Vacancies at Equity Bank Kenya

Description 

Equity Bank is one of the region’s leading banks whose purpose is to transform the lives and livelihoods of the people of Africa socially and economically by availing them modern and inclusive financial services that maximize their opportunities. With a strong footprint in Kenya, Uganda, Tanzania, Rwanda, South Sudan and DRC Congo, Equity Bank is now home to over 12 million customers - the largest customer base in Africa. Currently the Bank is seeking additional talent to serve in the role outlined below.

The Head of Compliance Risk Assessment, Governance & Testing shall support the Group Director, CFCC by delivering the strategy and execution of the Compliance, Financial Crime Risk and Conduct Risk assessment programs for the Group. This includes performance of annual Risk and Control assessments for Compliance, FCR and Conduct. In addition, the role is responsible for monitoring client risk and control activities, performance and validation of cyclical activities such as monthly financial crime risk management initiatives, control enhancing and testing, incident research, data acquisition and validation, leading remediation as required and other ad hoc control initiatives, and projects. The role holder will also lead key Governance, Compliance Testing and Enforcement activities, along with the relevant strategic and operational MIs into the various executive and board committees as well as other workgroups.

Primary Responsibilities  

• Responsible for leading the Compliance, Financial Crime Risk and Conduct Risk assessment programs, including the integration of related activities with the ERMF and other risk management frameworks in the Group.
• Collaborates with stakeholders from Risk and the business to develop tactical and strategic solutions to enhance and streamline the risk assessment processes for Compliance, FC and Conduct.
• Lead Compliance, FC and Conduct risk assessment, oversight, governance and testing meetings. Also responsible for the overall programs including ongoing process improvements, managing and tracking assessment activities, and follow-up of assigned actions.
• Lead the design and delivery of a portfolio of Compliance, FC and Conduct risk tests scripts to monitor compliance with regulation and internal policy.
• Oversight and delivery of Compliance, FC and Conduct ongoing scenarios assessment workshops, so that Group anticipates threats, assesses vulnerabilities, and ensures readiness and resiliency.
• Compilation, validation and monthly delivery of Group Compliance, FC and Conduct risk appetite monitoring, including escalations, referrals, and tracking. 
• Analyze compliance, FC and conduct risk events, perform root cause analysis on respective controls and ensure remediation is well designed to avoid repeat of risks and/or issues.
• Support the Business teams in Compliance, FC and Conduct risk self-identification processes and ensure self-identified issues in relation to first line controls are well analyzed and documented with properly designed remediating actions, and track actions to completion.
• Engage in risk discussions with internal/external auditors, regulators and other risk functions within the Group.
• Provide leadership to team members and support in leading the larger Risk & Compliance organization across the Group.

 
Qualifications
 
Minimum Requirements

• Requires 15+ years of professional experience and 6+ years of management experience.

Critical Skills

• No less than 12 years of compliance, financial crime and conduct risk management experience, with significant portion in risk assessment, governance and testing within a large international bank.
• Strong understanding of compliance, FC and conduct risk obligations and requirements within the banking industry.
• Good experience in leveraging analytics and technology solutions to manage risk assessments and other initiatives.
• Critical thinking skills to understand and analyze complex problems.
• Effective communicator with strong writing and verbal abilities to communicate across all levels of the Group.
• Ability to develop strong relationships and collaborate with senior business and function leaders to influence change.
• Proven focus on deliverables, organized, and ability to manage multiple high priority deliverables.
• Self-starter, highly organized, and detailed-oriented.
• Strategic and critical thinking and the ability to concisely convey complex regulatory concepts and possible solution sets.
• Excellent facilitation and presentation skills
• Exercise high level of discretion and confidentiality due to the sensitive nature of the scope of work.
• Extremely detail oriented with ability to elevate details into strategies.

Education

• Master’s degree plus relevant professional qualifications such as CAMS, ICA

go to method of application »

Description

Equity Bank is one of the region’s leading banks whose purpose is to transform the lives and livelihoods of the people of Africa socially and economically by availing them modern and inclusive financial services that maximize their opportunities. With a strong footprint in Kenya, Uganda, Tanzania, Rwanda, South Sudan and DRC Congo, Equity Bank is now home to over 12 million customers - the largest customer base in Africa. Currently the Bank is seeking additional talent to serve in the role outlined below.

The Head Compliance, Financial Crime, Conduct Risk and Training shall work with HR and the business leaders to identify and monitor AML/CFT, Sanctions and Conduct risk training needs. In addition, the role shall design, plan, prepare and implement bank-wide and tailored compliance, financial crime risk and conduct risk communication and training plans. The role requires good knowledge of Compliance, AML/CFT, Sanctions, ABC, Conduct risks and training.  

Primary Responsibilities –

• Support Group Director, CFCC in consulting with the business stakeholders and conducting Training Needs Analyses.
• Take responsibility for the designing, planning, preparation and implementation of bank wide and tailored CFCC communication and training plans. 
• Assist in designing CFCC training modules, including learning objectives, measurable outcomes, content and instructional strategies and ensuring the modules are current, effective and accurate.
• Work with relevant stakeholders in HR and CFCC to develop and test training materials, reference materials and job aids for training modules, while aligning them with Group policies.
• Maintain knowledge of new methods and techniques for training, training requirements applicable to the Group and the relevant industries.
• Conduct pilot sessions of CFCC modules and revise as appropriate and necessary.
• Evaluate employees’ knowledge and skill development from CFCC modules and use that information to enhance and design future programs.
• Align with stakeholders on learning delivery of relevant FCC related programs and manage any other projects that may be assigned- such as the preparation of lessons-learned documents from significant risk events.
• Liaise with external parties to obtain external specialist training where required.
• Produce MI and reports related to compliance, financial crime and conduct training and communication.
• Responsible for ensuring the appropriate record-keeping for compliance, financial crime and conduct training sessions and communication.
• Act as the Group’s subject matter expert in relation to compliance, financial crime and conduct training and communication.
• Where necessary, collaborate with vendors and third-party training providers to arrange employee registration for and participation in outside training programs.
• Prepare and implement training budget and ensure that training milestones and goals are met within approved training budget.

Qualifications

Minimum Requirements

• Requires 10+ years of professional experience and 4+ years of management experience.

 Critical Skills

• No less than 7 years of compliance training management experience, with significant portion within a large international bank.
• Excellent verbal and written communication and training facilitation skills with strong graphic design ability.
• Thorough understanding of training processes, ability to moderate large groups and extremely organized and detail oriented.
• Good experience in digital training and leveraging analytics and technology solutions to manage training.
• Critical thinking skills to understand and analyze complex problems.
• Effective communicator with strong writing and verbal abilities to communicate across all levels of the Group.
• Ability to develop strong relationships and collaborate with senior business and function leaders to influence change
• Proven focus on deliverables, organized, and ability to manage multiple high priority deliverables
• Self-starter, highly organized, and detailed-oriented
• Strategic and critical thinking and the ability to concisely convey complex regulatory concepts and possible solution sets.
• Extremely detail oriented with ability to elevate details into strategies. 

Others

• Ability to handle multiple requests, assess priorities, and achieve solutions under deadlines, with minimal direct supervision
• High degree of curiosity and creativity in a highly regulated, dynamic environment.
• Ability to focus on outcomes while demonstrating flexibility to changing requirements.
• Ability to work with partners at all levels, including internal and external legal counsels and consultants.
• Poise and tact; Calm under pressure
• Occasional travel required 

Education

• Master’s degree plus relevant professional qualifications such as CAMS, ICA.

go to method of application »

 
Equity Bank is one of the region’s leading banks whose purpose is to transform the lives and livelihoods of the people of Africa socially and economically by availing them modern and inclusive financial services that maximize their opportunities. With a strong footprint in Kenya, Uganda, Tanzania, Rwanda, South Sudan and DRC Congo, Equity Bank is now home to over 12 million customers - the largest customer base in Africa. Currently the Bank is seeking additional talent to serve in the role outlined below.

The Head, Conduct & ABC shall support the Group Director, CFCC by working with other Risk and the business leaders to manage the strategy and execution of the Group’s Conduct risk framework and ABC program. The role supports the effective management of conduct risk in the Group and provides pro-active, accurate and timely advice on conduct risk and ABC matters to enable all subsidiaries operate in accordance with regulatory requirements, global best practice, conduct risk plan and the Group’s code of conduct. The role will require good knowledge of conduct risk frameworks and ABC programs, as well as the potential sources of conduct and ABC risks and the impact on client outcomes. The role shall work with other leaders in the first and second lines of defense to identify, assess, monitor and address such activities.  

Primary Responsibilities –

•  Support the Group Director, CFCC to implement and maintain effective Group Conduct risk framework and ABC program and provide strategic direction in how they are managed.
• Work with the Head of Compliance Risk Assessment, Governance & Testing as well as other relevant Group stakeholders to identify, control and assess Conduct and ABC risks in Group.
• Advise on pre-approval processes for Gifts, Travel and Entertainment (GTE) requests and sponsorship events.
• Deliver regulatory advice to stakeholders to ensure that Conduct and ABC regulatory requirements are fully understood and met on an ongoing basis in all business activities and in line with Conduct and ABC risk appetite.
• Drive effectiveness of the Group Conduct Risk Framework and ABC program by incorporating effective and practical advice into sound early-stage second line challenge.
• Support the rollout and implementation of procedures for the Group’s control room to manage the flow of sensitive information and mitigate the risk of conflicts from the Group’s multiple services. The role will lead in ensuring that employees consistently exercise discretion in handling discrete information, using policies, procedures, agreements, declarations, attestations, etc.  
• Develop an approach for the timely identification of opportunities to enhance the management and oversight of Conduct and ABC risks, and ensuring appropriate action is taken by relevant parties to deliver improvements.
• Work with the Head of Regulatory Compliance, and other relevant stakeholders in the Group, to ensure that new products and initiatives; customer communications; and product literature in the Group meet required customer outcomes and are of delivered to standard.
• Implement a process that identifies and manages potential conduct risks from regulatory change initiatives and provides assurance that changes have been effectively embedded in the relevant business areas.
• Develop and implement strategies to broaden internal and external networks and keep up to date with regulatory requirements and industry best practice to continuously improve the effectiveness of Group conduct and ABC risk management.

Qualifications
 
Minimum Requirements

• Requires 12 years of professional experience and 5+ years of management experience.

Critical Skills

• No less than 9 years of compliance management experience, with significant portion in ABC, Conduct risk and Ethics within a large international bank or corporation.
• Strong understanding of Compliance obligations and requirements within the banking industry.
• Good experience in leveraging analytics and technology solutions to manage Conduct and ABC related risks.
• Critical thinking skills to understand and analyze complex problems.
• Effective communicator with strong writing and verbal abilities to communicate across all levels of the Group.
• Ability to develop strong relationships and collaborate with senior business and function leaders to influence change
• Proven focus on deliverables, organized, and ability to manage multiple high priority deliverables
• Self-starter, highly organized, and detailed-oriented
• Strategic and critical thinking and the ability to concisely convey complex regulatory concepts and possible solution sets.
• Excellent facilitation and presentation skills
• Exercise high level of discretion and confidentiality due to the sensitive nature of the scope of work
• Extremely detail oriented with ability to elevate details into strategies.

Education

• Master’s degree plus relevant professional qualifications such as CAMS, ICA.
   

go to method of application »

Description

Equity Bank is one of the region’s leading banks whose purpose is to transform the lives and livelihoods of the people of Africa socially and economically by availing them modern and inclusive financial services that maximize their opportunities. With a strong footprint in Kenya, Uganda, Tanzania, Rwanda, South Sudan and DRC Congo, Equity Bank is now home to over 12 million customers - the largest customer base in Africa. Currently the Bank is seeking additional talent to serve in the role outlined below.

The Head of AML/CFT shall support the Group Director, CFCC by working with other Risk and the business leaders to manage the strategy and execution of the Group’s AML/CFT risk framework. The role supports the effective management of AML/CFT related risks in the Group and provide pro-active, accurate and timely advice on AML/CFT compliance to enable all subsidiaries operate in accordance with regulatory requirements, global best practice and applicable Group standards. The role requires good knowledge of AML/CFT risk frameworks, the potential sources of AML/CFT risk and will work with other leaders in the first and second lines of defense to identify, assess, monitor and address such activities.  

Primary Responsibilities –

• Support the Group Director, CFCC to implement and maintain effective Group AML/CFT risk framework and provide strategic direction in how it is managed.
• Work with the Head of CFCC Risk Assessment, Governance & Testing, as well as other relevant Group stakeholders, to the identify, control and assess AML/CFT risk in the Group.
• Deliver advice to stakeholders and manage CDD, transaction monitoring and other related second line processes to ensure that AML/CFT requirements are fully understood and met on an ongoing basis in all business activities and in line with Group risk appetite.
• Drive effectiveness of the Group AML/CFT Risk Framework by incorporating effective and practical advice into sound early-stage second line challenge.
• Support the rollout and implementation of effective AML/CFT training across the Group.  
• Assist with the timely identification of opportunities to enhance the management and oversight of AML/CFT risk, and ensuring appropriate action is taken by relevant parties to deliver improvements.
• Work with relevant stakeholders in the Group to ensure that the required controls to mitigate sanctions risk are embedded into new products and initiatives that are developed within the Group.
• Implement a process that identifies and manages potential AML/CFT risk from regulatory and geo-political changes and provide assurance that changes have been effectively embedded relevant FCR business processes.
• Develop and implement strategies to broaden internal and external networks and keep up to date with regulatory requirements and industry best practice to continuously improve the effectiveness of Group AML/CFT risk management.

Qualifications

Minimum Requirements

• Requires 12+ years of professional experience and 5+ years of management experience.

 Critical Skills

• No less than 9 years of compliance management experience, with significant portion in AML/CFT within a large international bank.
• Strong understanding of AML/CFT Compliance and requirements within the banking industry.
• Deep experience in leveraging analytics and technology solutions to manage AML/CFT related risks.
• Critical thinking skills to understand and analyze complex problems.
• Effective communicator with strong writing and verbal abilities to communicate across all levels of the Group.
• Ability to develop strong relationships and collaborate with senior business and function leaders to influence change
• Proven focus on deliverables, organized, and ability to manage multiple high priority deliverables
• Self-starter, highly organized, and detailed-oriented
• Strategic and critical thinking and the ability to concisely convey complex regulatory concepts and possible solution sets.
• Excellent facilitation and presentation skills
• Exercise high level of discretion and confidentiality due to the sensitive nature of the scope of work
• Extremely detail oriented with ability to elevate details into strategies.

 Education

• Master’s degree plus relevant professional qualifications such as CAMS, ICA.

go to method of application »

Description

Equity Bank is one of the region’s leading banks whose purpose is to transform the lives and livelihoods of the people of Africa socially and economically by availing them modern and inclusive financial services that maximize their opportunities. With a strong footprint in Kenya, Uganda, Tanzania, Rwanda, South Sudan and DRC Congo, Equity Bank is now home to over 12 million customers - the largest customer base in Africa. Currently the Bank is seeking additional talent to serve in the role outlined below.

The Head of Sanctions Compliance shall support the Group Director, CFCC by working with other Risk and the business leaders to manage the strategy and execution of the Group Sanctions risk framework. The role supports the effective management of sanctions risk in the Group, and provides pro-active, accurate and timely advice on sanctions compliance, to enable all subsidiaries operate in accordance with regulatory requirements, global best practice and applicable Group standards. The role requires good knowledge of sanctions risk frameworks, the potential sources of sanctions risk and collaboration with other leaders in the first and second lines of defense to identify, assess, monitor and address such activities.  

Location – This position is located at our Head Office in Nairobi.

Primary Responsibilities  

• Support the Group Director, CFCC to implement and maintain effective Group Sanctions risk framework and provide strategic direction in how they are managed.
• Work with the Director, Compliance Risk Assessment, Governance & Testing as well as other relevant Group stakeholders to identify, control and assess sanctions risk in the Group.
• Deliver advice to stakeholders and manage list management, name screening and transaction screening processes to ensure that Sanctions regulatory requirements are fully understood and met on an ongoing basis in all business activities and in line with Group risk appetite.
• Drive effectiveness of the Group Sanctions Risk Framework by incorporating effective and practical advice into sound early-stage second line challenge.
• Support the rollout and implementation of effective sanctions training across the Group.  
• Assist with the timely identification of opportunities to enhance the management and oversight of Sanctions risk, and ensuring appropriate action is taken by relevant parties to deliver improvements.
• Work with relevant stakeholders in the Group to ensure that, for new products and initiatives that are developed within the Group, the required controls to mitigate sanctions risk are in place.
• Implement a process that identifies and manages potential sanctions risk from regulatory and geo-political changes and provides assurance that changes have been effectively embedded in the list management and other relevant business processes.
• Develop and implement strategies to broaden internal and external networks and keep up to date with regulatory requirements and industry best practice to continuously improve the effectiveness of Group sanctions risk management.

Qualifications

Minimum Requirements

• Requires 12+ years of professional experience and 5+ years of management experience.

 Critical Skills

• No less than 9 years of compliance management experience, with significant portion in Sanctions within a large international bank.
• Strong understanding of Sanctions Compliance within the banking industry.
• Good experience in leveraging analytics and technology solutions to manage Sanctions related risks.
• Critical thinking skills to understand and analyze complex problems.
• Effective communicator with strong writing and verbal abilities to communicate across all levels of the Group.
• Ability to develop strong relationships and collaborate with senior business and function leaders to influence change
• Proven focus on deliverables, organized, and ability to manage multiple high priority deliverables
• Self-starter, highly organized, and detailed-oriented
• Strategic and critical thinking and the ability to concisely convey complex regulatory concepts and possible solution sets.
• Excellent facilitation and presentation skills
• Exercise high level of discretion and confidentiality due to the sensitive nature of the scope of work
• Extremely detail oriented with ability to elevate details into strategies.

 Others

• Ability to handle multiple requests, assess priorities, and achieve solutions under deadlines, with minimal direct supervision
• High degree of curiosity and creativity in a highly regulated, dynamic environment.
• Ability to focus on outcomes while demonstrating flexibility to changing requirements.
• Ability to work with partners at all levels, including internal and external legal counsels and consultants.
• Poise and tact; Calm under pressure
• Occasional travel required 

Education

• Master’s degree plus relevant professional qualifications such as CAMS, ICA.

go to method of application »

Description

Equity Bank is one of the region’s leading banks whose purpose is to transform the lives and livelihoods of the people of Africa socially and economically by availing them modern and inclusive financial services that maximize their opportunities. With a strong footprint in Kenya, Uganda, Tanzania, Rwanda, South Sudan and DRC Congo, Equity Bank is now home to over 12 million customers - the largest customer base in Africa. Currently the Bank is seeking additional talent to serve in the role outlined below.

The Head of Regulatory Compliance shall support the Group Director, CFCC by working with other Risk and the business leaders to manage the strategy and execution of the Group’s Compliance risk framework. The role supports the effective management of Regulatory Compliance related risks in the Group and provides pro-active, accurate and timely advice to enable all subsidiaries operate in accordance with regulatory requirements, global best practice and applicable Group standards. The role requires good knowledge of Compliance risk frameworks, the potential sources of compliance risk and collaboration with other leaders in the first and second lines of defense to identify, assess, monitor and address such activities.  

Primary Responsibilities: –

• Support the Group Director, CFCC to implement and maintain effective Group Compliance risk framework and provide strategic direction in how they are managed.
• Collaborate with the Director of CFCC Risk Assessment, Governance & Testing as well as other relevant Group stakeholders to identify, control and assess compliance risk in the Group.
• Deliver regulatory advice to stakeholders and manage second line processes to ensure privacy & law enforcement, regulatory conduct & reporting, new business & new products, customer complaints, consumer protection, customer conduct, product, product quality, data quality, and data privacy compliance on an ongoing basis in all business activities and in line with Group risk appetite.
• Drive effectiveness of the Group Compliance Risk Framework by incorporating effective and practical advice into sound early-stage second line challenge.
• Support the rollout and implementation of effective Compliance training across the Group.  
• Assist with the Group’s approach, including an effective Group Obligations register, for the timely identification of opportunities to enhance the management and oversight of Compliance risk, and ensure appropriate action is taken by relevant parties to deliver improvements.
• Work with relevant stakeholders in the Group to ensure that the required controls to mitigate compliance risk are embedded into new products and initiatives.
• Support the Group Director, CFCC in the development and implementation of the Group Government & Regulatory Relationship Program.
• Implement a process that identifies and manages potential Compliance risk from regulatory and geo-political changes and provides assurance that changes have been effectively embedded into the relevant Compliance business processes.
• Broaden internal and external networks and keep up to date with regulatory requirements and industry best practice to continuously improve the effectiveness of Group compliance risk management.

Qualifications

Minimum Requirements

• Requires 12+ years of professional experience and 5+ years of management experience.

 Critical Skills

• No less than 9 years of compliance management experience, with significant portion in Compliance risk within a large international bank.
• Strong understanding of Regulatory Compliance and requirements within the banking industry.
• Good experience in leveraging analytics and technology solutions to manage Compliance risks.
• Critical thinking skills to understand and analyze complex problems.
• Effective communicator with strong writing and verbal abilities to communicate across all levels of the Group.
• Ability to develop strong relationships and collaborate with senior business and function leaders to influence change
• Proven focus on deliverables, organized, and ability to manage multiple high priority deliverables
• Self-starter, highly organized, and detailed-oriented
• Strategic and critical thinking and the ability to concisely convey complex regulatory concepts and possible solution sets.
• Excellent facilitation and presentation skills
• Exercise high level of discretion and confidentiality due to the sensitive nature of the scope of work
• Extremely detail oriented with ability to elevate details into strategies. 

Education

• Master’s degree plus relevant professional qualifications such as CAMS, ICA.

go to method of application »

Job Purpose:   

The Application Security Analyst provides expertise to inform and validate the secure design and development of IT applications including changes to existing applications

Job Responsibilities/ Accountabilities: 

• Ensure that application security is an embedded and critical part of the software delivery lifecycle (including during the early stages of projects) regardless of delivery methodology and tool sets used (e.g. static code analysis)
• Train and educate developers and teams in secure coding techniques including use of supporting toolsets and enable them to self service
• Perform application vulnerability assessments including regular scanning and penetration testing activities in terms of post deployment security testing on Web based, Mobile, Cloud application, Robotics, IOT etc
• Perform secure code review across a variety of programming languages
• Help tune Web Application Firewalls (WAF) and modify WAF policy to virtually patch applications where required
• Develop functional security testing scripts and procedures and identify opportunities to automate security testing and processes
• Identify inherent vulnerabilities and information security risks within systems and applications

Qualifications

Knowledge and Experience 

• A Bachelor’s degree in IT/ Computer Science/ Telecommunications/ Engineering (Electrical or Electronic) or related field from a recognized university.
• Must possess at least one professional certification such as CEH (Certified Ethical Hacker), LPT (Licensed Penetration Tester Master), OSCP (Offensive Security Certified Professional), CompTIA PenTest+, CMWAPT (Certified Mobile & Web Application Penetration Tester).
• A minimum of 5 years’ supervisory experience in Information Technology; with at least:
• 3 years’ experience in Information Security.
• Preferably 2 years Banking Experience in Active Application Security Testing
• Good knowledge of Banking/ Financial Services Operations
• Excellent planning and organizing skills
• Excellent problem analysis and attention to detail. 
• Competency: Web Application, Mobile, Cloud Application, Robotic Automation testing, IOT

go to method of application »

Job Purpose:   

The Endpoint Security Specialist will be responsible to perform solution architecture and deployment for Endpoint Security solutions, assigned to him/her by the Endpoint Security Solutions Manager, ensuring that every solutions designed and/or implemented will be completed on time, on budget and will exceed customer expectations. The Endpoint Security Specialist will be involved with the planning, design, implementation and fine-tuning of Endpoint Security solutions.

Job Responsibilities/ Accountabilities: 

• Deliver and maintain an Endpoint Protection solution for all internal staff across the Group;
• Be responsible for the management of the Endpoint Threat Management system or systems deployed to protect the workplace estate;
• Respond to and resolve all issues related to endpoint intrusion or threat detection;
• Ensure that all measures are taken to reduce our risk footprint while ensuring the end users can perform their duties without hindrance;
• Develop the corporate Endpoint Protection capability in line with the department’s strategic roadmap;
• Be competent in relevant technologies (anti-virus, patch management, endpoint policy compliance, etc);
• Endpoint Detection and Response solution fine-tuning and optimization;
• Provide reporting, presentation material and event monitoring as required by stakeholders, making use of the departmental reporting function;
• Be available to respond to incidents and major incidents during all times, and to be ready to be a key participant in major incidents connected to security, identity or access;

Qualifications

• 2+ years of relevant experience in an Endpoint Security position;
• 2+ years subject matter expertise with an Active Directory technology;
• Expertise in threat management with a proven track record of risk reduction in a workplace environment;
• Expertise in associated enterprise tooling (Anti-virus, SCCM, software management;
• Familiarity with Microsoft Azure and Azure Active Directory, as well as Azure Security Centre and associated monitoring and management capabilities;
• Excellent report writing skills, with competencies in Excel and PowerPoint;
• Capable of reporting to a range of seniority levels, including Executive;

go to method of application »

Job Purpose:   

The Data Protection Specialist is responsible for executing and administering Data Protection functions and supporting systems. Responsibilities will include overall systems management; support and execution of Data Protection roadmap and the related projects; organizational awareness, processes and procedures and compliance with audits/assessments related to Data Protection administration.

Job Responsibilities/ Accountabilities: 

• Work with vendors to support the DLP technology (troubleshooting, upgrades, etc.)
• Administration of the DLP tools which includes configuring policies, upgrading and patching, etc.
• Monitor alerts generated from the DLP systems and other technologies
• Understand and follow the incident response process through event escalations
• Respond to escalations by the Incident Response Team
• Follow processes to maintain the DLP system
• Assist the team with incident management and responding to Data Subject Rights Requests.
• Assist with the development of existing policy documentation and related practical guidance.
• Support data protection training and awareness initiatives across the Group.

Qualifications

Knowledge and Experience 

• 3-5 years’ experience in implementation and administration of DLP solution in the  Banking environment
• Experience with Microsoft Windows operating systems, Office 365, Enterprise Mobility and Security (EMS) and Enterprise Mobility Management (EMM)
• Experience with Privilege Access Management solutions, Least privilege Access Management platforms and multi-factor authentication solutions among other technologies
• Experience in managing Information Security compliance
• In depth knowledge of Information risk concepts / relating business needs to security controls
• Preferred certifications:
  • CISSP, CCNP, Network +, CISM, CGEIT or equivalent.

go to method of application »

Job Purpose:   

This role is responsible for identification, management and remediation of technical vulnerabilities and cyber threats across EQUITY GROUP’ infrastructure, applications and network. The incumbent will be responsible for continuously performing threat hunting, responding to incidents and improving the security controls of EQUITY GROUP. The incumbent will be required to research and keep abreast of the cyber-attacks and threats in order to continuously protect EQUITY GROUP against new types of attacks. The Senior Specialist will take the lead during incident investigation to drive speedy resolution to minimise potential data leakage and financial loss to EQUITY GROUP. The role engages with key business and operational partners in managing the detection, response, and remediation of cyber related attacks on EQUITY GROUP’s network and its systems.

Job Responsibilities/ Accountabilities: 

• Perform vulnerability assessment and penetration testing on the Bank’s infrastructure and systems to ensure that they are secure from external or internal intrusion attempts thus reducing the risk of successful intrusions against Equity group.
• Provide technical VAPT related support to projects from inception through to successful implementation in a bid to ensure compliance to technical security policies and standards.
• Perform authorized attack surface reviews and penetration tests against specific targets at the direction of the Senior Manager, Security Monitoring & Response.
• Provide vulnerability analysis specific input to the EQUITY GROUP information security strategy
• Develop, integrate and monitor detailed business plans for vulnerability analysis in accordance with the frameworks, goals and targets
• Organise and execute periodic vulnerability assessments and Pen Tests by applying knowledge of scanning tools and emerging risks.
• Work with Group Cyber Defence to coordinate scans with all other parties involved in EQUITY GROUP, including the distribution of notices or notifications, and the management of logistical requirements.
• Lead process optimisation, enhancement, efficiency and continuous improvement on initiatives and programmes within the cyber threat and vulnerability management, as well as benchmark and analyse trends to optimise internal processes.
• Track and prioritise the remediation of vulnerabilities, according to their level of criticality and their potential risk to the business of the affected asset. Report on the status of the resolution of vulnerabilities on a periodic basis.
• Ensure incident identification, assessment, quantification, reporting, communication, and mitigation while confirming SLA compliance, process adherence, and process improvisation to achieve operational objectives.
• Perform threat management, threat modelling, identify threat vectors and develop use cases for security monitoring. Maintaining working knowledge of cyber threat actor tactics and techniques.
• Responsible for integration of standard and non-standard logs into the Group SIEM and review/ revise the processes to strengthen Security Operations.
• Co-ordinate with stakeholders, build and maintain positive working relationships with them.
• Lead efforts and participate in audits covering cyber defence.
• Work with Technology Security Leadership to implement the cyber threat and vulnerability management strategies and operational requirements
• Assist to drive strategic alignment of the Group cyber incident response operations and EQUITY GROUP cyber incident response services
• Develop a standardised set of responses to cybersecurity breaches with responses varying according to the level of cybersecurity breaches. 
• Work with the Cyber Defence team to revise and develop processes to strengthen the current Security Operations Framework, review policies and highlight the challenges in meeting the required performance targets

Qualifications

Knowledge and Experience 

• A Bachelor’s degree in IT/ Computer Science/ Telecommunications/ Engineering (Electrical or Electronic) or related field from a recognized university.
• Must possess at least one professional certification such as CEH (Certified Ethical Hacker), LPT (Licensed Penetration Tester Master), OSCP (Offensive Security Certified Professional), CompTIA PenTest+, CMWAPT (Certified Mobile & Web Application Penetration Tester).
• A minimum of 5 years’ supervisory experience in Information Technology; with at least:
• 3 years’ experience in Information Security.
• 2 years’ experience in Vulnerability Assessments/ Penetration Testing.
• Good knowledge of Banking/ Financial Services Operations
• Excellent planning and organizing skills
• Excellent problem analysis and attention to detail. 

go to method of application »

Job Purpose:   

This entails monitoring networks to detect any intrusion or hostile activities. It also involves taking measures such as carry out design, implementation, and administration of technical cybersecurity defenses for firewalling, segmentation, network intrusion detection, and prevention; network access monitoring and control, network vulnerability scanning, penetration testing, etc., to defend against malicious attacks on the systems.

Job Responsibilities/ Accountabilities: 

• Maintaining LAN, WLAN and architecture of the Network as per the business policy
• Measure, analyze and implement new security protocols for greater efficiency against any threat or malfunctions
• Generating and maintaining the virtual private network, firewalls, web protocols and email security decorum.
• Reporting the security analysis of findings
• Investigations of Network Security breach alert
• Drive the implementation of Security standard for Network devices across the Group
• Conduct periodic security reviews on the Network infrastructure and also reviewing connection matrix
• Monitoring of web security gateways, perimeter security, network access controls, endpoint security

Qualifications

Knowledge and Experience 

•  3-5 years of relevant work experience in Information Technology (specifically security)
• 3-5 years’ experience in core network technologies of a telecom or Banking environment
• 3-5 years working experience in managing information security in a large organization
• Experience in designing and implementing organization wide information security Network architecture and framework
• Experience in managing and implementing large scale information security Network projects
• Advanced working understanding of the information technology and Networking environment of a Financial and Technology driven Organization
• Preferred certifications:
  • CISSP, CCNP, Network +, CISM, CGEIT or equivalent.

go to method of application »

Key Responsibilities

• Enforcing logical security at the various layers of the Bank’s IT infrastructure (network, database, application and operating system layer)
• Ensure Identity & Access Managment (IAM) solution is functional and serving the business
• Management approval of user roles on the applications that support Role Based Access Control (RBAC)
• Provide password management support for users across multiple platforms.
• Periodic review of user login activities for inactive or unused user profile
• Provide input for security awareness based on identified risk in user management activities
• Ensure security of all Information entrusted to the staff
• Review of staff in sensitive units.
• Review of AD sensitive groups to identity excessive privilege
• Manage privilege account through the use of PAM and Azure PIM
• Manage MFA profiling using Cisco Duo MFA and Office 365 MFA portal
• Reporting and monitoring responsibilities

Qualifications :

• Certified information systems security professional (CISSP)
• CAP Certified Authorization Professional
• SSCP Systems Security Certified Practitioner
• Any certification on access and authorization
• Any Certification of Microsoft Cloud
• CompTIA Certification on Security
• Knowledge of the Bank’s IT solutions\

Other Skills and experience required:

• Effective Communication and Presentation skills
• Good report writing skills
• Consistent feed on local and global fraud trends
• Ability to identify appropriate security controls to address existing/potential risk
• Good knowledge of Information Security best practices
• Proficiency in the use of Microsoft Office Tools including
  • Azure AD PIM
  • MS Cloud Apps
  • IAM solution 
  • PAM (Thycotic Privilege Manager
  • Manage Engine ADPlus
  • Microsoft Cecurity Center
  • Microsoft EDR portal