Job Openings at Safaricom Kenya

DESCRIPTION

We are pleased to announce the subject career opportunity within Technology (M-Pesa Africa) reporting to the Senior Manager-Cybersecurity.

Role Description

As the Manager – Cybersecurity Prevent and Defence, you will be responsible for:

• Coordinating operations of the Cybersecurity, Prevent and Defend stakeholders and team
• Facilitating implementation, management, and optimization of Cyber Security policies, standards, and procedures
• Ensuring adequate OPEX budget, resource, and management focus is on cybersecurity risks
• Driving standards of excellence to achieve the Cyber Security strategy
• Implementing actions to close MPA risks, Audit & Reviews (Internal and External)
• Improvement of the Cybersecurity posture of the company through several initiatives, including but not limited to Cyber Security Baselines.

Key Role Responsibilities

Impact on the business

• Coordinate optimization of the Operational & Monitoring cybersecurity baselines (CSB) controls across all MPA relevant business areas and processes
• Optimize and maintain Cyber Security controls and requirements across MPA environments
• Ensure all M-Pesa and third-party systems’ products, services and projects are compliant with the MPA minimum security requirements and Cyber Security Baselines (CSBs)
• Responsible for the set-up, execution, and maintenance of the security incident management and coordination process in conjunction with incident management capabilities
• Management of the vulnerability scanning, patching, and penetration tests and tracking resolution of vulnerabilities and patches in MPA systems, per the relevant MPA security policies
• Support all internal and external audits around Technology systems and processes, ensure these systems are free from known Technology audit findings and ensure all audit findings in these systems are closed within agreed timelines

Customers, supplier, and third parties

• Ensure compliance with Legal, Regulatory and key stakeholders’ requirements across the Technology domains
• Responsible for monitoring of compliance of the Cybersecurity managed services contract, to ensure it is within agreed SLA
• Support for validation, timely completion, and accuracy of Technology audit checklists and user access rights reviews
• Coordination of analytical processes and incident response measures
• Ensure proper implementation and change management processes compliance for all planned and emergency changes in Technology systems

Leadership, Planning and Human Resource Management

• Manage all the Cybersecurity OPEX budgets and planning, in alignment with the company and Group strategy
• Manage the Cybersecurity subordinate resources (FTEs and contractors) for their tasks/job descriptions effective implementations
• Skills development within Cybersecurity department
• Performance Management of the Cybersecurity team
• Provide input to Security Policies and requirements on Technology security methods and technologies
• Support Implementation and enforcement of the MPA cyber code across all users
• Provide regular and accurate management reporting on Cybersecurity service performance

Innovation and change

• Maintain the Security and Privacy by Design Assurance (SPDA) processes of the GDPR and business requirements
• Continually review and enforce security policies and controls, to support business requirements and changing security landscapes
• Set-up of analytics framework and tools
• Drive continuous improvement through simplification of key cybersecurity processes

Communication

• Drive internal and third-party service review meetings covering performance, service improvements, quality, and processes
• Make recommendations for Cybersecurity Service Improvement Plans and ensure actions are followed through to completion in a timely manner
• Support information security awareness and training to all MPA users and third-party vendors
• Driving incident planned and emergency communication processes to both internal and external audience

QUALIFICATIONS

Apply if you have:

• Bachelor’s Degree in Electrical Eng./Computer Science/ Information Technology (or equivalent) from a recognized university.
• Minimum of 5 years Network Security experience with Intrusion Prevention Systems, Web Application Firewalls, VPN administration, Content Filters, Security Scanning tools
• At least one professional Information Security Qualification: CISM/CISA/CISSP/CEH/CRISC.
• One certification in Networks CCNP or CCIE (Security) CLOUD or Microsoft, Linux or Unix Operating Systems administration
• Minimum of 1-year focused Security experience in Incident Management, Intrusion Analysis, Network troubleshooting, or Reverse Engineering.

We are happy if you have:

• Good communication skills and team player.
• Experience in the use of security tools.
• Project management skills, and proven task execution (getting things done). 
• Superior Report writing skills.
• Analytical Thinking.

What you can expect from us:

• We believe in a fair and robust interview process
• We have a robust flexible total reward scheme
• Dedicated support and mentoring/coaching
• Opportunity to develop and progress – plus a solid dedication to work-life integration. It all means you’ll have everything you need to advance your career and achieve your full potential.

go to method of application »

DESCRIPTION

We are pleased to announce the subject career opportunity within Technology (M-Pesa Africa) reporting to the Senior Manager-Cybersecurity.

Role Description

As the Manager – Cybersecurity Architecture & Assurance, you will be responsible for:

• Overall planning, supervising, coordinating, advising, and managing Cyber Security, Architecture & Assurance stakeholders and team
• Managing the Security and Privacy by Design Assurance (SPDA) processes
• Ensuring all new and existing systems/products/services comply with Company's security policies & standards and other industry best practices
• Defining, analyzing, and implementing the cybersecurity strategy and roadmap based on the evolving threat landscape and ensure risks identified are mitigated
• Architect and design cybersecurity systems in line with best practices to ensure they meet user requirements including adequate security, capacity, and performance.
• Managing Cybersecurity Planning and execution of the company and Group strategy, Capex budgets, and Project deliverables, specifically related to Cybersecurity
• Delivering the Cybersecurity posture of the company through Project initiatives, including but not limited to Cyber Security Baselines.
• Through projects, facilitate implementation, management, and optimization of Cyber Security policies, standards, and procedures
• Ensuring adequate CAPEX budget, resource, and management focus is on cybersecurity risks
• Driving standards of excellence to achieve the Cyber Security strategy
• Implementing Cyber Security Projects and review Company Technology Projects to close MPA risks, Audit & Reviews (Internal and External)

Key Role Responsibilities

Impact on the business

• Coordinate Project delivery and assessment of the Long-term cybersecurity baselines (CSBs) across all MPA relevant business areas and processes
• The design effectively and efficiently implement Cyber Security controls Projects and requirements across MPA environments
• Own demand planning and forecasting for Cybersecurity, for all systems, services, and processes within the portfolio, working together with vendors and internal customers
• Ensure all M-Pesa and third-party systems’ products, services and projects are compliant with the MPA minimum security requirements and Cyber Security Baselines (CSBs) before Go-Live
• Management of the vulnerability scanning, patching, and penetration tests for technology projects before Go-live
• Coordinate all internal and external Pentest around Technology systems and processes and ensure all audit findings in these systems are closed within agreed timelines
• Support risk assessments across Technology areas and input into risk reports (including risk management committee reports and audit committee reports) to management as and when requested

Customers, supplier, and third parties

• Ensure Cyber compliance with Legal, Regulatory and key stakeholders’ requirements across the Technology domains for all technology projects
• Ensure Security is embedded in Technology Infrastructure (Mobile and Fix)including planning, designing, building, and reviewing cycle
• Create execution strategies that focus on embedding Tech Security controls into existing developer and tester practices and methodologies to enhance the effectiveness
• Responsible for validation, timely completion, and accuracy of Pre go-live Technology audit checklists and user access rights reviews
• Ensure proper implementation, projects and change management processes compliance for all planned and emergency changes in Technology systems projects

Leadership, Planning and Human Resource Management

• Manage all the Cybersecurity CAPEX budgets and planning, in alignment with the company and Group strategy
• Manage the Cybersecurity subordinate resources (FTEs and contractors) for their tasks/job descriptions effective implementations
• Skills development within Cybersecurity department
• Performance Management of the Cybersecurity team
• Provide input to Security Policies and requirements on Technology security methods and technologies
• Provide regular and accurate management reporting on Cybersecurity Projects and Strategy
• Build and manage relationships with key stakeholders to disseminate information and drive mitigating actions.

Innovation and change

• Drive continuous improvement through simplification and automation of key cybersecurity processes

Communication

• Work closely with the projects management team to ensure secure development of software codes and products is adhered to and maintained throughout the software development life cycle
• Make recommendations for Cybersecurity Service Improvement Plans and ensure actions are followed through to completion in a timely manner
• Provide SME input to Cyber Security Policy requirements and procedures

QUALIFICATIONS

Apply if you have:

• Bachelor’s Degree in Electrical Eng./Computer Science/ Information Technology (or equivalent) from a recognized university.
• Minimum of 3 years working experience in Information Systems Security testing – e.g. Ethical Hacking, Penetration Testing, Vulnerability Assessments, Pre-and-Post Implementation System Reviews, etc.
• At least one professional Information Security Qualification: CISM/CISA/CISSP/CEH/CRISC.
• At least 3+ years of hands-on experience in Cyber-Architecture designing, Cybersecurity Audits, Technology Audits, IT Risk assessments, etc
• Certifications in the use and administration of cybersecurity tools e.g. Firewalls/IDS/Content Filters/Antivirus
• Demonstrate competency in the use and administration of ethical hacking tools e.g. KALI Linux, Metasploit, Nexpose, Nessus, Nmap, BurpSuite, etc

We are happy if you have:

• At least ONE certification in Networks (CCNP or CCIE (Security)) or CLOUD or Microsoft, Linux or Unix Operating Systems administration.
• Working knowledge and experience in DevOps and Microservices technologies i.e. Docker, Kubernetes, Jenkins, Gitlab/Github, etc… will be an added advantage
• Excellent communication skills and team player
• Excellent project and time management skills (getting things done in a timely manner) 
• Excellent report writing and presentation skills
• Very analytical and logical thinker
• Self-driven with minimal supervision
• Customer-focused

What you can expect from us:

• We believe in a fair and robust interview process
• We have a robust flexible total reward scheme
• Dedicated support and mentoring/coaching
• Opportunity to develop and progress – plus a solid dedication to work-life integration. It all means you’ll have everything you need to advance your career and achieve your full potential.

Note to Applicants

• As part of our recruitment process, we will request the below documentation which will be required as soft copies at a later stage of the process.
• An updated CV with a confirmation of three referees- 2 must be professional and must have supervised you at some point, the other referee can be a colleague in the same professional field. If the referees are within the same organization that you are working with, you will need to confirm to us that it’s okay to contact them in writing (via email). This also includes all references within the Human Resources department.
• Scanned copy of certificate of good conduct from the CID (Less than 1 year old) - Applicable to Kenyans Only
• Scanned copy of certificate from Credit Reference Bureau (CRB) – Applicable to Kenyans Only
• Scanned copy of University Certificate
• Scanned copy of your National ID / Passport-Legal Form of Identification

go to method of application »

DESCRIPTION

We are pleased to announce the following vacancy in the Core Network Support Department within the Technology Division. In keeping with our current business needs, we are looking for a person who meets the criteria indicated below

Detailed Description

Reporting to the Manager – Core Network Data Support, the role holder responsibilities will include but is not limited operation, maintenance, optimization, automation, transformation, implementation & support of Core Network Services across in the PS domain.

Roles and Responsibilities

• Responsible for implementation, Operation and Maintenance of telco and/or IP network elements e.g MME, PGW, DNS, Routers, switches, virtual machines in a cloud environment.
•  OAM of linux Core Network infrastructure and applications
• Design, deployment and operations of Core network  tools.
• Automation of Core Network Support processes.
• Keeps current with technological developments with an emphasis on security within the industry. Monitors and evaluates competitive applications and products. Reviews literature, patents, standards, open source projects, and current practices relevant to the solution of assigned projects.
• Assists with the design process and assists in guidance with regards to practices, procedures, and techniques.
• Assists in tracking and evaluating performance metrics.
• Works with Quality Assurance and DNOC teams to determine if Core Network infrastructure and applications fit specification and technical requirements. Tests and evaluates systems, subsystems, and components.
• Acts as a technical contact and liaison for outside vendors and/or customers.
• Troubleshoots and resolves complex Core network issues.
• Designs and configures Core Network System

QUALIFICATIONS

• Bachelor’s Degree or Equivalent Electrical Engineering, Computer Science, Information Systems or related certification
• Generally, requires 3-5 years related experience
• GSM/telco systems knowledge
• Familiarity with Virtualization & cloud technologies
• Knowledge of routing and switching technologies
• Possess strong analytical and troubleshooting skills; a commitment to excellence.
• Possess creative ability, credibility, self-confidence and independence.
• Able to work under pressure, make priority decisions and multi-task.
• Knowledge of DevOps automations tools & scripting, Programming in Python is an advantage.

go to method of application »

DESCRIPTION

We are pleased to announce the following vacancy in the Network Design and Planning Department within the Technology Division.   In keeping with our current business needs, we are looking for a person who meets the criteria indicated below.

Detailed Description

Core Network Planning Engineer reporting to the Snr Manager, Core Network Design and Planning.  The position holder will be responsible for Provide support/guidance to the agile teams  in regards to Core capability/configuration, planning and rollout of the Core PS network elements (PS GWs, MME’s Serving GSN, PCRF, MIG, Internet Gateways, Allot NX), Quarterly NDR preparation, design reviews and rollout of new products as required by the business.

Job Responsibilities

• Create KPI for new products/services;
• Marketing proposals, P&S Vendor evaluation process - weighted evaluation for new hardware, features and services;
• Be the lead liason resources between the packet core team and squad teams
• Analyze Core PS network on a weekly basis against the KPI;
• Design Core PS network for new elements are added;
• Minimize network and service impact for any change;
• Scheduling all the planned worked;
• Create and update handover system configuration documentation after software/hardware upgrade;
• Configure data for new systems with vendor engineer;
• Create necessary work instruction for existing systems;
• S.W.O.T Analysis of Projects;
• Provide recommendation reports to Identify opportunities for improvement and optimization of existing services;
• Create a tool/find out method to get statistical data from the system;
• Analyze the effect of a new/improvement change before & after implementation;
• Setup Internal training;
• Transfer knowledge to Squad members, technicians and other Engineers;
• Build internal and external relationships with key customers and suppliers to deliver continuous quality solutions to business;

QUALIFICATIONS

• Degree in Electrical and Electronics Engineering (or related technical field) from a recognized university/institution with a bias in Telecomm.
• 3 Years working Experience in Telecommunications environment with a bias on GSM/GPRS/3G & 4G Technologies
• CISCO – CCNA
• Project Management Experience/qualification is an added advantage