M-Pesa Africa Cyber Security_ Evergreen Application – Multiple Roles at Safaricom Kenya

You will be accountable for ensuring the security, integrity and confidentiality of Cloud-based systems and services. This role focuses on designing, implementing, managing and maintaining robust cybersecurity solutions and processes that protect cloud infrastructures, applications, and data across platforms such as AWS, Azure and Huawei Cloud. 

Key Responsibilities: 

• Manage Security and Privacy by Design Assurance (SPDA) for all cloud services. 
• Design and implement secure multi-cloud architectures, ensuring compliance. 
• Conduct vulnerability assessments, penetration tests, and real-time threat monitoring. 
• Manage IAM policies, multi-factor authentication, and incident response. 
• Collaborate with DevOps teams to embed DevSecOps practices. 
• Develop cloud security policies and stay current on cloud security trends. 

Qualifications & Experience: 

• Cybersecurity and cloud security experience 
• Degree in Computer Science, IT, or related field. 
• Hands-on with cloud platforms and security tools (SIEM, IDS/IPS). 
• Skilled in automation/scripting tools (Terraform, CloudFormation, Python). 
• Certifications like AWS Security Specialty, Azure Security Engineer, CISSP, or CISM. 

go to method of application »

You will be responsible for ensuring that the organization’s cyber security risks are under explicit management control and as well coordinate strategic integration of cyber security programs within Safaricom. You will be part of the team that drives compliance to internal and global cyber security related policies and standards, Vodafone Cyber Security Baseline controls and applicable Market laws and regulations. 

Key Responsibilities: 

• Lead compliance with Vodafone Cyber Security Baselines and legal frameworks. 
• Update and communicate security policies and conduct risk assessments. 
• Manage audits, remediation plans, and stakeholder coordination. 

Qualifications & Experience: 

• Bachelor's degree in Computer Science, IT, or related. 
• Experience managing cybersecurity standards (ISO 27001, PCI-DSS). 
• Experience with GDPR, Kenyan laws, and Vodafone Baselines. 
• Certifications such as CISM, CISA, CISSP, or CEH. 

go to method of application »

You will play a pivotal role in safeguarding our organization's digital assets and ensuring robust cybersecurity measures are integrated into all projects from inception to implementation. You will lead efforts to manage Security and Privacy by Design Assurance processes, conduct thorough security assessments, and perform penetration tests to identify and mitigate vulnerabilities.  

Key Responsibilities: 

• Manager Security and Privacy by Design Assurance (SPDA). 
• Perform penetration tests on infrastructure, applications, APIs, and networks. 
• Assess systems for compliance and simulate attack scenarios. 

Qualifications & Experience: 

• Expertise with penetration testing tools (Burp Suite, Metasploit). 
• Skilled in automated and manual security testing. 
• Experience with secure software development lifecycle. 

go to method of application »

You will be responsible for proactively identifying threats and vulnerabilities; detecting and mitigating cyber events; and managing cyber security incident responses to minimize service impact and provide a secure digital future for our customers. The expertise in this team drive Cyber security improvement across MPA with collaboration with the Vodacom Group, Markets, other Group and Operating Company operational teams and external partners.   

Key Responsibilities: 

• Coordinate and optimize monitoring controls, lead incident management, and support security audits. 
• Optimize cyber security baselines and monitoring controls. 
• Manage security incident processes and coordinate responses. 
• Support technology audits and close findings promptly. 
• Manage forensic tools, EDR, and logging solutions. 
• Collaborate with Vodacom/Vodafone Cyber Defense teams. 

Qualifications & Experience: 

• Degree in Computer Science, IT, or related. 
• Certifications: CISSP, CISM, CISA, CCNP/CCIE Security preferred. 
• Experience in incident management, intrusion analysis, or network troubleshooting. 
• Experience in managing security tools and deployments. 
• Experience working with Vodafone Cyber Defense a plus. 

go to method of application »

You will lead and coordinate optimization of the Operational & Monitoring cyber security baselines (CSB) controls across all MPA relevant business areas and processes as well as set-up, execution and maintenance of the security incident management and coordination process in conjunction with incident management capabilities.

Key Responsibilities: 

• Support Privileged Access Management (PAM) activities. 
• Maintain firewalls, WAFs, antivirus, IDS/IPS, and logging systems. 
• Troubleshoot and remediate security operational issues. 
• Implement cyber security policies and support incident response. 
• Drive continuous improvements and close audit findings. 

Qualifications & Experience: 

• Degree in Computer Science, IT, or related. 
• Experience in network security and PAM solutions. 
• Certifications like Security+, CCNA Security preferred. 
• Strong knowledge of Microsoft, Linux/Unix, IAM, and security tools. 
• Excellent communication and project management skills.