Cybersecurity Specialist, Threat Hunting at KCB Bank Kenya

Key Responsibilities

• Identify advanced threats, track the same, and mitigate them before organizational IT systems are attacked.
• Continuously detect, analyze, and combat advanced cyber threats. Detect vulnerabilities and mitigate the associated cybersecurity risk before it affects the Bank.
• Search for evidence of active threats within the Bank’s technological environment that may have bypassed both preventative and detective controls using the latest threat hunting tools and techniques.
• Continuously strengthen the Bank’s cybersecurity posture through research, threat simulations, threat hunting, and offensive security engagements.
• Work with the wider Cybersecurity Intelligence Security Operations Centre (CISOC) technical teams to gain insight into critical information security controls and architecture specifics to develop effective threat hunting strategies and analytics that identify malicious behavior accurately while maintaining a low false positive rate.
• Analyse and correlate large data sets to uncover novel threats and attack techniques that may be present within the Bank’s environments.
• Collaborate with Security and Threat Monitoring, Threat Intelligence, and Incident Response Specialists to identify opportunities to develop analytical methods to detect advanced threat actors who utilize emerging tactics, techniques, and procedures.
• Develop and document new and innovative threat hunt hypotheses and methodologies to augment the team’s ability to find existing or new cyber threats that are otherwise going unidentified or unnoticed.
• Act as a thought leader in the design of cutting-edge detective, preventative, and proactive controls.

For the above position, the successful applicant should have the following: 

• A Bachelor's degree in IT/ Computer Science/ Telecommunications/ Engineering (Electrical or Electronic) or related field from a recognized university. 
• Must possess at least one security certification from the list: 
  • Certified SOC Analyst (CSA)
  • Certified Ethical Hacker (CEH)
  • Certified Incident Handler (E|CIH)
  • GIAC Certified Intrusion Analyst (GCIA)
  • GIAC Certified Incident Handler (GCIH)
  • GIAC Certified Forensic Analyst (GCFA)
  • GIAC Reverse Engineering Malware (GREM)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Security+
  • Certified Information Systems Auditor (CISA). 
• A minimum of 5 years’ experience in Information Technology; with at least 2 years’ experience in Information/Cyber Security. 
• 1 year experience in Security Operations Centre/Security Monitoring/Endpoint Detection and Response/Network Detection and Response.
• Experience in Security Tools Administration (SIEM, DAM, WAF, etc.) or Incident Response and Management is desired.
• Experience working in in the financial services industry and in a complex technological environment is desired.