Vacancies at Old Mutual Kenya

Job Description

• Will be responsible for the day-to-day management and implementation of Information security. This role requires that the role holders interact with security systems on a real-time basis and must develop ability to detect security breaches within 15 minutes.

KEY MEASURABLE GOALS

• Achieve security and compliance to Old Mutual Group Security Blueprint and Regulatory requirements.
• Resolve reported cyber incidents or escalate to investigative authorities.
• Identify and manage information risks.
• Maintain required security posture on all IT systems.
• Compliance to Risk and Audit.

KEY RESPONSIBILITIES

• Implement security projects by use of products such as Network Firewalls, Antivirus Systems, Database Security Systems, and Software Patching systems.
• Implement 2 factor authentication following a risk-based approach for all critical system logins such as super user logins and remote VPN connections.
• Train and promote information security awareness campaigns amongst all the staff.
• Play an active role in the information security stage of every business project.
• Develop risks based plans and polices to safeguard information assets against accidental or unauthorized modification, destruction, access or disclosure.
• Monitor current vulnerability reports from threat management systems (antivirus reports, firewalls, alerts systems etc.) and execute measures to remove these vulnerabilities.
• Ensure that relevant encryption and data loss prevention standards are implemented to the group security blueprint standard requirements.
• Ensure that all Faulu Systems, Perimeter Network Systems, Desktops, Point of Sale Devices, and other Mobile devices are all up to date with the latest security patches and measures.
• Working closely with System and Business Managers, he/she should identify and close data and information security as well as the continuity gaps necessary for effective data, information continuity and security.
• Review vendor security systems with an aim to improve security on directly connected links.
• Protect system by defining user access privileges and control structures.
• Establish security for VPNs, home connections and Internet Connections
• Where required develop an information security policy.
• Establish information security incident visibility to the relevant investigative authorities.
• Safeguard established and agreed logical and physical security measures for all the information assets.
• Perform periodic User Access Rights reviews and recertifications on all critical systems.
• Implementation of Information Security tools and methods necessary to support the bank’s Information Security Strategy.
• Determine and report all security violations and inefficiencies by conducting periodic system information security reviews.

IT RISK AND SECURITY

• Carry Contribute to IT security risk and controls self-assessments.
• Continuous monitoring of IT Security baselines, policies, and frameworks to maintain stable security posture.
• Constant monitoring and remediation of security vulnerabilities (Vulnerability per device, VPD’s) and ensure severity levels are at acceptable thresholds.
• Perform IT Security compliance checks for network devices, endpoints, and databases in Faulu.

BANKWIDE AML KYC & CFT RESPONSIBILITIES

• The incumbent will be responsible for ensuring adherence to, implementation of, and adoption of Compliance, Anti-Money Laundering (AML), and Sanctions-related policies, procedures, and process requirements within Old Mutual and its subsidiaries. This includes execution of customer due diligence processes, ensuring compliance with Know-Your-Customer (KYC) standards, conducting ongoing and enhanced due diligence, and maintaining data quality.
• Additionally, the role involves identifying and monitoring potential AML, Sanctions, or Compliance breaches and unusual activities, and escalating these concerns to the Risk and Compliance Office for further action.

Education

• Bachelor’s degree in computer science or Equivalent qualification.
• Must possess at least one Security Certification such as CEH, Comp TIA Security + Certification(s), CIH (Certified Incident Handler), CTIA (Certified Threat Intelligence Analyst (CTIA), OSCP (Offensive Security Certified Professional), GCTI (GIAC Cyber Threat Intelligence), GCIH (GIAC Certified Incident Handler), CSX-F (Cyber Security Fundamentals), SSCP (Systems Security Certified Practitioner) and CASP (CompTIA Advanced Security Practitioner)
• CISSP, CRISC, CISM, CISA, CEH or other InfoSec Governance Training in information security would be an added advantage.

Knowledge and Skills

• User and Technical level knowledge of core operating systems e.g. Unix, Linux and Windows of at least one year (1) working experience.
• Experience in Endpoint Security Management
• Administer, optimize, and support the Bank’s security awareness and phishing simulation solutions, in compliance with the Bank’s policies and standards.
• Good knowledge of Banking Operations and procedures.
• Good information Data Protection Act and Data Security.
• Experience in Network Security including firewall, NAC, Network Segmentation, VPN and gateway security
• Experience in Identity and Access Management
• Experience in using security monitoring tools and incidence response using SIEM tool kit
• Experience in penetration testing and vulnerability management
• Experience in application security from web applications to mobile apps and USSD
• Experience in Database Security and use of Database Access Management, DAM
• Experience in Cloud Security management
• Experience in Security Operations and cybersecurity threat indicators then assist to detect, report, and respond to related incidents

Experience

• A minimum of 2 years’ experience in Information Security
• Strong technical skills in a wide range of systems and security tools such as, SIEM, DAM, PAM, WAF, Access Lists, Firewalls Rules, Wireless Encryption Standards, Windows/Linux IP Protocols, Endpoint Security, mobile devices security, access control systems, data loss prevention systems and encryption standards
• Good understanding of Applications and Database Security controls in banking businesses, with deep knowledge in emerging security threats
• Hands on and proven experience in security software and hardware security remediation projects

Personal Attributes

• Team Player
• Tech Savvy and Business awareness
• Ownership
• A person of high integrity, dependable and with technical knowledge
• Flexible to work during odd hours
• Self-starter with ability to go an extra mile and deliver within agreed timelines
• Strong verbal and written communication skills
• Building relationships
• Aligning Performance for success
• Ability to work with minimal supervision

go to method of application »

Job Description

Reporting to the Head of SME Banking, the role-holder will be responsible for business development and Growth in Small & Medium Enterprises (SME) Sector quality Portfolio and marketing for cheap & stable deposits as well as coordinating with the SME branch officers and Managers for the preparation of credit applications from the Branches and other leads for lending and cross-selling of other Bank’s products and services.

The role-holder will work closely with the Branches to maintain a high degree of Customer focus and grow the SME portfolio of the Bank.

KEY MEASURABLE KPI’S

• Growth in SME number of Clients
• Growth in SME Quality Loan Book (OLB)
• Portfolio At Risk of the SME Book (PAR)
• Growth in SME Customer deposit, both CASA and Term (ODB)
• Timely loan Disbursement and Repayment (TAT)
• Growth of Quality Trade Finance Book in the segment Sector Profitability

KEY RESPONSIBILITIES

• To implement the SME Banking strategy in line with the overall Bank Strategy; to ensure achievement of profitability targets through revenue maximization and aggressive growth of innovative SME and Trade Finance portfolio.
• Working Closely with the Branch team (SME officers/ SRO-SME/RM-SME Branch and Branch Managers) and Credit to increase Market share of the SME Segment in terms of customer numbers, product and Service Consumption.
• Working directly with the Branches and SME branch team to grow a quality SME portfolio and to drive account utilization that leads to the growth of cheap and stable deposit in the segment.
• Provide support to the branch team on reviewing/appraising of the SME file for approval by ensuring timely submission of quality credit proposals in conformity with the Credit Policy guidelines
• In liaison with other bank stakeholders, ensure quality portfolio by effective identification of risks and their mitigation measures.
• Ensure there is quick and timely feedback to the clients on the fate of their application by communicating the same to the clients through the branch team or directly to the client where applicable.
• Working closely with the branch team to ensure the approval success rate is maintained above 80% through training on quality credit appraisals.
• Offer support to the branches on the onboarding of the lead Generators to increase the business volume in the segment.
• Track customer and competitor activity; analyze the relevant market and industry data to identify opportunities for innovation and business growth.
• Provide training to all bank staff on SME Banking products
• Any other duty that may be assigned by the supervisor

OTHER KEY RESPONSIBILITIES

• Credit appraisal & approval
• New business acquisition in the SME segment.
• Appraise credit applications to ensure they meet Bank’s policy standards  
• Make appropriate recommendations and present the same to the Head office Credit Committee, Appeal Committee, Exco Committee and or Board Commitee
• Marketing of the Bank products
• Attracting new business and expanding current business
• Good Customer experience and Relationship Management
• Assisting in the cross-selling of all the Bank products and services  
• Monitoring and Control of the SME Banking portfolio
• Ensuring compliance with Bank’s credit policy and Government regulations
• Regularly monitor all performing accounts
• Maintain and evaluate quality of Loans to ensure compliance with lending guidelines.
• Preparation of special SME sector reports on credit disbursements, loan arrears and sector productivity.

Staff functions

• Adopting a proactive and energetic work style to enhance customer/ interdepartmental /branch delight.
• Offer advice and support to Branches and the SME Officers on matters and issues relating to SME Credit appraisals.
• Upholding the required professional and technical knowledge by attending and contributing to the appropriate Training programmes

AML KYC & CFT Responsibilities

• The incumbent will be responsible for ensuring adherence to, implementation of, and adoption of Compliance, Anti-Money Laundering (AML), and Sanctions-related policies, procedures, and process requirements within Old Mutual and its subsidiaries. This includes execution of customer due diligence processes, ensuring compliance with Know-Your-Customer (KYC) standards, conducting ongoing and enhanced due diligence, and maintaining data quality.
• Additionally, the role involves identifying and monitoring potential AML, Sanctions, or Compliance breaches and unusual activities, and escalating these concerns to the Risk and Compliance Office for further action.

Education

• Business-related degree from a recognised university

Professional Qualifications

• Accounts Qualification Section 4 of CPAs

Additional Qualifications/Experience (Preferred, Not A Requirement)

• Master’s degree

Knowledge Skills, and Experience

• Business management skills
• Credit management skills, Supervisory skills
• At least 5 years as a Universal Banker in MSME business
• Lending hands-on experience of at least 3 years.

Competencies Required

• Good communication
• Interpersonal skills
• Team leader/player