Jobs at Equity Bank Kenya

The role involves on evaluating risks, ensuring adherence to international banking regulations, and monitoring for suspicious activities. Key responsibilities include performing due diligence for IMT partners both existing & new, supporting Enterprise Risk Management (ERM) initiatives, training staff on AML/CFT protocols, and developing relevant policies. The position also requires close collaboration with various departments and managing audit findings effectively. 

Job Responsibilities/ Accountabilities   

• Conduct risk assessments for International Banking projects to ensure regulatory compliance.
• Monitor suspicious transactions, build case files, and escalate issues to management.
• Review and fine-tune transaction monitoring thresholds annually.
• Manage AML questionnaires and document requests from partners and clients.
• Assess risks for International Banking, subsidiaries, and Money Transfer functions.
• Evaluate partnership contracts for risk alignment with business appetite.
• Develop key risk indicators for early detection and monitoring.
• Promote risk awareness and accountability through training and reporting.
• Support Enterprise Risk Management (ERM) implementation and AML/CFT query handling.
• Lead business continuity and disaster recovery planning and exercises.
• Perform Enhanced Due Diligence (EDD) and KYC on high-risk relationships and train staff.
• Foster collaboration on KYC, AML, and sanctions using advanced technologies.
• Educate stakeholders on regulations and recommend training.
• Advise on product risks and oversee product risk committee activities.
• Develop and enforce policies across subsidiaries; monitor compliance.
• Maintain product knowledge and recommend system security improvements including GDPR compliance.
• Build internal relationships to aid risk mitigation and follow up on audit findings.
• Represent the bank locally and internationally as needed. 

Qualifications

Required Skills and Qualifications

• Bachelor’s degree in business management discipline or related field from a reputable institution is preferred with a postgraduate training in financial services, Risk Management and or compliance as an added advantage.
• Minimum of 1 years’ experience in KYC and AML Compliance within a fast-paced organization, with a solid understanding of banking operations, systems, and processes.
• At least 1 year of experience interacting with banking systems in risk management or control functions.
• Experience working in big data analysis environments using tools such as SQL and advanced Excel.
• Proven ability to manage and collaborate with geographically dispersed teams and navigate matrixed organizational structures.
• Commitment to adhering to a strict code of conduct and ethical standards.
• Strong alignment with the organization’s vision, mission, and values, including mutual respect, equity, justice, honesty, and transparency.
• Excellent communication and interpersonal skills.
• Demonstrates high integrity, initiative, and a positive attitude towards continuous learning and knowledge sharing.
• Knowledge of diaspora banking and international money transfer (IMT) services is a plus.

go to method of application »

The Cloud Security Architect will be responsible for designing and implementing the security measures that would protect the bank’s cloud infrastructure, assets, and data as it moves between its on-site Data Centre and her Cloud Service Provider infrastructure regardless of the model of cloud deployment.

Key Responsibilities / Deliverables: 

• Designing and implementing the security measures needed to protect data stored on public clouds against unauthorized access, including secure authentication methods, encryption, access control lists, intrusion detection systems, firewalls, and other measures. 
• Working with security specialists to design new security protocols as needed, then testing them to ensure that they work as intended. 
• Installing and maintaining security software on company cloud workloads.
• Recommending and implementing new security measures as needed to keep virtual assets and the virtual environment safe.
• Secure and automate capabilities through collaboration with DevOps, Network and System Administrators 
• Assist with engineering the Azure Active Directory access and Group Policies, Cloud Access Security Broker platform, Cloud Native-Application Platform Protection solution. 
• Additional knowledge on other domains will be used to assist other Cyber Security Domain Architects covering other security domains (for example DevSecOps, Threat Modelling, mainframe, data, PKI and cryptography, network security, platform security, IAM, application security etc.) 
• Hands-on experience in either of the prestigious Cloud Service Providers (AWS/GCP/Microsoft Azure) security architecture, security engineering, or equivalent experience with vendor specific cloud certification.
• Identifying new cloud related security threats and recommending ways to address them.
• Translate business requirements, risk assessments, high-level policies and controls towards zcloud security architecture requirements and designs for existing or new cloud security services and projects on business and IT side.
• Designing and developing security architectures that align with an organization’s strategic goals. • Define and advise on the design, implementation and processes necessary to protect virtual assets 
• Participate in discussions regarding the high level IT and operational process design and implementation of security in cloud related projects 
• Act as a security subject matter expert for Cloud strategy, adoption and implementation. 
• Your stakeholders are mainly business owners/analysts, project leaders, enterprise architecture, risk management, internal/external auditors and IT engineers, developers and solution designers 
• Responsible for application security but with a good working knowledge of other security domains (Cryptography, Identity and Access Management, Threat and Vulnerability Management, Infrastructure and Networks and Auditing, Logging and Compliance) 
• Lead the enhancement and optimization of implemented reporting mechanisms to demonstrate the value of the Advanced Cyber Security & Emerging technologies / controls function with tangible benefits.
• Follow information security policies, methods, standards such as: National Institutes of Standard and Technology (NIST) standards, Open Web Application Security Project (OWASP), Cloud Security Alliance and its Cloud Control Matrix; and practices to organizational information systems, IT reference materials and interpret regulations. 
• Help coordinate the implementation of security programs across all platforms that would be cloud centric. 
• Assist and participate with the Senior IT Specialist as an advisor in projects to enhance or develop new IT systems, or to study the feasibility of acquiring new technology. 

Strategy: 

• Understand cloud computing - its tenents, deployment model and characteristics; information security domain of Network, Application, Infrastructure, and Database
• Document and communicate security architecture to the GM, Enterprise Security Architecture team and the Chief Information Security Officer respectively.

Qualifications

Qualification / Certifications:

• A Degree or its equivalent in Information Technology, Network Security, Enterprise Network Management, Information Security, Management Information System Computing, Engineering, or similar area of study. Professional certifications such as: Azure Security Engineer, AWS Certified Cloud Practitioner, GCP Certified Associate Cloud Engineer, CompTIA Security+, Azure Security Architect, Azure Fundamentals, ISC2 Certified in Cybersecurity, CISSP or CEH
• Minimum 5+ years of increasingly diverse and complex experience in field of Cybersecurity within a global environment, with at least a minimum of 2+ years as a cloud engineer/cloud security analyst 
• Experience helping development teams build and deploy micro services-based applications in public cloud. 
• Experience with Continuous Integration & Continuous Deployment tools and processes. 
• Understanding of emerging technologies and end-user needs. 
• Understanding of Infrastructure as a Service, Platform as a Service, Software as a Service, Infrastructure as Code, and related concepts on public cloud. 
• Container experience with Docker and Kubernetes or other container orchestration platforms.
• Understanding of Agile, SCRUM and Continuous Integration/Continuous Delivery. 
• A willingness to work as part of a diverse team with an open mindset, allowing you to collaborate with colleagues and contribute to the success of your team. 
• Cloud Security –Technical understanding of virtualization, cloud infrastructure, and public cloud offerings. Experience designing network security configuration and controls within cloud-based solutions in Microsoft Azure and Azure PAAS service 
• Direct experience migrating applications to public cloud providers (e.g., Amazon, Google, or Microsoft). 
• Network Security Architecture – Deep technical understanding of designing and securing of both WAN and LAN environments including SD WAN, MPLS, VPN, Segmentation, MicroSegmentation, Factory Segmentation, Routing and Switching. Routing and Switching design, deployment, and Operations. 
• Experience designing, implementing, deploying and operating vulnerability scanning infrastructure and services 
• Experience with the integration of common infrastructure security technologies and solutions into business solution architectures including the integration of identity & access management, intrusion detection and prevention, security monitoring, and data encryption solutions 
• Excellent verbal/written communication, collaboration, analytical and presentations skills 
• Ability to carry high-level conversations; proven ability to present to senior leadership. 
• Hands on experience in deploying security technologies such as identity management technologies, cloud security technologies, data encryption technologies, virtualization security 
• Excellent understanding of Identity and Access Management design and process 
• Excellent understanding of directory services 
• Experience of identifying and managing technology security risk