Fresh Jobs at Central Bank of Kenya

Job Purpose

The role provides the implementation of robust risk management and compliance programs. The job holder should possess robust analytical skills and the capacity to collaborate across departments, fostering a culture that is proactive in managing risks and ensuring compliance.

Key Duties and Responsibilities

• Implement best-practice risk management and compliance processes across the Bank.
• Review and update risk registers, ensuring timely submission.
• Evaluate incidents, ensure closure, and integrate lessons learned into risk registers.
• Identify risk knowledge gaps and contribute to staff training and awareness initiatives.
• Conduct risk reviews, assessments, and evaluations using approved templates and tools.
• Consolidate and prepare comprehensive risk and compliance reports for all departments.
• Support implementation of bank-wide risk and compliance programs to strengthen risk culture.
• Maintain up-to-date knowledge of relevant laws, regulations, and CBK policies.
• Provide administrative support to the Risk & Compliance Division.
• Perform other duties as assigned by divisional leadership.

Qualifications

• Bachelor’s Degree in business or a related field from a reputable University.
• Professional certification in at least one risk management discipline is an added advantage.

Work Experience

• Minimum of three (3) years’ experience in Risk and Compliance management.

go to method of application »

Job Purpose

This role provides independent oversight and challenge of technology and cyber risks across the Bank. The role strengthens the IT risk management framework and control environment by ensuring alignment with best practice standards, regulatory expectations, and the Bank’s risk appetite. It involves proactive risk identification, assurance activities, and engagement with stakeholders to embed a risk-aware culture in technology decision-making.

Key Duties and Responsibilities

• Provide expert risk advice on existing technology and cyber risks, including digital transformation initiatives, cloud, and AI.
• Identify emerging technology and cyber risks and assess their potential impact on the Bank’s operations and mandate.
• Support and challenge first-line enterprise technology risk assessments, ensuring completeness, accuracy and alignment with the Bank’s risk appetite.
• Perform independent design reviews of key IT general controls, including access management, segregation of duties, change management and configuration controls.
• Review IT risk policies, standards and guidelines aligned to ISO, NIST and other relevant frameworks.
• Review the effectiveness of incident and problem management processes, supporting root cause analysis and identification of control improvements.
• Engage with IT and business stakeholders to promote risk-aware decision-making.
• Prepare clear and insightful IT risk reports for governance forums, tracking remediation actions to closure.

Qualifications

• Bachelor’s degree in Information Technology, Computer Science, Information Systems or related discipline.
• Professional certifications such as CISA, CRISC or equivalent is mandatory.
• Additional training in cyber security is an added advantage.

Work Experience

• Minimum of five (5) years’ experience in IT risk, cyber risk, IT audit or technology assurance roles in an organization of similar size and complexity.

go to method of application »

Job Purpose

This role provides subject matter expertise in developing, implementing, and maintaining the Bank’s Privacy and Data Protection framework. It ensures compliance with applicable data protection laws and regulations, embeds privacy-by-design principles into business operations, and manages data-related risks across products, services, and third-party relationships.

Key Duties and Responsibilities

• Maintain, and monitor the bank’s Privacy & Data Protection Framework, policies and standards.
• Maintain records of processing activities and lawful basis inventory across departments and the Bank as a whole.
• Provide advisory on privacy-by-design for new products, digital channels and new technology implementations.
• Conduct Data Privacy Impact Assessments as required.
• Coordinate data protection inquiries, breach notifications, and inspections.
• Co-lead incident response for data protection incidents.
• Coordinate post incident root cause analysis and lessons learned to enhance controls.
• Embed privacy in third party risk management.
• Design and deliver role-based privacy and data awareness training.
• Oversee retention and disposal aligned to legal, regulations, and business needs and work with IT and Records Management to operationalize deletion and archive controls.
• Plan and execute privacy control testing, thematic reviews, and supplier audits.
• Track remediation and report control maturity and risk posture.
• Prepare data protection compliance reports and dashboards.

Qualifications

• Bachelor’s degree in Law, IT, Business, or related field
• Membership of good standing in relevant professional association/ Institute.
• Professional certifications such as CIPP/E, CIPM, or equivalent privacy qualification is an added advantage.

Work Experience

• Minimum 5 years' experience in data protection, privacy compliance, or related risk roles in an organization of similar size and complexity.

go to method of application »

Job Purpose

This role is responsible for the preparation of Enterprise risk reporting across all the risk classes and supporting the development and implementation of ESG risk management practices. The role supports the maturation of the Bank’s enterprise risk management framework, promotes transparency, and embeds a strong risk culture aligned with sustainability and regulatory expectations.

Key Duties and Responsibilities

• Structure and prepare consolidated enterprise risk reports in collaboration with the various technical risk specialists within the Risk division and Bank departments.
• Develop dashboards and targeted reports for various management levels, ensuring clarity, accuracy, and actionable insights.
• Ensure timely and high-quality reporting to senior management and governance committees.
• Key support for the implementation of the Bank’s ESG risk management initiatives in line with the Bank’s strategy and sustainability commitments.
• Identify, assess, and monitor ESG-related risks impacting the Bank’s operations, mandate, and strategic objectives.
• Coordinate ESG risk data collection, scenario analysis, and stress testing activities where applicable.
• Provide advisory support to departments on ERM and ESG risk matters.
• Deliver training and awareness programs to enhance understanding of ESG and enterprise risk principles.
• Engage internal and external stakeholders on ESG and enterprise risk reporting initiatives.
• Design and implement initiatives to strengthen and embed a proactive, transparent, and sustainable risk culture across the Bank.
• Develop and administer risk culture surveys, behavioural assessments, and maturity evaluations; analyse results and recommend improvement actions.

Qualifications

• Bachelor’s degree in business, Finance, Accounting, Economics or related field.
• Professional certification in ERM or ESG is an advantage (e.g., GARP-SCRM, SASB, or equivalent).

Work Experience

• Minimum of six years (6) years’ experience in Environmental, Social and Governance (ESG) risk reporting in an organization of similar size or professional firms.

go to method of application »

Job Purpose

Provides leadership over the Bank’s enterprise-wide compliance function, ensuring full alignment with applicable legislation, regulatory expectations, and internal governance requirements. The role drives a strong culture of compliance, proactive regulatory engagement, and effective oversight across all business areas.

Key Duties and Responsibilities

• Design, implement and continuously enhance the Bank’s enterprise compliance framework, ensuring it remains robust, risk-based and aligned to evolving regulatory expectations.
• Develop, review and maintain Bank-wide policies, standards and guidelines to ensure compliance with applicable laws, regulations and internal governance requirements.
• Establish and maintain comprehensive compliance obligation registers across the Bank, translating legislative and regulatory requirements into clear, practical business obligations and control expectations.
• Provide oversight and challenge to business units on the design and effectiveness of compliance controls, including self-assessments and monitoring activities.
• Serve as a trusted advisor to business units on regulatory interpretation and compliance obligations
• Lead the implementation of the Bank’s Data Privacy and Protection program.
• Oversee implementation of Anti-Money Laundering framework in Central Bank operations, and ensuring alignment with existing legislation and international standards.
• Monitor local, regional and global regulatory developments, assess their impact on the Bank and proactively advise senior management on required actions.
• Prepare high-quality compliance risk reports for senior management.
• Engage with regulators and key stakeholders on compliance-related matters and support regulatory inspections and reviews.

Qualifications

• Bachelor’s degree in business, Law, Finance, Accounting, Information Technology or a related discipline.
• Membership of good standing in relevant professional association/ Institute.
• Professional certifications such as CAMS, CISA, CRCM, CDPSE will be an added advantage.

Work Experience

• Minimum of 10 years' experience in Risk Management and Compliance Management role in an organization of similar size and complexity.

go to method of application »

Job Purpose

The role holder will support the Manager, IT Audit to independently assess, test, and report on the design and operating effectiveness of internal controls of processes/information systems within the bank. The role holder may also serve as a team leader on audit engagements.

Key Duties and Responsibilities

• Participate in the preparation and implementation of the annual risk assessment and audit plan.
• Perform walkthroughs and document business processes and workflows for processes under review.
• Document comprehensive, relevant and accurate working papers for audit assignments done.
• Document all working papers in line with methodology requirements in the audit management system.
• Maintain productive relationships with process owners throughout the audit cycle.
• Carry out audit assignments within the set timelines and communicate the status of on-going assignments to the team leader throughout the engagement.
• Prepare draft audit reports with audit observations, risks and recommendations for review by the team leader.
• Develop and maintain data analytics scripts, models, and programs with proper documentation of code, data dictionaries, and functional specifications.
• Execute continuous auditing and continuous monitoring routines in key risk areas.
• Build and maintain dashboards, datasets, and visualizations required for audit analytics and reporting.
• Participate in identified Bank wide projects for pre and post implementation assurance and ensure timely risk advisory support to project management steering committees.
• Conduct periodic follow-up of prior audit recommendations.
• Participate in implementation audit tools to improve audit efficiencies - use technology, data analysis tools and other modern tools to drive automation.
• Perform special audits, investigations and/or ad-hoc projects whenever necessary.
• Perform administrative tasks as assigned.

Qualifications

• A Bachelor’s Degree in Computer Science, Data Science or a technology related discipline from a reputable university.
• Certified Information Systems Auditor (CISA)
• Professional qualification(s) and membership in any of the following is an added advantage:
  • Certified Internal Auditor (CIA)
  • Certified Information System Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Public Accountant (CPA)
  • Association of Chartered Certified Accountants (ACCA)

Work Experience

• At least three (3) years’ relevant audit experience with an established audit firm/accounting firm or institution of similar size and complexity.

go to method of application »

Job Purpose

The role holder will support the Manager, IT Audit to independently assess, test, and report on the design and operating effectiveness of internal controls of processes/information systems within the bank. The role holder may also serve as a team leader on audit engagements.

Key Duties and Responsibilities

• Participate in the preparation and implementation of the annual risk assessment and audit plan.
• Perform walkthroughs and document business processes and workflows for processes under review.
• Document comprehensive, relevant and accurate working papers for audit assignments done.
• Document all working papers in line with methodology requirements in the audit management system.
• Maintain productive relationships with process owners throughout the audit cycle.
• Carry out audit assignments within the set timelines and communicate the status of on-going assignments to the team leader throughout the engagement.
• Prepare draft audit reports with audit observations, risks and recommendations for review by the team leader.
• Develop and maintain data analytics scripts, models, and programs with proper documentation of code, data dictionaries, and functional specifications.
• Execute continuous auditing and continuous monitoring routines in key risk areas.
• Build and maintain dashboards, datasets, and visualizations required for audit analytics and reporting.
• Participate in identified Bank wide projects for pre and post implementation assurance and ensure timely risk advisory support to project management steering committees.
• Conduct periodic follow-up of prior audit recommendations.
• Participate in implementation audit tools to improve audit efficiencies - use technology, data analysis tools and other modern tools to drive automation.
• Perform special audits, investigations and/or ad-hoc projects whenever necessary.
• Perform administrative tasks as assigned.

Qualifications

• A Bachelor’s Degree in Computer Science, Data Science or a technology related discipline from a reputable university.
• Certified Information Systems Auditor (CISA)
• Professional qualification(s) and membership in any of the following is an added advantage:
  • Certified Internal Auditor (CIA)
  • Certified Information System Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Public Accountant (CPA)
  • Association of Chartered Certified Accountants (ACCA)

Work Experience

• At least three (3) years’ relevant audit experience with an established audit firm/accounting firm or institution of similar size and complexity.