M-Pesa Africa - Cybersecurity Specialist: Governance, Risk & Complianc at Safaricom Kenya

The successful candidate will be responsible for ensuring that the organization’s Cyber Security risks are under explicit management control and as well coordinate strategic integration of Cyber Security programs within M-Pesa Africa. They will be part of the team that drives compliance to internal and global cyber security related policies and standards, Vodafone Cyber Security Baseline controls and applicable Kenyan laws and regulations.

What you will be doing

• Continually reviewing and updating security policies, standards, and guidelines in response to the ever-changing cyber threats in coordination with Enterprise Risk Management team;
• Monitoring and driving compliance to internal and global cyber security related policies and standards, Vodafone Cyber Security Baseline controls and applicable Kenyan laws and regulations;
• Coordinating stakeholders to deliver on targets or agreed business outcomes;
• Coordinating periodic independent assurance of critical products and services;
• Coordinating implementation of recommendations from independent assessments;
• Conducting Cyber Risk Assessments to determine cyber risk profile and define treatment plans;
• Recommending Cyber Security services improvement plans;
• Coordinating projects handover process within the cyber security functions;
• Continually reviewing, implementing and proposing improvements of the user access governance process;
• Coordinating periodic cyber security knowledge transfer, awareness sessions and phishing simulations to staff in line with strategy;
• Supporting the implementation of the Managed Security Services strategy and roadmap;
• Participating actively in cyber security events and trade shows, reporting and presentations.

Skills and competencies you require for the role

• At least 2+ years of hands-on experience in managing Cyber Security technologies and operations;
• Proven experience in supervising, leading, or coordinating teams and managing stakeholders;
• Knowledge of the Vodafone Cyber Security Baseline Program will be an added advantage;
• Expert level analytical and problem-solving skills;
• Good report writing and communication skills;
• Analytical thinking coupled up with customer focus.

Apply if you have:

• Bachelor’s Degree in Electrical Eng./Computer Science/ Information Technology (or equivalent) from a recognized university.
• At least one professional Information Security Qualification: CISM/CISA/CISSP/CEH.
• At least 2+ years proven experience with Cyber Security related Standards (ISO 27001, PCI-DSS, etc.).
• Proven experience with GDPR, Kenyan Data Protection laws, CBK guidelines on Cyber Security amongst others.

Last Date to Apply: Dec 29, 2022