Vacancies at Equity Bank Kenya

Job Purpose: 

The Infrastructure Security Specialist’s primary responsibility will be to design measures to protect the corporate data from leakage.

Provide requirements for implementing strategic direction and business requirements on data loss protection.

The Infrastructure Security Specialist’s will ensure data loss protection design is well coordinated to achieve  full data protection on systems, network, infrastructure, and cloud, remote workers, contractors and vendors.

Job Responsibilities/ Accountabilities:

Architecture:

• Involve in infrastructure design with a Security focus
• Design Data Loss Prevention (DLP) and Information Classification tools, M365 DLP and Azure Information Protection.
• Designing of key network and infrastructure security solutions and controls such as firewalls, SD-WAN, WAF, DDoS protection, IPS, Web Proxy, EDR.
• Designing of SASE solutions and cloud-based service delivery of traditional security controls (e.g. content filtering, firewall)
• Designing of cloud infrastructure security designs (IaaS and PaaS), MS Azure preferred
•   Broad knowledge of Information Security, IT and industry best practices
• Providing technical direction on all areas of data security, including strategy, architecture roadmap, policies, standards, procedures, and governance.
• Leading the Architecture, design and implementation guidance for Data Security program including techniques such as data obfuscation, masking, tokenization, encryption technologies.
• Providing guidance to technical teams on architectural, design, procedural best practices for data security in hybrid environments (on-prem and cloud-based such as AWS, Azure, GCP)
• Developing security best practices for integrations between data producers, data lake, data consumers, API, and application integrations
• Designing & architect data protection mechanisms for protecting data at rest and data in transit

Develop data security best practices for protecting corporate data in M365 cloud

Strategy:

• Excellent understanding of best practice infrastructure and network architectures
• Document and communicate security solution roadmap to head of department and the bsuiness

Knowledge and Experience

• BS/BA in Computer Science, Information Technology, Engineering, or related field AND 5+ years’ experience in technology solutions, practice development, architecture and consulting.
• Proven success and expertise in architecting innovative security solutions primarily in a client-facing role
• Experience giving presentations to executive audiences and explaining the benefits of the Microsoft security platform
• Track record of delivering quality solutions as a Security technical leader
• Deep technical knowledge of Microsoft security and identity technologies, such as Active Directory, Azure Active Directory, Microsoft Defender for Endpoint, Azure Defender for Identity, Azure Security Center/Azure Defender, Azure Sentinel, and M365 Security & Compliance technologies
• (APT), Credential Theft, Zero Trust, Privileged Access Management, Just-in-time Administration, etc.
• Knowledge of Security Assessments and Reviews
• Knowledge of security, threat modelling, incident response and recovery techniques
• Knowledge of Hybrid Cloud and Workload Security configurations and practices.
• Knowledge of Security Standards, Policies and Governance frameworks
• Knowledge of industry and government cybersecurity frameworks and regulations, such as NIST Cybersecurity Framework, NIST 800-53, FINRA and CMMC.
• Microsoft AZ-500 and MS-500 certification or equivalent AWS, GCP or OpenStack certified
• Knowledge and certification in modern project delivery methods, such as DevOps and Agile/SCRUM.
• Knowledge and use of product management methodologies and Scaled Agile Framework
• Familiarity with structured architectural methodologies

Key Critical Competencies

Experience of designing and architecting secure infrastructure services to meet business requirements across a range of technology areas.

• Strong experience of deploying and securing cloud environments (Azure, AWS or Google Cloud).
• Solid experience of Microsoft 365 security and authentication technologies such as Active Directory, Azure Active Directory.
• Demonstrable experience of securing, designing, deploying and installing enterprise applications
• Knowledge of Intune, Email security platforms, Enterprise Antivirus
• Experience of installing and supporting diverse server hardware.
• Experience of managing Windows Server, Exchange, Linux, VMWares, SCCM and Windows 10.
• Excellent negotiation, and written and verbal presentation skills
• Ability to handle high pressure situations with key stakeholders
• Good Analytical skills, Problem solving and Interpersonal skills

go to method of application »

Job Purpose: 

The Data Security Architect’s primary responsibility will be to design measures to protect the corporate data from leakage. Provide requirements for implementation strategic direction and business requirements.

The Data Security Architect’s will ensure data loss protection design is well coordinated to archive full data protection on systems, network, infrastructure, and cloud, remote workers, contractors and vendors.

Job Responsibilities/ Accountabilities:

Architecture:

• Design best in class archiect for the deployment of Data security modernization program
• Designing, developing data-specific security policies, standards and procedures.
• Ensuring data migration doesn't violate regulations
• Design the architecture for data protection/data loss prevention and collaborate with cyber security operations team to improve incident management processes
• Recommending and supporting the integration of new data security enhancements into existing solutions
• Determining security designs, requirements based on business strategies, requirements, and security standards such as NIST 800-53, ISO 27000 series PKI standards, etc.
• Designing and Developing data security controls to meet security compliance and regulatory needs such as PCI-DSS,GDPR, HIPAA,SOX etc.
• Providing technical direction on all areas of data security, including strategy, architecture roadmap, policies, standards, procedures, and governance.
• Leading the Architecture, design and implementation guidance for Data Security program including techniques such as data obfuscation, masking, tokenization, encryption technologies.
• Providing guidance to technical teams on architectural, design, procedural best practices for data security in hybrid environments (on-prem and cloud-based such as AWS, Azure, GCP)
• Developing security best practices for integrations between data producers, data lake, data consumers, API, and application integrations
• Designing & architect data protection mechanisms for protecting data at rest and data in transit
• Develop data security best practices for protecting corporate data in M365 cloud

Strategy:

• Understand information security trends, local laws of data regulation and governance
• Document and communicate security solution roadmap to head of department and the bsuiness

Knowledge and Experience

• A Degree or its equivalent in Information Technology, Data Security, Enterprise security governance  Management, Information Security, Management Information System, Computing, or similar area of study
• Relevant industry certifications in information security program and governance as well as PMP will be an added advantage
• Have good understanding of dataware house and Big data modelling
• Minimum of two (1) years of computer information technology experience.
• Minimum of Four (2) years of experience engineering and designing IT security solutions
• Good understanding all the information security data governance domain
• Experience of identifying and managing technology security risk
• Certification like CISSP, CISA, CCISO, SABSA will be of advantage

Key Critical Competencies

• Understand local laws and international information security standard and frameworks
• Excellent negotiation, and written and verbal presentation skills
• Ability to handle high pressure situations with key stakeholders
• Good Analytical skills, Problem solving and Interpersonal skills
• Deep knowledge of enterprise application development security controls

go to method of application »

Job Purpose: 

The Senior Security Solutions Architect’s primary responsibility will be to interpret business requirements into a technical security solutions framework and to provide technology roadmaps governed by strategic direction, business requirements as well as resourcing and financial constraints. He/ she will specify and design more complex solutions based on their technical expertise across multiple security domains.

The Senior Security Solutions Architect’s security solution are optimally implemented to meet desire objectives as well as supervise the team function to archive team deliverables

Job Responsibilities/ Accountabilities:

Architecture:

• Design security solution for delivery
• Coordinate the team deliverables
• Design and document hybrid security solution for the now and future
• Evaluate opportunity for alignment with our vendor’s capabilities and business policy
• Prepare the executive summary that outlines all of the information gathered from various business and technical team in regards to their needs as we understand them
• Document the proposed technology solution
• Document the statement of work along with all labour requirements
• Perform the actual solution design and prepare a parts list outlining equipment to be provided.
• Develop and manage a proof-of-concept as such may be required
• Engage all technical resources required for an accurate solution design
• Document all deliverables and what constitutes a successful completion
• Evaluates analytically and systematically problems of workflows, organization and planning and develops appropriate corrective action.
• Create and Assist in creation of planned maturation of technical capabilities aligned to Agency strategic goals
• Designs and implements solutions’ infrastructure, configuration, prototypes and production deployment and handoff
• Participate in the creation of technical demos, briefings, and oral presentations materials
• Technical thought leadership and SME value to client interactions
• Provide architecture, engineering, and implementation support for solutions to include vulnerability scanning and assessment products, continuous monitoring products, tools and activities, and risk assessment and reporting products and capabilities
• Integrate existing security products with new hardware and software introduced to managed systems and services within the environment
• Provide security reviews for the acquisition, installation, fielding, training, and operation of various products to include hardware, software, and licenses

Strategy:

• Understand information security trends
• Document and communicate security solution roadmap to Head of department and the business

Knowledge and Experience

• A Degree or its equivalent in Information Technology, Network Security, Enterprise Network Management, Information Security, Management Information System Computing, Engineering or similar area of study
• Relevant industry certifications in information security program and governance as well as PMP will be an added advantage
• Minimum of Eight (3) years of computer information technology experience.
• Minimum of Four (5) years of experience engineering and designing IT security solutions
• Minimum of 1 year working as a business analyst in technical security and IT
• Good understanding all the information security domains
• Experience of identifying and managing technology security risk
• Certification like CISSP, CISA, CCISO, SABSA will be of advantage

Key Critical Competencies

• Ability to know when to implement solutions with consideration to the wider impacts i.e. risk, cost, customer impact, timescales, etc.
• Excellent negotiation, and written and verbal presentation skills
• Ability to handle high pressure situations with key stakeholders
• Good Analytical skills, Problem solving and Interpersonal skills
• Deep knowledge of enterprise application development security controls
• Good knowledge of Telco convergence business, FinTech network traffic consumption and OpenAPI

go to method of application »

Job Purpose: 

The Network Security Architect will be responsible for designing, development and implementation of Network security controls to reduce information security risk and attack surface. He/ she will work closely with the Network engineering team to understand current implementation of network infrastructure, revamp projects and plans.

The Network Security Architect ensures network security management conform to Equity Policies, procedures and standards and will be involved in emergency incident response to provide deep knowledge of network traffic to the Security Operation team

Job Responsibilities/ Accountabilities:

Architecture:

• Formulate and develop enterprise network security architectures (e.g., people, processes, technology
• Responsible for the definition of a high-level target network security architecture which offers the best solution for risk mitigation, performance, economics and customer experience
• Definition and creation of supporting architectural principles, requirements and policies to provide a common body of reference artefacts to various managed service partners
• Ensuring strategy and architecture is executed via the appropriate solution delivery teams and overseeing it through to ensure that business benefit is realised
• Technical architectural governance of network security architecture from end devices (servers, hosts, user equipment etc.) extending to all the transport network touch points
• Lead and take part in trials of innovative technology, based on strategic needs
• Making sure that network segments, network security elements such as Firewalls, Anti-DDOS, IPS, Web Application Firewall, Network Internal traffic security, security SPAN traffic and Out of Bound, etc. are designed and implemented optimally to secure our infrastructure perimeter and entry points
• Design and document cloud network security architecture and Virtual Desktop Infrastructure Network

Strategy:

• Take part in the definition of the Strategy for network security. This includes justification through analysis, SWOT, proof of concept, business case, interactions with Transport and Security Design, etc.
• To challenge and gain support from the business for the network security strategy, adapting with future company aspirations, security obligations, and new services
• Prepare the organization for zero trust network security

Knowledge and Experience

• A Degree or its equivalent in Information Technology, Network Security, Enterprise Network Management, Information Security, Management Information System Computing, Engineering or similar area of study
• Relevant industry certifications in IP networking and security (eg. CCIE, CISM, CRISC)
• Minimum of 3 years in Networking and security management
• Public Cloud networks solution experience
• Experince in Telco will be an added advantage
• Experience with implementing architecture to support Cyber Security Essentials Plus, ISO27001 and PCI-DSS certification
• Experience of identifying and managing technology security risk
• Up-to-date knowledge of future IP and network security technologies, equipment and their benefits
• Ability to know when to implement solutions with consideration to the wider impacts i.e. risk, cost, customer impact, timescales, etc.
• Widespread knowledge of different IP and network security vendors and solutions, and managed services
• Excellent knowledge and experience of fixed/mobile and data centre networks, the security threat landscape and relevant security mitigations
• Experience of defining network security architectural principles and policy; and governing their implementation (particularly zoning policy within IT network transport environments)
• Significant experience of operating in a Governance and Architecture role; or a Design role having end-to-end responsibility and spanning multiple technology domains
• Ability to steer solutions based on the overall architecture without dictating the detailed design delivery
• Experience of working in a technology based role and interfacing to a varied number of internal and external stakeholders
• Strategic and architectural knowledge of networking technologies
• Experience in Network threat management
• Experience in managing and maintaining relationships within an organisation, with vendors and customers
• Ability to simplify analysis and present results clearly at all levels of the business - including at senior management team level

Key Critical Competencies

• Excellent negotiation, and written and verbal presentation skills
• Experience in Checkpoint, Cisco, Palo Alto, Firewall
• Cloud Security Components (NSG, Application Gateway, DNS)
• Deep understanding or routing, Voice, Network segmentation an zoning
• Ability to handle high pressure situations with key stakeholders
• Good Analytical skills, Problem solving and Interpersonal skills
• Deep knowledge of Bank’s infrastructure, networks and systems
• Some knowledge of Telco convergence, FinTech network traffic consumption

go to method of application »

Description

The Core Banking Applications Developer will support the business to achieve its goals and objectives using effective, contemporary IT practices, modern technologies, and adhering to the laid down policies and procedures to achieve the strategic objectives. The resource will offer both functional and technical expertise related to core banking applications, in the areas of operations, credit, clearing, payments, trade finance, treasury, custodial, integrations, databases, information security, etc. The developer will provide expert knowledge and facilitate knowledge transfer and training to meet the key objectives of IT; ensure systems availability, provide continuity, confidentiality, and continuous Improvement.

Job Responsibilities/ Accountabilities:

• Provide Level 2 (L2) technical & functional and administration support of applications ensuring compliance with business expectation.
• Carry out troubleshooting, installation, configurations, correction of scripts including optimizations, guidance, escalations, coordination with vendor & end user training.
• Finacle scripting (SSO, CRM, CORE, C24, FI), Java programming, javascript scripting, customization and enhancements of new and existing functionalities and workflows
• Development of new inbound and outbound APIs for Core, CRM, SSO, SVS, RI
• Report development
• Implement and maintain systems for monitoring/audit of functionalities.
• Implement changes in parameters, configurations and deployment of patches based on approved Change / Configuration Management process.
• develop and update technical procedures, release notes/ deployment architectures and desktop instruction documents for all assigned applications.
• Provide regular status update of issues / requirements assigned / allocated.
• Adhere to bank’s incident, problem, and change management processes (Ticket assignment and resolution, Problem management to resolve root cause of repeat incidents, attend CAB meetings and verify all changes implemented are properly tested to minimise incidents related to changes).
• Support business in executing UATs.
• Provide required support for rollout of new functionalities, products, processes, and mandates.
• Ensure security of data and information within the Applications Systems (Data Protection laws apply).
• Support the execution of design, planning and implementation of bank projects that promote business needs.
• Support the business continuity management activities (deployment, restoration, failovers, DR testing)
• Training of the application to the relevant support teams.
• Efficient and effectiveness in issue resolution.
• Demonstration of sound technical judgement, communication skills and talented development capabilities.
• To maintain the Culture Brand of the organization and customer service.
• Contribute to business growth and sales of the organization.

Essential Knowledge

• Excellent understanding of Information Technology policies and procedures. Excellent knowledge of local IT standards, laws and regulations.
• Expert knowledge; exhibits an exceptional degree of ingenuity, creativity and resourcefulness. Leads the development of highly advanced technologies, principles, theories and concepts. Guides and transfers knowledge to the team.

Key Critical Competencies

• Enterprise IT skills.
• Excellent and effective communications skills, both orally and in writing.
• Being adaptable, excellent Teamwork/Interpersonal skills.
• Customer handling skills
• Work under pressure and multitask
• Flexibility to work in 24x7 environment
• Analytical, troubleshooting & problem-solving skills
• Understanding of organization, vision, mission, and culture
• Understanding of banking processes, technologies, and best practices
• Understanding of below mentioned platforms, applications, databases, and utilities:
  • UNIX / Linux / MS Windows Server
  • Programming Languages (Java, Js, C++, JavaScript, XML)
  • Scripting languages including unix
  • Oracle, SQL, PL-SQL
  • Web Technologies (J2EE, IIS, Weblogic, Apache)
• Banking, Financial sector and Insurance domain knowledge

Requirements:

• Bachelor’s degree in IT or equivalent.
• Experience in application system administration skills and certifications for example: linux, microservices, database (oracle, mssql, mysql, db2, postgre, maria, etc), middlewares (weblogic, websphere, tomcat, wildfly, etc) , Java ,sql, Window Powershell, C++, unix scripting, and other related certifications.
• Solid experience in problem analysis and resolution of software problems, proven ability to function in a self –directed environment.
• Experienced in project management and running multiple projects.
• Innovative thinker who is positive, proactive, and readily embraces change.
• Able to operate in a performance driven organization.
• Culturally aware and adept at working across multiple geographies.
• An ability to work in tight deadlines and within constraints.