Jobs at KCB Bank Kenya

The Position: 

The Enterprise Security Architect role is responsible for securing enterprise information systems and assets by determining, planning, ensuring implementation and testing of security requirements. The role will be responsible for developing and maintaining an Enterprise Security Architecture Framework, security controls library and security standards, policies, and procedures.

Key Responsibilities:

• Design, implement and maintain the group’s Enterprise level Security Architecture framework in line with best practice in collaboration with the Group Enterprise Architecture function.
• Ensure the preparation, documentation, and maintenance of Information Security policies, standards, and procedures.
• Define information security requirements and acceptance criteria for new systems as well as maintain an information security controls library by evaluating business strategies and requirements, including adherence to industry standards such as SWIFT CSP, PCI DSS.
• Ensure compliance with Group Information Security standards in all business and technology projects, from requirements specification, procurement, analysis to go-live, to ensure that security standards are followed to deliver secure systems.
• Lead the involvement of Group Information Security in DevSecOps organization and secure SDLC ensuring integration of security and compliance through requirements specification, development, testing, deployment, and maintenance lifecycles.
• Plan, coordinate, and manage Information Security involvement in the change management process, representing the department in Change Advisory Board (CAB), and advising the Head, Group Information Security of adherence to Information Security requirements.
• Manage and direct the team of application security testers and DevSecOps Security Analysts to ensure secure developments and deployments are done by agile scrum and project teams.
• Participate in the formulation, analysis, and periodic review of the Group Information Security strategy, roadmap and budget to compliment and enable the overall Group Technology strategy, risk management framework, and evolving threat and regulatory landscape.
• Participate in collaboration with other Group Information Security units to plan for security systems, developing security requirements that ensure confidentiality, integrity, and availability of the group’s information systems, in line with the Bank’s defined Enterprise Security Architecture, industry standards and trends.
• Define, monitor, and report on information security metrics periodically to senior management to demonstrate return on security investment.

The Person:

For the above position, the successful applicant should have the following:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering (Electrical/ Electronic) or related field.
• Professional qualifications in any one of the following:
• Information Security Certification in CISA/ CISM/CISSP/ Security +.
• Certification in Network/ Database/ System/ Security Administration of either Cisco/ Checkpoint/ Fortinet/ Oracle/ Microsoft/ SIEM.
• Information Security testing and DevSecOps certification of wither Certified DevSecOps Professional/ Certified Secure Software Lifecycle Professional/ CEH/ OSCP/ CPT/ GPEN/ GWAPT.
• 6 years Technology experience with at least 3 years in Cybersecurity.
• 3 years’ experience in System/ Network/ Database or Cloud Platform Administration.
• 2 years’ experience in System Security Testing and leading technical teams.
• Strong interpersonal and communication skill

go to method of application »

The Position: 

The Information Security Specialist, Data Protection and Privacy is responsible for maintaining the integrity and confidentiality of the organization’s data while in use, in motion and in situ, in the Group’s information systems by implementing, maintaining, and monitoring effective data security controls and policies. The holder is also responsible for the deployment, testing and maintenance of data loss prevention systems, information protection security systems, and enforcement of database security controls.

Key Responsibilities:

• Recommend, implement, administer, optimize, and support appropriate tools and solutions offering data loss prevention, and information protection in compliance with the Bank’s policies and standards.
• Continuously review, enforce, and report on database and data store security controls that cover the major database management systems such as Oracle, Microsoft SQL Server, MySQL, PostgreSQL.
• Collaborate with the Cybersecurity Intelligence and Security Operations Centre (CiSOC) in the continuous monitoring and defence of the Bank’s data, information and databases from data leakage, intrusions, unauthorized access, unauthorized modification as well as assist to detect, report, and respond to data security violations/incidents.
• Develop Data and Database Security Technical Guidelines and Minimum Configuration Baseline Standards in line with industry best practices and technologies commensurate with risk and regulatory requirements and implementing the same cost effectively.
• Implement and enforce technical security controls to achieve data protection objectives set out by the organization and regulatory requirements such as the Kenya Data Protection Act, and CBK Guideline for Cybersecurity
• Define, create, and deliver compliance reports and relevant metrics in Data Security & Privacy to senior management, including violations, utilizing automation as deemed fit.
• Provide data security and privacy related support to projects from inception through to successful implementation in a bid to ensure that data security and overall information protection measures are built in from project inception.
• Conduct continuous data security reviews and data discovery assessments to determine any data security violations as well as efficacy of implemented countermeasures.
• Provide input into Information Security risk and control self-assessments by leveraging specialized knowledge in data security, databases, privacy, and information protection.
• Research on and provide technical data security and privacy expertise in the Group Information Security department, conduct data security awareness and user training sessions across the group.

The Person:

For the above position, the successful applicant should have the following:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering (Electrical/ Electronic) or related field.
• Professional qualifications in any one of the following:
• Information Security Certification in CISA/ CISM/CISSP/ Security +.
• Oracle Database certifications in OCP/ Oracle Database Security/ Microsoft Database certifications e.g. MCDBA.
• Data security and/ or privacy certifications in either Certified Data Privacy Solutions Engineer/ Certified Information Privacy Professional.
• 5 years Technology experience with at least 2 years in Cybersecurity.
• 3 years’ experience in Database Administration/ Data/ Data Security.
• Experience in administering data/ information protection and privacy solutions will be desired.
• Strong interpersonal and communication skill

go to method of application »

The Position: 

The Cybersecurity Specialist, Security Testing will assess the security posture of existing and proposed / new technology systems, platforms, and processes, to protect and continually improve the confidentiality, integrity & availability of information systems, in accordance with KCB Group’s business objectives, regulatory requirements, and strategic goals. The Cybersecurity Specialist (Security Testing) is responsible for conducting Security and Penetration Testing exercises, recommending appropriate controls, and managing various testing solutions and tools for the Group.

Key Responsibilities:

• Design, implement and support VAPT solutions identified as necessary for the protection of KCB Group information assets.
• Serve as one of the system owners for and administer common VAPT toolsets, platforms, and processes, as well as serve as a Subject Matter Expert (SME) for the VAPT role for VAPT exercises executed internally or by contracted vendors.
• Perform vulnerability assessment and penetration testing on the banks infrastructure and systems to ensure that they are secure from external or internal intrusion attempts thus reducing the risk of successful intrusions against KCB group.
• Provide technical VAPT related support to projects from inception through to successful implementation in a bid to ensure compliance to technical security policies and standards. This will also include VAPT related support for significant changes before promotion to production status.
• Perform authorized attack surface reviews and penetration tests against specific targets at the direction of the Senior Managers Information Security and Head, Group Information Security.
• Provide assessment reports that are easily understandable by the target audience and include practical and reasonable recommendations based upon sound risk management principles. Maintain a Vulnerability Scoring System that captures the qualitative representation (Such as low, medium, high and critical) of the assessment reports to help KCB Group properly assess and prioritize its vulnerability management process.
• Assess the sufficiency of policies, standards, and procedures relative to VAPT best practices. Author standards and procedures designed to continually improve security posture.
• Perform continuous vulnerability monitoring in the KCB group environment and report compliance failures to management for immediate remediation.
• Define, create, and deliver status reports and relevant metrics to the Senior Manager, Information Security Operations.
• Provide input into Information Security risk control self-assessments by leveraging specialized knowledge in VAPT.

The Person:

For the above position, the successful applicant should have the following:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering (Electrical/ Electronic) or related field.
• Professional qualifications in any one of the following:
• Cybersecurity certification in CISA/ CISM/CISSP/ Security +.
• Penetration testing/ Cybersecurity Assurance Certification in either CEH/ OSCP/ CPT/ LPT/ PenTest+/ ECSA/ CHFI.
• 5 years Technology experience with at least 2 years in Cybersecurity.
• 3 years’ experience in System/ Network/ Database or Cloud Platform Administration.
• 1 year experience in in Vulnerability Management/ Security Testing/ Penetration Testing.
• Strong interpersonal and communication skill

go to method of application »

The Position: 

The Information Security Specialist, Threat Intelligence will serve as a support system for the Bank’s Cyber Intelligence and Security Operations Centre (CISOC), Incident Response teams providing actionable intelligence by leveraging security tools and solutions, internal and external threat intelligence sources, regulator, and vendor advisories, etc to ensure the Bank has the most up-to-date cybersecurity threat intelligence.

Key Responsibilities:

Identify patterns, trends, and events in Bank’s systems, and effectively make recommendations to the CISOC and Incident Response teams.
Research, collect, fuse, and analyse open source and proprietary threat reporting tools to provide productive and actionable cyber threat intelligence.
Carry out security awareness training and education programs, and internal phishing awareness campaigns.
Maintaining a forward-looking view of the cyber threat landscape as it relates to financial sector, predicting shifts in adversarial intent, goals, and strategic objectives.
Maintain thorough documentation of cyber threats, threat vectors, threat actors, and threat trends, tactics, techniques, and procedures for consumption during threat modelling activities and security incidents.
Build and leverage relationships with internal/external peers from public and private sector organizations.
Assist in developing and refining cyber threat intelligence lifecycle processes.
Working side by side with internal cybersecurity defenders to provide intelligence-driven insights into existing and emerging threats.
Stay up to date with relevant vulnerabilities, threat actors, indicators of compromise (IOCs) tactics, techniques, and procedures (TTPs), and trends, identifying actionable areas of interest and threats.
Delivering timely, relevant, and actionable intelligence and recommendations through reports, briefings, and threat assessments to stakeholders to improve the ability to detect threats in the Banks’s environment.
The Person:

For the above position, the successful applicant should have the following:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering (Electrical/ Electronic) or related field.
• Professional qualifications in any one of the following:
• Certified Incident Handler (E|CIH).
• Certified Threat Intelligence Analyst (CTIA).
• Certified Information Systems Security / Professional (CISSP).
• Certified Ethical Hacker (CEH).
• Offensive Security Certified Professional (OSCP).
• Security+.
• GIAC Cyber Threat Intelligence (GCTI).
• GIAC Certified Incident Handler (GCIH).
• 5 years Technology experience with at least 2 years in Cybersecurity.
• 3 years’ experience in System/ Network/ Database/ Cloud Platform Administration or Application Development.
• Strong interpersonal and communication skil

go to method of application »

The Position: 

The Cybersecurity Analyst, DevSecOps is responsible for undertaking security assurance of applications and developments before release to production, conduct periodic security reviews, and will be a contact person in Information Security for assigned agile scrum teams. The analyst ensures that security requirements are well captured and embedded in the secure SDLC for all system developments and deployments, secure coding practices are adhered to, and secure software and application configurations are maintained in the system’s lifetime. 

Key Responsibilities:

• Represent Group Information Security in assigned implementation projects and scrum teams to ensure all applications and changes meet set information security requirements before introduction to production environments.
• Contribute to the definition, documentation, and implementation of software security policies, secure coding practices and guidelines for the bank in line with industry best practices and technologies commensurate with risk and regulatory requirements.
• Consistently provide security requirements to developers and third parties to adhere to and comprehensively implement the Bank’s software security assurance framework by carrying out security and risk assessments of application and software changes.
• Collaborate with Enterprise Architecture and Business Application Development teams to identify application/software security improvements and plug-in identified security controls in DevSecOps tools.
• Contribute to formulation and conducting of regular trainings on secure coding, software security and application security practices for the development and other KCB technology teams at regular intervals.
• Contribute to the identification, integration, and maintenance of application security tools, such as SAST (Static Application Security Testing) and DAST tools (Static/Dynamic Application Security Testing), standards, and processes into the software development or product life cycle (SDLC / PLC), and CI/CD pipelines.
• Perform security and risk assessments for business solutions to identify inherent security risks and provide recommendations for addressing such risks.
• Create, and deliver software/application security compliance and testing reports and relevant metrics to the Bank’s Senior Management.
• Collaborate in the continuous monitoring and defence of the Bank’s critical applications, such as core banking, and digital channels, for cybersecurity threat indicators; report on violations and security measures taken to address threats.
• Protect the bank’s applications and systems by defining and reviewing access privileges and other security control structures.

The Person:

For the above position, the successful applicant should have the following:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering (Electrical/ Electronic) or related field.
• Professional qualifications in any one of the following:
• Information Security certification in CISA/ CISSP/Security+.
• Information Security Testing and DevSecOps certification in either CDP (Certified DevSecOps Professional)/ CSSLP (Certified Secure Software Lifecycle Professional)/CEH, OSCP/ CPT/ GPEN/ GWAPT.
• 3 years Technology experience with at least 1 year experience in:
• Information Security.
• Secure SDLC and DevSecOps.
• Testing or implementing web, API, containerisation, or mobile application security best practices (such as OWASP, NIST).
• Experience in working with CI/CD tools, financial and capital markets desired.
• Strong interpersonal and communication skill

go to method of application »

The Position: 

The CISOC Analyst is responsible for front-line cybersecurity defence focusing monitoring, detection & responding to cyber security incidents in real time.

Key Responsibilities:

• Monitor user and system activity to identify suspicious activities leveraging on security systems.
• Monitor network activity and investigate anomalous events and traffic trends.
• Check security monitoring status of systems on monitoring tools and initiate remediate on noted gaps.
• Monitor alerts and alarms from security monitoring tools and initiate corrective actions.
• Configure and finetune security monitoring systems to make sure the Bank is sufficiently protected.
• Administer security tools ensuring optimal uptime and resource utilization.
• Investigate suspicious user and system events and identify breaches and root cause.
• Mitigate intrusion attempts through proactive response to incidents.
• Prepare manual and scheduled reports for various stakeholders.
• Research and stay up to date on technology and cybersecurity trends.

The Person:

For the above position, the successful applicant should have the following:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering (Electrical/ Electronic) or related field.
• Professional qualifications in any one of the following:
• Certified SOC Analyst (CSA).
• Certified Incident Handler (E|CIH).
• Certified Threat Intelligence Analyst (CTIA).
• Certified Information Systems Security /Professional (CISSP).
• Certified Ethical Hacker (CEH).
• PENTEST+.
• Security+.
• 3 years Technology experience with at least 1 year experience in Cybersecurity.
• 2 years’ experience in System/ Network/ Database/ Cloud Platform Administration or Application Development.
• Strong interpersonal and communication skill