Deputy Director System Security at Nairobi City County Public Service Board

Job Requirement

• Bachelor’s degree in computer science, Information Technology, or a related field.
• A master’s degree in computer science / IT or any other ICT related discipline from a recognized institution will be an added advantage.
• Obtained a Professional Certification in Information Technology or other related disciplines from a recognized certifying body.
• A minimum of 7-10 years of experience in information security or ICT
• In-depth knowledge of information security principles and practices, risk management, and regulatory compliance. Familiarity with relevant laws and regulations governing information security.
• Strong written and verbal communication skills, with the ability to effectively communicate complex security concepts to both technical and non-technical audiences.
• Proven leadership and team management skills, with the ability to lead and motivate a security team effectively.
• Strong analytical and problem-solving skills to assess security risks and develop effective solutions.

Job Description

• Develop and implement comprehensive security policies and procedures to protect the organization's information systems and data.
• Conduct regular risk assessments to identify potential security vulnerabilities and develop strategies to mitigate risks effectively.
• Lead and coordinate the organization's response to security incidents, including investigation, resolution, and reporting. Develop and implement incident response plans.
• Conduct regular security audits to ensure compliance with industry standards and regulations. Work closely with internal and external auditors to address any identified issues.
• Develop and deliver security awareness training programs for employees to enhance overall security consciousness within the organization.
• Oversee the implementation and maintenance of security features, including firewalls, antivirus software, intrusion detection/prevention systems, and encryption tools.
• Collaborate with IT teams, management, and other stakeholders to integrate security measures into the overall IT strategy.
• Evaluate and manage security vendors, ensuring that third-party services align with the organization's security standards.
• Maintain accurate and up-to-date security documentation, including policies, procedures, and incident reports.