Information Systems Security Officer at Amref Kenya

Responsibilities

• Network and information security administration
• Performing network Intrusion detection and prevention, vulnerability scanning, and monitoring.
• Administeringcentralizedenterpriseantivirussolutionandclientoperating update and configuration.
• Performing regular vulnerability scans to find any flaws for mitigation.
• Administeringautomatedsecuritypatchingsolutionswithup-to-datesecurity updates and hotfixes.
• Performing day-to-day operations and maintenance of both on premises and cloud data center solutions.
• Assisting in design, installation, administration and troubleshooting data and voice networks.
• Network Security Risk Assessment for Mitigation
• Performing daily health checks on systems and continuously monitors access to network services and devices.
• Ensuring that security changes and improvement actions are evaluated, validated, and enforced according to Amref Health Africa policies and procedures.

Key Areas Responsibilities

• Collecting and maintaining Security related data needed for purposes of monitoring trends.
• Tracking security audit findings, assessments and recommendations for appropriate mitigation.
• Tracking and measuring system performance and availability.
• Mitigating any existing or potential security threats.
• Creating management reports on security trends and status.
• System Security Risk Assessment, Monitoring for Optimization
• Securingandoptimizingremotesitesnetworkandcommunicationtechnologies.
• Monitoring network performance,report and troubleshoot outagesresultingfromsecuritybreaches andotherfactors.
• Recommendingresourcerequirementrequiredforcybersecurityoperations
• Implementing, managing and securing global LAN/WAN and wirelessplatforms.
• Participating in security risk assessments.
• IdentifyingandmitigatingvulnerabilitiestargetingAmrefHealthAfricanetwork and providetimelymitigatingmeasures.
• DevelopingandimplementingacomprehensiveplantosecureICTNetwork.
• Proactivelymonitoringsystemsusagetoensurecompliancewith securitypolicies.
• Technical Support, Troubleshooting and Capacity Building
• Keepinguptodatewithemergingsecuritytrendsanddevelopments in ICTsecurity standards and threats.
• Documenting any security vulnerabilities and assess extend ofbreaches.
• Transferring knowledge of security skills, guides, standard operatingprocedures and best practices for information security to staffincluding non-technicalaudience.
• Preparinganddistributingimportantsecurity alerts,oradvisories to colleagues and generalstaff.
• Troubleshooting andsupport acrosstheWANforsmoothoperations.
• General ICTsupport acrosssites andfieldoffices.

REQUIRED QUALIFICATIONS

Education and Professional Qualifications

• Bachelor’s degree in ICT orrelated field.
• EC-CouncilCertified EthicalHackerCertificationv8/later or related.
• Internationallyrecognizedsecuritycertificatione.g.ComptiaSecurity+,CCNASecurity,Microsoft Certified Security etc.
• InformationSystems,Audit,ComplianceandAssessmentCertification.

Required Qualifications and Experience

• 5+yearsofprogressivehands-onexperienceinalargeenterprise ICTsecurity.
• Experience in designing and implementing organization wide information security network
• architecture and framework.
• Experienceinmanagingandimplementinglargescaleinformationsecuritynetworkprojects.
• Experience in identifying and managing technology security risk.
• Up-to-date knowledge of future IP and network security technologies, equipment and their benefits.
• Systems SecurityManagement.
• Incident ManagementTools.
• LAN,WANandWirelessNetworkmanagement.
• OperatingSystem,applicationanddatabasessecurityconfigurationsandAdministrations.
• Exposure to a diverse-multicultural environment.
• Storage,virtualization,backupandrestoresolutionsforbusiness continuity.
• Solid knowledge of variousinformationsecurity frameworks.

Closing Date: 23 September 2022