Latest Jobs at Co-operative Bank of Kenya Limited

We are looking for a seasoned database administrator with a knack for end-to-end proactive database design and management, a gritty never-say-die doer who relishes challenges, is dynamic, resilient, creative and highly motivated.

If you are looking for an employer who promotes individual excellence and mutual respect in a team-driven culture with a key focus on social empowerment, then the Database Administrator position within The Co-operative Bank of Kenya, “The Kingdom Bank” is the perfect opportunity for you to scale new horizons.

The role holder will ensure performance monitoring and management of database, data warehouse components, Supporting Infrastructure, and general ICT systems through setting up of optimal performance benchmarks and the use of modern best practice and appropriate tools to meet business performance growth demands, ensure system security, business continuity and competitiveness in product and service development.

The Role

Specifically, the successful jobholder will be required to:

• Monitoring performance and managing parameters to provide fast query responses to front-end users ensuring performance of production databases.
• Monitoring including systems logs, events and event correlation and maintaining performance statistics and setting baseline statistics.
• Monitoring and managing the high availability components including RAC, Data guard, RMAN, ASM and the underlying infrastructure for mission critical databases.
• Developing, managing and testing back-up and recovery plans and ensuring that storage, archiving, back-up and recovery procedures are functioning properly.
• Take lead role in the various I.T. audits in providing necessary information and enforcing closure of audit, change management and compliance issues.
• Manage key I.T. risks for all database systems and ensure proper mitigation.
• Take lead role in BCP and disaster recovery preparedness through periodic testing as scheduled and update of disaster recovery procedures and sharing the results with management.
• Team up with applications support, development and infrastructure team in the development, implementation, management applications, infrastructure, and monitor system health in order to proactively identify weaknesses and address them.
• Perform database tasks such as schema design, capacity planning, maintenance, trouble shooting, and change control activities.
• Considering both back-end organization of data and front-end accessibility for end-users and further refining the physical design to meet system storage requirements.
• Installing database management systems (RDBMS) using best practice; ensure compliance with RDBMS license agreements and maintain upgrades and critical patches
• Database setup, configuration and administration of MYSQL, MSSQL
• Installation and Administration of SAP HANA databases
• Creating and maintaining database documentation, including data standards, procedures and definitions for the data dictionary (metadata) and maintain all technical documentation relating to database management.
• Communicating regularly with technical, applications and operational staff to ensure database integrity and security.
• Perform under limited supervision, maintain reliability of data and databases, and assist in developing and implementing standards for database maintenance and configuration

Skills, Competencies and Experience

The successful candidate will be required to have the following skills and competencies:

• Bachelor’s degree in Software Engineering, Computer Science, Information Technology, or related discipline, or equivalent.
• 3 -5 years in database technology with experience deploying database and data warehousing technologies (e.g. High Availability, Real Application Clusters, ESBU Backups, Partitioning, Oracle DataGuard) in production environments.
• Oracle RDBMS 11g/12c OCP certification as well as strong SQL and PLSQL skills including data warehouse objects such as partitioning and materialized views.
• Skills in Oracle RDBMS 19c
• Skills in Oracle Engineered Systems e.g. Oracle SuperCluster, Exalytics, Exadata Storage, ZFS storage and SmartScan.
• Skills in Data Integration, Data Warehousing, Business Intelligence, OLAP, and Data mining as well Familiarity with ICT standards such as ITIL, COBIT.
• Proficiency in various operating systems like AIX, Solaris, Linux & windows.
• Thorough knowledge on data profiling, data modeling and data validation and associated tools; Skills in Database Sizing, Storage, Performance, and Security Considerations.
• Strong analytical skills; ability to analyze and correlate complex data and excellent knowledge on the Oracle Technology stack as well as excellent knowledge of ICT system architectures, platforms and Infrastructure. 
• Ability to effectively communicate complex technical issues and exhibit a wide degree of creativity and latitude coupled with the ability to lead and direct the work of others without the benefit of a direct reporting relationship as well as the ability to utilize independent judgment and to support senior managers on operational criticality
• General awareness of the banking industry ICT operations and security procedures.

go to method of application »

Are you competent, highly motivated and passionate about Information and Communication Technology? Are you knowledgeable and well-experienced in information security or security engineering? Do you enjoy carrying out analytical roles in complex business environments? We are looking for a competent candidate to fill the position of Applications and infrastructure Security Officer within The Co-operative Bank of Kenya, “The Kingdom Bank.”

The ideal candidate for this position must have a passion for excellence coupled with the ability to embrace a problem-solving approach when faced with new, difficult or challenging situations and exhibit sound judgment.

The role holder will report to the Head of ICT Security to enforce security policies to protect the organization’s computer infrastructure, networks and data. The role holder will assess the organization’s infrastructure and data to identify vulnerabilities caused by weaknesses or flaws in software and hardware that could expose the infrastructure to a security breach. They also evaluate the effectiveness of existing security measures, such as firewalls, password policies and intrusion-detection systems. They make recommendations to improve security based on their assessments and knowledge of current and emerging threats.

The Role

Specifically, the successful jobholder will be required to:

• Perform security reviews across applications (Web, thick, thin, and mobile), systems, APIs, infrastructure devices, servers and databases to ensure that a risk-based and threat-aware approach to systems and infrastructure provisioning and management is adopted.
• Co-ordinate and conduct red team tests with the SOC and ICT Risk teams to assure on IOC (Indicators of Compromise) detection capabilities. Conduct vulnerability assessments and identify prioritized weaknesses that are exploitable for closure.
• Enforce vulnerability and patch management across all enterprise systems. Ensure that all systems are regularly updated and report on discrepancies based on criticality.
• Support the wider ICT project portfolio by acting as a subject matter expert, embedding cybersecurity from project initiation, through go-live and into post-deployment.
• Enforce policies, secure configurations and rule sets that will enforce protection of data and limit user access as appropriate. 
• Develop and maintain a prioritized asset and applications register of all ICT assets in the bank.
• Ensure firewalls, switches and other infrastructure are up to date and are running optimized security configurations and policies.
• Ensure servers are hardened and PCs are deployed with minimum security baselines configured. Develop baselines for installations of PCs, servers and databases.
• Develop an annual systems security assessment plan, prioritizing systems based on criticality.
• Act as point person for all external security tests conducted by external auditors and be familiar with current attack methodologies and cyber defenses.
• Make technical recommendations on areas of improvement of the bank's configurations at operating system, database and infrastructure levels.
• Leverage emerging threat intelligence (IOCs, updated rules, etc.) to identify affected systems and the scope of any threat or cyberattack. Review and collects asset data (configs, running processes, etc.) on these systems for further investigation. Determine and direct remediation and recovery efforts.
• Conduct deep dive forensic investigation and simulation of possible attack / cyber-fraud methodology.
• Ensure that all cybersecurity risk management requirements within different sandboxes are addressed and where necessary escalated through the available defined channels.
• Continuously run initiatives that create and enforce security awareness across the bank.
• Generate reports on overall network security status from a controls perspective and robustness of existing configurations in minimizing likelihood of successful cyberattack(s). Compile monthly system and network security status based on compromise threats and assessments conducted.
• Interact with ICT and ensure they understand concepts relating t

Skills, Competencies and Experience

The successful candidate will be required to have the following skills and competencies:

• An IT-related bachelor’s degree or business related degree with relevant IT Security professional qualifications, i.e. Cisco Certified Network Associate (CCNA)/ Certified Information Systems Auditor (CISA) certification/ Certified Information Systems Security Professional (CISSP), CCIE (Security), CEH, CHP, or other relevant security certifications.
• Good understanding and knowledge of security assessment, vulnerability management, penetration testing methodologies and toolsets.
• Working knowledge and experience in penetration testing and vulnerability assessments.
• Knowledge of common cybersecurity threats and sources of cybersecurity information.
• Communication and reporting skills.
• Good software development and familiar with database solutions.
• Good understanding of ICT infrastructure setup, networks and infrastructure components.
• At least 4 years’ experience in leading ICT Security Services. Strong knowledge of security architectures and technologies including assessment, methodologies, compliance standards, etc.
• Knowledge of security standards and compliance like PCI, HIPAA, Sarbanes Oxley, ISO 27001, NIST, CSF, COBIT, ITIL, SANS 20.
• Good understanding and knowledge of risk assessment, risk procedures, security assessment, vulnerability management, penetration testing.
• Strong experience and ability to prepare RFP/RFI response, proposals and solutions and solid working knowledge of vendor programs and partner eco-system.
• Strong knowledge of Cloud architecture and its security concerns and solid knowledge of solutions from vendors.
• Good demonstrable knowledge and experience in securing mobile applications and API architectures.
• o cybersecurity, threats and how to ensure a security-conscious setup is used for all systems and infrastructure setups.