Vacancies at NCBA Group

Job Purpose Statement

The Infrastructure Security Architect & Engineer role focuses on designing, implementing, and maintaining secure infrastructure solutions to safeguard the Bank’s IT environment. This role involves developing robust security architectures, integrating security into infrastructure projects, and supporting compliance efforts. The position requires hands-on experience in securing hybrid environments, including on-premise, cloud, and virtualized systems, while collaborating with various teams and vendors to enhance the organization’s security posture.

Key Accountabilities (Duties and Responsibilities)

Security Architecture Design and Implementation (30%)

• Design and implement secure infrastructure solutions, including cloud, on-premises, and hybrid environments.
• Integrate security requirements into infrastructure and application development processes.
• Collaborate with project teams to ensure secure design and deployment of IT systems.
• Assess emerging technologies and provide recommendations to improve security and efficiency

Infrastructure Hardening and Optimization (30%)

• Develop and enforce security baselines for servers, networks, storage, and virtualization platforms.
• Optimize existing infrastructure for enhanced security, scalability, and performance.
• Continuously refine policies and configurations to adapt to evolving threats.
• Support vulnerability management by identifying and addressing infrastructure-level risks

Operational Management and Incident Support (20%)

• Administer and manage infrastructure security tools, such as firewalls, IDS/IPS, endpoint protection, and identity management platforms.
• Collaborate with the SOC and IT operations teams to investigate and resolve security incidents.
• Maintain comprehensive documentation for configurations, procedures, and incident responses.
• Conduct periodic infrastructure security assessments and reviews

Compliance Support and Reporting (20%)

• Ensure infrastructure aligns with regulatory requirements and industry standards (e.g., ISO 27001, NIST, etc.).
• Generate periodic security coverage reports and metrics for stakeholders.
• Support audits and compliance reviews by providing detailed evidence and insights.
• Work closely with third-party solution providers to implement and validate secure infrastructure solutions

Job Specifications

Ideal Person Specifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 2-5 years of experience in infrastructure security, cybersecurity architecture, and cybersecurity engineering.
• Hands-on expertise with security tools and platforms such as IDS/IPS, firewalls, VPNs, SIEM, and cloud security solutions.
• Proficiency in scripting or automation (e.g., Python, PowerShell, Ansible) is a plus.
• Relevant certifications such as CISSP, CISM, CCSP, AWS Certified Security Specialist, or Azure Security Engineer Associate are preferred

Behavioral Competencies:

• Strong technical acumen and problem-solving abilities to design and implement secure systems.
• Effective collaboration skills for working with cross-functional teams and third-party vendors.
• Proactive approach to identifying and mitigating risks in complex IT environments.
• Excellent communication skills for conveying security concepts to technical and non-technical stakeholders.
• Adaptability to keep pace with rapidly evolving technologies and security threats

go to method of application »

Job Purpose Statement

The Cloud & IOT Security Engineer role focuses on developing, implementing, and maintaining secure solutions for cloud infrastructures and Internet of Things (IoT) ecosystems. As a mid-level technical position, it plays a pivotal role in safeguarding the bank’s cloud environments and IoT systems from evolving threats, ensuring robust security configurations, and facilitating seamless integration with organizational objectives.

Key Accountabilities (Duties and Responsibilities)

Cloud & IOT Security (40%)

• Assist in designing and deploying secure cloud architectures on platforms such as AWS & Azure
• Implement and monitor foundational security measures, including Identity and Access Management (IAM), encryption, and network segmentation
• Support the integration of security tools, such as Cloud Security Posture Management (CSPM) and vulnerability scanners, into cloud environments
• Collaborate on the development of secure IoT systems by enforcing device authentication, secure communication protocols, and data protection strategies
• Identify and mitigate security risks in IoT ecosystems, such as device vulnerabilities or insecure configurations
• Participate in the evaluation and implementation of IoT-specific security frameworks and standards

Technical Advisory & Collaboration (20%)

• Work with stakeholders to understand business requirements and translate them into technical security solutions
• Provide technical leadership in security incident response related to cloud or IoT systems
• Advise on regulatory and compliance requirements (e.g., GDPR, ISO 27001, NIST 800-53, and IoT-specific standards like ETSI EN 303 645)

Incident Response and Threat Management (20%)

• Support incident detection and response for cloud and IoT environments by analyzing alerts and assisting with investigations
• Conduct vulnerability assessments and help remediate security findings
• Contribute to threat modeling exercises to identify and address potential attack vectors

Ongoing Compliance and Audit Support (20%)

• Work closely with the Governance, Risk, and Compliance (GRC) team to ensure adherence to regulatory requirements such as GDPR, ISO 27001, PCI DSS, NIST, and IoT-specific standards like ETSI EN 303 645
• Assist in preparing documentation and evidence for internal and external audits, including risk assessments, security configurations, and incident reports
• Ensure that all cloud and IoT security practices align with ongoing compliance audits and organizational policies
• Track remediation of findings from audits and ensure timely resolution of non-compliance issues

Job Specifications

Ideal Person Specifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
• 2-5 years of experience in cloud security, IoT security, cybersecurity architecture, and cybersecurity engineering
• Hands-on expertise with security tools and platforms such as IDS/IPS, firewalls, VPNs, SIEM, and cloud security solutions
• Proficiency in scripting or automation (e.g., Python, PowerShell, Ansible) is a plus
• Relevant certifications such as AWS Certified Security Specialty, Azure Security Engineer Associate, Google Professional Cloud Security Engineer, CompTIA Security+, Certified Ethical Hacker (CEH), Cisco CyberOps Associate, ISO 27001 Lead Implementer/Auditor, or other governance-related certifications are preferred.

Behavioral Competencies:

• Strong analytical and problem-solving skills with a technical mindset
• A proactive approach to ensuring security and compliance in cloud and IoT environments
• Effective communication and collaboration abilities, with a focus on teamwork
• Commitment to continuous learning and professional growth

go to method of application »

Job Purpose Statement

The SOC Specialist plays a crucial role in monitoring, detecting, and responding to cybersecurity threats and incidents. This role requires technical expertise in cybersecurity tools and processes, strong analytical skills, and the ability to operate effectively in a dynamic, high-pressure environment. This role will be specialized for incident response and will act as an escalation point for SOC Analysts

Key Accountabilities (Duties and Responsibilities)

Security Monitoring, Reporting, and Incident Management (60%):

• Monitor and analyze network traffic, system logs, and alerts to identify potential security incidents.
• Respond to cybersecurity incidents, including analysis, containment, eradication, and recovery.
• Conduct root cause analysis of security incidents to prevent future occurrences.
• Collaborate with other teams to enhance threat detection capabilities and improve overall security posture.
• Perform threat hunting activities to identify advanced threats that evade automated detection.
• Create and update incident response playbooks and standard operating procedures.
• Generate and deliver reports on SOC activities, including incident trends and key performance metrics.
• Stay informed about the latest cybersecurity threats, vulnerabilities, and best practices.
• Provide input and recommendations for improving security controls and processes.

Support Audit and Risk Activities (20%):

• Act as the focal point for all SOC reports from Audit and Risk teams.

System Security (20%):

• Conduct periodic reviews of systems within the Bank to ensure they are configured according to the Bank’s Minimum Security Standard

Job Specifications

Ideal Person Specifications:

• A Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Minimum 3 years of working experience in a busy IT environment.
• Certification in a systems security or audit-related area, such as CEH, CISA, CISM, or CISSP.
• Deep interest in computing and cybersecurity.
• Excellent analytical, planning, and organizing skills.
• Familiarity with methods for ethical security hacking/penetration testing.
• Knowledge of SIEM toolsets.
• Experience in security incident detection and response.
• Familiarity with tools and techniques used by hackers.
• Excellent written and oral communication skills