Openings at NCBA Group

Job Purpose Statement

The role of Head, Information Security will provide continuous assurance of NCBA Group’s information systems around confidentiality, integrity and availability of information, and ensure protection of these information assets by ensuring appropriate security controls are in place to protect the Group’s technology and information assets from information & cyber security related risks. This role will define and execute the information security strategy and roadmap for the Group, ensuring that governance and assurance in information security is enshrined and practiced within the Group, appropriate technology systems and controls are implemented, as well as ensuring that key technology projects and initiatives are compliant with security best practices and guidelines.

Key Results Areas

Strategy and Roadmap 20% 

• Develop and align the information security strategy to the Group and Information Technology strategy, to ensure information security supports business objectives.
• Execute an information security roadmap, aligned to information technology roadmap and in support of business growth.
• Define Information Security architecture in line with the technology architecture blueprint and best practice.

Cyber Security Defence 25% 

• Setup and implement Information Security practices around patching, vulnerability, malware management program etc. within the Group, ensuring that vulnerability assessments & penetration testing is conducted and patching and remediation of vulnerabilities is done as per policy and procedure.
• Drive the implementation, administration and support of technology control systems as per the IS roadmap.
• Implement continuous monitoring of technology assets for cyber incidents that impact on confidentiality, integrity and availability of systems, by putting in place the appropriate people, processes and technology.
• Implement security incident response for effective response, containment and recovery from security incidents or breaches.

Cyber Security Assurance 25% 

• Provide information security assurance to technology systems to ensure that new products, services, channels and other IT changes introduced meet the security compliance thresholds.
• Participant as a key stakeholder in the Bank’s Change Management governance process (Change Advisory Board) with responsibility to approve or reject changes that do not meet the compliance threshold.
• Participate and contribute towards developing and supporting IT practices (e.g. agile, DevSecOps)

Information Security Governance 20% 

• Develop and implement Group Information Security framework, strategy, policy and procedures.
• Ensure that best practice and regulatory guidelines on Cyber Security are enshrined within the Group’s policies and procedures.
• Develop and implement an effective information security awareness program covering all staff and key stakeholders of the Bank.
• Develop and implement a robust IT Business Continuity Management program, ensuring that effective BCP & DR processes are setup and executed.
• IT department risk champion, interfacing with the compliance teams to manage technology risk and audit engagements.

People Leadership 10% 

• Provide effective leadership to the Information Security team, and work with peer IT heads and other IT staff to ensure a conducive work environment.
• Provide leadership, performance management, talent management, training and development programs, coaching and mentoring for the Information Security team
• Liaise with internal and external stakeholders (vendors, regulator and consultants) in ensuring that the information security objectives are met.

Ideal Person Specifications

• Bachelor’s Degree in Information Systems, Computer Science, Information Security or related field required
• 7-10 years in information security or information security governance experience, with 5 years in a managerial role within a highly digitized organization, with a proven ability to engage with Senior Management and regulators.
• 4+ years’ experience conducting IT compliance assessments or administering IT security controls in an organization.
• Knowledge of technical infrastructure, networks, databases and systems in relation to IT Security and IT Risk.
• Experience with security technologies & controls including IPS/IDS, SIEM, DLP and other security technologies.
• Relevant certifications in information security knowledge areas, such as Information
• Systems Audit, Information Security Management and Ethical Hacking.
• Knowledge of: Strong Authentication, End Point Security, Internet Policy
• Enforcement, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM),
• Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM)
• Knowledge of banking or financial services fundamentals and processes (prior experience working within a financial service organization is an added advantage)
• Excellent communication, analytical and reporting skills
• Knowledge in project management skills

go to method of application »

Job Purpose Statement

The purpose of this role is to perform internal controls reviews in order to ensure adherence to established procedures and controls and to identify process improvements in the bank’s operations units and branches contributing to maintaining a strong control environment. The role involves monitoring any open control issues and ensuring they are closed satisfactorily within the set deadlines preventing crystallization of losses and highlighting to senior management all concerns arising from failure of controls that could result in potential or actual losses.

Key Accountabilities (Duties and Responsibilities)

Management 70%

• On a continual basis, carry out control assessments within branches, operations and technology and provide assurance to the line management on the effectiveness of the
• controls assessments across the Group
• Carrying out end-to-end process reviews throughout branches, operations and technology units within Kenya and subsidiaries giving assurance that units are adhering to set
• policies and procedures.
• Identify and communicate internal control risk through the collection and analysis of internal control evidence.
• Tracking exceptions highlighted during the reviews to ensure they are closed satisfactorily within the set time frames.
• Pursue the development of effective controls by deploying continuous improvement techniques and partner with the business to determine the appropriate key control activities. Focusing on preventive controls and continuous improvement as well as detective controls.
• Collect data to identify root cause of problems, identify trends, formulate solutions and escalate potential issues as necessary.
• Ensure timely review and resolution of Segregation of Duties violation (dual control) recommended in regard to mitigating risks.
• Own the timely closure of findings raised by internal Audit and External Audit across the division.
• Work with the teams in Technology and Operations to ensure the identified gaps and risks have been mitigated.
• As a subject matter expert, provide guidance on control issues to all the business units
• Compile periodic internal control reports and returns.
• Monthly independent surprise Cash Counts for all Branches and Compilation of the Report.
• Conduct quarterly surprise cash count at outsourced cash centres
• Assess regularly existing business key controls against the risk control expectations to assess the level of control effectiveness, efficiency and relevance in risk mitigation.
• Report risk events, policy deviations, risk exceptions, and engage appropriate stakeholders on timely remedial actions; escalate key risk situations that pose significant risk.
• Raise queries on suspicious or fraudulent
• transactions and ensure there are no
• outstanding items beyond set business rules.
• Collaborate with unit heads and leadership within operations and technology on risks Assistant Manager, Control Assurance and Quality Review identified as part of the control assurance exit process
• preparation of UFA confirmation letters to customers and handling UFA-related queries

Process Improvements 30% 

• Participate in process reviews and support process improvement initiatives to ensure appropriate controls are implemented as well as carry trainings and awareness sessions within the group.
• Actively participate in the deployment and review of policies, procedures, business process, and system implementation ensuring that proper controls are embedded.
• Train the 'Process owners' and 'Control owners' on concepts related to risks, controls and specific operating processes
• Use SLA measurement tools to continually evaluate quality of all business support processes with the aim of enhancing performance and productivity

Academic:

• Bachelor’s Degree from a recognized University

Professional Qualifications:

• Proficient in computer skills
• A good understanding of all core processes and knowledge of regulatory and statutory requirements
• A risk, compliance or audit related professional qualification as an added advantage

Desired work experience:

• Minimum 5 years’ experience in Banking, with 3 years in Bank Operations or risk
• Knowledge of regulatory and statutory requirements

go to method of application »

Job Purpose Statement

Reporting to the Head ICT Infrastructure, the role holder is responsible for offering leadership to the front line support team for the Bank’s server Infrastructure. The role will include research, testing and ensuring end to end availability, performance, maintenance and capacity of ICT hardware resources across the Bank network is in line with best practice and the Bank’s ICT guidelines

Ideal Job Specifications

Academic:

• A Bachelor’s degree in Computer Science, Information Technology or related field

Professional:

• Professional qualifications in ITIL, RHCE, MCP and other relevant professional qualifications in Server/Hardware administration field would be added advantage.
• Project Management certification and experience is preferred e.g. PRINCE2, PMP

Essential work experience:

• Seven (7) years’ progressive experience in Information Technology with at least (five) 5 years’ experience in infrastructure planning and/or support in an environment with extensive infrastructure deployment withWindows and Linux/Unix environment.
• Experience with Automation/Scripting and Configuration management

Ideal Job Specifications

• Experience with Container/PaaSorchestration/management platforms such asKubernetes will be an added advantage.
• Good working knowledge of high availability environments with server clustering and centralized and distributed storage technologies.
• Office 365 (Exchange Online, One Drive for Business, SharePoint Online) and Active Directory Service.
• Hyper-V/VMware or other virtualization platforms.
• Management of Third party support providers.

Desired work experience:

• HP Server Platforms (rack mount and blades)
• PowerShell scripting
• MS System Center (SCCM, SCOM) Configuration
• Working experience in a bank or other financial services organization would be added advantage.

Catapult Bank Core Value Behaviours (Performance Drivers)

• Driven
• Open
• Trusted
• Responsive

go to method of application »

Job Purpose Statement

The Senior Manager, Databases Administration role is to support the bank’s databases and database infrastructure. This includes developing, maintaining, supporting, and optimizing key functional areas; particularly NCBA group databases, database storage, database server operating systems and database backups in collaboration with external vendors, system experts and consultants.

Key Accountabilities (Duties and Responsibilities)

Database Maintenance and Optimization 30% 

• Enhancing the scalability and performance of existing database architecture including maintenance and development of all databases.
• Performing database maintenance, migration, and upgrading hardware and software.

Database Development and Management 20% 

• Developing database structures and features according to NCBA needs.
• Developing procedures to ensure data integrity and quality
• Manage Databases Recovery Service Agreements to ensure projects, incidents, problems and escalations are dealt with according to defined set of policies, processes, procedures and SLA's.
• Documenting processes and complying with best practices in database management.

Database Integration 10% 

• Effectiveness of integration of database strategy / blueprint with the bank's business direction

Database Security 10% 

• Effectiveness of the databases security (policy, controls and infrastructure) with regard to protection against exposure to and impact of risks associated with data loss, corruption and/or unauthorized access

Project Management 10% 

• Plans, Designs and implements Database projects in accordance with Bank’s requirements and Monitor Capacity/Performance of the group databases to ensure optimum efficiency

Business Continuity 10% 

• Disaster readiness is maintained as agreed and ensures regular DR exercise is done 10% Support of ICT

Strategy 10% 

• Effectiveness of integration of ICT databases blueprint with the bank's business direction cessary (On-Prem, Hybrid and Cloud instances)

Ideal Job Specifications

Academic:

• Bachelor’s Degree in Computer Science, Information Technology or related field.

Professional:

• ITIL, OCA, OCP, OCM, other relevant database professional qualifications in IT field would be an added advantage
• MS SQL Certification will also be an added advantage
• Project Management certification and experience is preferred e.g. PRINCE2, PMP

Desired work experience:

• Seven years’ experience in databases and storage support on medium to large organizations.
• Working experience in a bank or other financial services organization would be added advantage

go to method of application »

Job Purpose Statement

Managing the ICT Category buying of the Bank. To assist in providing a comprehensive procurement service in accordance with the company financial regulations, in support of the procurement strategy as aligned with the company priorities. Ensuring the Bank gets value for money, best financing terms at the same time ensuring exemplary customer service (two-way for both internal and external stakeholders) throughout the full cycle of requisitioning to procurement to payment in line with the Bank procurement procedures and guidelines policies.

Perspective Output

Governance (20%)

• Ensure compliance of the procurement and vendor management policy and give guidance to internal & external parties on matters regarding the policy.
• Ensuring compliance and adherence to the Central bank of Kenya prudential guidelines in terms of outsourcing.
• Manage and respond to all Audit issues raised in regards to all IT procurement, Logistics and asset management.
• Management of Vendor Onboarding and Supplier prequalification of all ICT purchases, ensure the suppliers meets the required standards indicated in the Policy.
• Manage new vendors offering specialized services or unique services and ensure due process is followed in on boarding them as per Procurement Policy.
• Adherence to the Group procedures manual, departmental operations, processes and CBK Prudential guidelines.
• Maintenance of an updated and clean Asset Register.

Procurement/Internal Business Processes (20%)

• Preparation & implementation of annual Procurement Plans with key department.
• Providing alternate solutions where required, keeping abreast with innovation.
• Monitor and review ICT budgets by undertaking cost/budget analysis and highlighting any cost changes to users.
• Process requests for Capex and purchases from all users after confirming approvals.
• Sourcing for quotations for general ICT purchases that do not go through tender process.
• Creation of all IT LPOs in the beginning of the year and embracing use of Blanket LPOs
• Negotiate with suppliers to obtain best deals & discounts and credit facilities, close sourcing agreements and maintain purchasing best practice.
• Ensure quality is maintained as per specifications from users while ensuring standards are maintained.
• Ensure AMC expenditure are monitored and settled in a timely and accurate manner.
• Process Payments for all ICT purchases verify that all invoices of goods and services are analysed, approved and paid in time to avoid disconnection of services and complain from suppliers.
• Develop a catalogue for all CAPEX items.
• Identify & Initiate cost cutting measures with the aim of reducing cost without compromising.
• Undertake market research as well as benchmark with the market to ensure the Bank gets value for money in purchase of ICT Equipment.
• Savings and costs avoidance tracking and reporting on monthly basis.
• Enhance internal customer self-service and building internal customer relationships.
• Provide analysis on costs, new and existing and review cost reduction
• Develop and maintain a weekly tracker of activities and tasks.
• Provide monthly reporting on
• Payment report- pending invoices report
• Contracts- reports on contracts due for renewals, expired, cancelled, terminated, valid, re-negotiated and those with locked prices.
• Assets management reports.

Contracting (20%)

• Manage the supplier contract calendar (review expiries, renewals, inclusions, retirements and cancellations).
• Assist staff in negotiating contract terms and conditions ensuring that they are as favorable to business interests as possible, minimize risk and are in compliance with applicable laws, regulations, policies and procedures.
• Responsible for contract administration and management to ensure contract terms and conditions are 100% met.
• Re-negotiate and Manage existing contracts.
• Preparation of Contract Approval Requests for signoff.

Supplier performance (20%)

• Monitor vendor performance and take corrective actions where necessary.
• Monitor the vendors on stock/inventory management and delivery timelines.
• Ensure timely delivery of services and products and ensure the items is received by the user in the time speculated.
• Actively liaising between staff and vendors to resolve purchasing delays /issues/complains or queries and ensure matters are handled professionally.
• Ensure vendors submit monthly Statement for review and reconciliations.
• Monitor market trends, competitor strategies and market suppliers
• Regular Supplier visit to their stores/warehouse and Business premises to determine they meet the group standards.

Asset Management (20%)

• Responsible for purchasing, maintenance and management of Bank’s assets.
• Maintain appropriate levels of equipment consumables.
• Receiving and tagging of bank owned equipment ( both physically and in SAP system)
• Responsible for management of ICT leased equipment.
• Responsible for disposal of Bank Assets.
• Responsible for updating and maintaining inventories for all equipment and supplies including location, asset tag number, serial number, make and model of equipment.
• Coordinate with helpdesk onsite service calls for equipment installation and maintenance as needed

Ideal Job Specifications

Academic:

• Bachelor’s degree in Procurement and Logistics; Finance, Accounting, Economics, Business Administration or related field:
• A diploma in purchasing and supplies management.

Professional:

• Must be a member a professional body like KISM (Kenya institute of supplies and management) or CIPS or both

Desired work experience:

• At least 3-5 years’ experience in procurement with responsibility for assets management, strategic sourcing including supply market analysis, tender document preparation, tender evaluation, contract negotiation and supplier performance management.

go to method of application »

Job Purpose Statement

To plan, manage and lead a portfolio of business support projects, ensuring alignment of business goals with technology solutions to drive process improvements, competitive advantage and bottom-line gains. The business units under business support portfolio include; information technology and operations, credit risk management, finance and strategy, human resources management, enterprise risk and compliance and internal audit. This is a key strategic role within the bank that designs, executes and integrates projects at both the strategic and tactical levels, to deliver on the banks corporate strategic objectives. The role works with cross-functional teams to ensure the effective allocation and coordination of corporate resources in the execution of these initiatives. The following are the main processes and systems supported by this role:

Financial 20% 

• Portfolio Management - Manage and coordinate project portfolios and/or programs across NCBA Group to ensurethat key deliverables are being met – timelines, budget, scope, reporting, and quality.
• Ensures Projects in the portfolio are aligned to the banks strategic goals to deliver benefit to the business.

Strategy 10% 

• Business planning and Strategic Alignment - Alignment of project goals and outcomes to corporate strategy

Internal business processes 30% 

• Business Process Delivery and Improvement – Lead and diagnose initiative requirements accurately and timely; evaluate and develop alternative courses of action; recommend and/or implement creative and effective solutions.
• Plan delivery in an iterative manner following agile principles and agile delivery processes through use of user story delivery, features and capability drive using agile ways of work.

Customer 20% 

• Stakeholder Management - Build and maintain positive working relationships with vendors and all levels of staff; serve as resource for technical or business expertise and advice on strategic priorities and projects. Improve Customer Management and Enhance Customer Experience

Learning and growth 20% 

• Provide leadership of portfolio and define a framework for developing it into a high performing and engaged team, through managing their performance, motivating, coaching and training them accordingly.
• Up-to-date and actioned competency assessments and development plans for the team.
• Nil disruption to business / loss of business due to lack of appropriate numbers of qualified, available staff within the team.

Ideal Job Specifications

• Academic: Degree holder in Business, IT or Operations from a recognized University (min – 2nd class upper or equivalent) with professional qualification in Project Management. A Master’s degree in Business, IT, or Operations would be an added advantage.
• Professional: Must have an in-depth knowledge of Agile ways of work using SAFe Framework and agility in either PMP, PMBOK or Prince 2.
• Desired work experience: 7 years’ experience in delivering large scale high budget projects or
• programmes within the financial sector with a minimum of 5 years as a project manager.

go to method of application »

Job Purpose Statement

The Head, Corporate Development & Investor Relations will report to the Group Head of Strategy & Chief of Staff and work closely with the executive leadership team of NCBA Group. This role is responsible for helping shape NCBAs strategy by identifying industry trends, maintaining relationships with relevant external partners, as well as sourcing, negotiating, structuring, and executing strategic acquisitions/investments across Africa. This role also leads the process of proactively framing NCBA’s story, successes, and opportunities for the global investment community. Equally important, this role will influence the agenda of the company by leveraging one’s deep understanding of finance, outstanding business acumen, and understanding of NCBA’s business strategy.

Main Responsibilities

• Support NCBA’s growth strategy through identification, assessment and execution of potential mergers, acquisitions, investments and joint ventures as well as divestitures by
• the company.
• Lead cross-functional teams in developing acquisition business case analyses and executing and interfacing with finance, accounting, legal, tax, HR and other departments to ensure seamless deal execution.
• Provide general transaction and analytic support including the creation of summaries and presentation materials to communicate M&A or divestiture recommendations to senior management and other internal stakeholders.
• Collaborate with the Executive team to think about corporate development opportunities in a progressive, systematic and routine fashion. Build relationships with each business unit to keep an ongoing flow of ideas that is aligned with the business units’ objectives.
• Manage the external advisors who will support any corporate development activities and function as a key point of contact to drive effective collaboration between internal and external teams.
• Support the business with post-acquisition integration activities to ensure intended synergies are well captured.
• Developing a proactive investor relations strategy and narrative, ensuring that the analyst and investor community understands the company’s business strategy and progress.
• Develop investor confidence and belief in the company’s vision and strategy for delivering shareholder value
• Create and manage a strong reputation by demonstrating consistent and clear communication between internal and external parties.
• Contribute in the production of effective investor briefing calls, management speeches and compelling investor presentations.
• Maintain strong company and sector expertise. Stay current on all company business activities, including financial and other material to be responsive to investors and media, and to communicate effectively with management.
• Assist with presentations for investor, corporate communications and marketing initiatives, customer events and investor conferences, road shows and other activities.
• Maintain current investor presentations to ensure they are informative and accurate, and relevant to the current environment.
• Provide insights on market activity and present them to the leadership team.
• Lead the cross-functional team that prepares the company’s Annual Integrated Report.
• As a colleague in the strategy team, this role will also provide thought leadership and development support in strategy formulation.
• The job-holder will also be responsible for hiring and nurturing talent within his/ her team
• Hiring and developing the talent necessary to execute the Corporate Development & Investor Relations vision
• Serving as a coach and mentor to the Corporate Development & Investor Relations team to drive the day to day execution 

Ideal Job Specifications

• A Bachelor’s degree in business, finance, or accounting
• An MBA is an asset
• 10 or more years’ experience dealing with investors and a strong track record of creating positive relations with the investor community and Equity Research Analysts

go to method of application »

Job Purpose Statement

The Engineer Collaboration role is to ensure support is provided to the bank’s Unified Communication and Contact Center infrastructure, Teams, SharePoint and Email. This includes maintaining, supporting, and optimizing key functional areas with external vendors, system experts and consultants.

Key Accountabilities (Duties and Responsibilities)

Collaboration Infrastructure support 35% 

• Provide support and maintenance of all Unified Communication and Contact Center infrastructure systems.
• Install, upgrade, and configure Unified communication and Datacentre related infrastructure.
• Install, Upgrade and configure SharePoint, Email, Teams and cloud related infrastructure.

Incident Management 50% 

• To provide level 1 support of group Unified Communication and Contact Center infrastructure to ensure projects, incidents, problems and escalations are dealt with according to defined set of policies, processes, procedures and SLA's.

Datacentre Support 15% 

• Monitor all Data Centre equipment’s and ensure compliance to Data Center standards and systems.
• Perform troubleshoot on data centre, identify issues and assist in timely resolution of same.
• Ensure adherence to all established guidelines and management practices for employees.
• Analyse and determine appropriate layout of all equipment’s in data centre with help of balancing and cooling.
• Monitor and supervise all data centre solutions.

Ideal Job Specifications

Academic:

• University degree in Information technology/Computer Science/Electrical Engineering/Telecommunications.

Professional:

• Training and certification in Enterprise Operating System administration e.g. MCSE, Network related certification e.g. CCNA, Security related certification CCSA etc.
• Business Continuity training

Desired work experience:

• Three years’ experience in security and Network infrastructure support in medium to large organizations.