Jobs Career Advice Signup

Send this job to a friend


Did you notice an error or suspect this job is scam? Tell us.

  • Posted: Apr 3, 2024
    Deadline: Apr 22, 2024
  • Never pay for any CBT, test or assessment as part of any recruitment process. When in doubt, contact us

    Kenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 4.8 million customers (as at June 29, 2016). The Company’s key mandate is to plan for sufficient electricity generation and transmission capacity to meet demand; building and maintaining the power distribution and ...
    Read more about this company


    Senior Systems Security Analyst - 2 Posts

    Job Description

    Reporting to the Principal Security Analyst, the Senior Systems Security Analyst will be responsible for Implementing, reviewing and aligning ICT Systems, Databases and Business Applications Acquisition and Development Policies, Procedures and Practice to ensure that they comply with IT industry standards to fully secure the organization’s Data and Information.

    The key tasks & duties for the position include;

    • Assist in planning for short and long-term resources requirements for the section.
    • Work with database administrators, systems developers and application owners to review and implement security controls to mitigate system security threats/risks throughout the system/program life cycle.
    • Review procedures and processes to identify security control gaps in systems development, acquisition and maintenance to ensure that threats are properly identified, analyzed and mitigated.
    • Participate in investigations on computer security compromises, incidents, or problems and recommend corrective actions.
    • Review application, system and database logs and audit trails to identify violation to procedures and processes.
    • Research on emerging threats and vulnerabilities in information security to gain awareness of the latest information security technologies and developments.
    • Review version, patch management procedures and practices in all systems, and where necessary develop and implement measures to improve the same.
    • Implement procedures to automate and enhance monitoring of business applications, databases and systems, including user and process activities.
    • Identify and develop security and productivity-enhancing improvements and innovation.
    • Coordinate security measures for information systems to regulate access to system data and information to prevent unauthorized modification, destruction, or disclosure of information.
    • Train users and promote security awareness to ensure system security and to improve server and network efficiency.
    • Consult with users on data and information access and processing needs, to mitigate against security violations, and programming changes.
    • Recommend modification or update audit monitoring systems and solutions to incorporate new applications, databases and systems, or change individual access status
    • Coordinate execution of implementation plan of system changes/upgrade between IT, user departments and outside vendors to alleviate security violations
    • Perform risk assessments to identify violation or vulnerabilities to procedures and execute tests on applications to ensure that data availability, confidentiality and integrity is maintained and as well guarantee compliance to standards and process activities and advise/recommend corrective action.
    • Maintain access management reports and processes to identify access events, exceptions, or trends which require investigation, remediation, or mitigation
    • Contribute to the information security planning, assessments, risk analysis, risk management, certification and awareness activities for system operations.

    Job Specifications:

    • Bachelor of Science degree in Computer Science, Information Technology, Electrical & Electronics Engineering or related field.
    • Certified Information Security Auditor (CISA) and/or Certified Information Security Manager (CISM) certification for Analyst IV and III respectively will be an added advantage.
    • Six (6) years’ experience in a similar role and organization.

    Work Experience

    • Experience in System vulnerability checks and threats analysis including penetration testing.
    • Proficiency in computer applications as in Serve Systems administration, Database Servers, Programming and Systems analysis.
    • Understanding best practices in systems security and controls.
    • Good project management skills.

    Method of Application

    Applicants MUST upload the following documents during application:

    • A Signed application letter;
    • A detailed Curriculum Vitae indicating their current and previous employers, positions held, current and expected salary, level of education, and names of at least three professional referees, two of which must be working in the current organization; and
    • Copies of transcripts, academic, and professional certificates.

    Applications are to be received not later than 5.00 p.m. on 22nd April 2024

    Youth, female candidates, Persons with Disability (PWD), and marginalized community candidates are strongly encouraged to apply. Canvassing is discouraged and will lead to disqualification.

    Shortlisted candidates will be required to provide the original and copies of a signed application letter, Curriculum Vitae, certified copies of the relevant academic and professional certificates, and national identity card.

    Interested and qualified? Go to Kenya Power on to apply

    Build your CV for free. Download in different templates.

  • Send your application

    View All Vacancies at Kenya Power Back To Home

Subscribe to Job Alert


Join our happy subscribers

Send your application through

GmailGmail YahoomailYahoomail