Principal Cyber Security Architect at Safaricom Kenya

The Cyber Security Architect role is responsible for defining, analyzing and periodically reviewing the technology security strategy and roadmap based on the ever-evolving threat landscape and ensure risks identified are adequately mitigated. He/she will also architect and design cyber security systems in line with best practices to ensure they meet all requirements including adequate security, capacity and performance.

Reporting to the Senior Manager, Cyber Security Strategy & Secure by Design, the successful candidate will lend support in ensuring all new and existing systems/products/services are designed and implemented in a secure manner to avoid or mitigate any risks/security threats encountered.

Responsibilities

• Define, analyze and periodically review the cyber security strategy and roadmap based on the evolving threat landscape and ensure risks identified are mitigated
• Architect and design cyber security systems in line with best practices to ensure they meet user requirements including adequate security, capacity and performance.
• Define cyber security requirements and acceptance criteria for new systems
• Draft and evaluate RFIs/RFPs
• Liaise with Supply Chain in the procurement process
• Do the technical evaluations (Ops team should also be involved in this)
• Select the best solution and present to the CAPEX governance board
• Ensure all vendors have up-to-date contracts (contract management)
• Implement, Test, Deploy and Commission new systems (Ops team should also be involved in this to some extent especially in testing for smooth handover)
• Ensure proper change management and system handover processes are followed
• Recommend major upgrades where required and liaise with the operations team when doing the upgrades especially if it affects the design/architecture of the system
• Ensure all security technology and processes implemented are continually improved to maximize on their returns/benefits
• Manage all aspects of projects and vendor related issues in line with best practices
• Define metrics and report periodically that clearly demonstrate return on security investment (ROSI)
• Conduct research and development/security intelligence on new areas in security and present on them for sensitization and knowledge transfer to other team members/staff
• Ensure all security systems implemented have high availability and disaster recovery in accordance with best practices

Qualifications

• Degree in Electrical Eng/Computer Science/Information Technology
• Advanced professional information security certifications e.g. CISSP/CISM/CISA/GIAC/CEH/CPTP/OCSP
• Advanced Networking certifications: CCNA/CCNP/CCSP/CCIE
• Certifications in Microsoft Windows and Linux/Unix Operating Systems
• Certifications in the use and administration of security tools e.g. Firewalls/IDS/Content Filters/Antivirus/Ethical Hacking tools
• Certifications in virtualization technologies: VMware, HyperV, Open Stack
• Minimum of 5 years’ experience in Cyber Security Systems – e.g. Firewalls, IDS/IPS, VPN, Content Filters, Security Hacking tools, Antivirus, Encryption etc…
• Minimum of 5 years’ experience in IT Networks and Systems Administration e.g.  Cisco, Huawei, Windows, Linux, Unix etc…
• Working knowledge of web technologies e.g. cPanel, ModSecurity, Apache, PHP, Joomla, WordPress and ASP
• Working knowledge of databases e.g. Oracle, MSSQL, MySQL, Postgress SQL
• Working knowledge of Virtualization Technologies e.g. VmWare, HyperV, Open Stack
• Working knowledge and experience in DevOps and Microservices technologies i.e. Docker, Kubernetes, Jenkins, Gitlab/Github etc…
• Working knowledge of Mobile and GSM technologies e.g. Android, IOS, 2G, 3G, LTE, USSD, SS7 etc.