digitized organization.

    Ideal Job Specifications

  • 3+ years’ experience conducting IT compliance assessments and administering IT security controls in an organization.

  • Knowledge of technical infrastructure, networks, databases and systems in relation to IT Security and IT Risk.

  • Knowledge of information security best practice & compliance standards.

  • Experience with modern technology platforms and practices, including agile development, micro services architecture, cloud computing and DevOps

  • Experience with designing security frameworks and architectures.

  • Relevant certifications in information security knowledge areas, such as Information Systems Audit, Information Security Management and Ethical Hacking.

  • Knowledge of project management skills.

    Technical Competencies

  • Knowledge to develop and manage Information Security strategy

  • Knowledge and experience in IT technology platforms across the IT domains.

  • Technical skills to effectively perform IS security management activities/ tasks in a manner that consistently achieves established quality standards or benchmarks.

  • Knowledge and application of modern IS security management practices in financial services industry to proactively define and implement security quality improvements in line with technological and product changes.

  • Performance management to optimise personal and team productivity.

  • Knowledge and effective application of all relevant banking policies, processes, procedures and guidelines to consistently achieve required compliance standards or benchmarks.

    Behavioural Competencies

  • Interpersonal skills to effectively communicate with and manage expectations of all team members and other stakeholders who impact performance.

  • Self-empowerment to enable development of open communication, teamwork and trust that are needed to support true performance and customer-service oriented culture.

  • Demonstrable integrity and ethical practices

    How to Apply

    For more information and job application details, see: NCBA Group Manager, Cyber Security Assurance Jobs in Kenya

    Find daily jobs in Kenya. Jobs - Kenya jobs. Search our career portal & find the latest Kenyan job positions, career opportunities & jobs in Kenya.

    Jobs in Kenya - banking jobs, IT jobs, accounting jobs, NGO jobs, business administration, ICT, UN jobs, procurement jobs, education jobs, hospital jobs, human resources jobs, engineering, teaching jobs, and other careers in Kenya.

    Find your dream job from 1000s of vacancies in Kenya posted and updated daily - click here!

  • Click here to post comments

    Join in and write your own page! It's easy to do. How? Simply click here to return to 1 Best Africa Jobs.