Cyber Security Specialist – Audit and Risk Governance at KCB Bank Kenya

The Position:

The role holder will support the governance, risk, and compliance roles of the Group Cybersecurity function. 

Key Responsibilities:

• Ensure the development, update, implementation, and enforcement of information security governance including policies, baselines, and procedures.
• Ensure the cyber security risk management capabilities including risk methodologies to mitigate cyber security across the group.
• Assess, handle, and follow up on mitigation of 3rd party related cyber risks through all stages.
• Manage cyber audit and risk findings resulting from internal audits, external audits, and assessments.
• Follow up and reporting of IT audit recommendations implementation within Group Cyber Security.
• Act as a key contact point for all assurance functions i.e., risk & audit with regards to cybersecurity topics.
• Recommend appropriate security controls according to internal standards and key industry best practises and ensure that such controls operate as intended.
• Gap analysis with respect to standards, industry regulations and definition of the security posture.
• Ensure management and authoritative reporting of Cyber Risks and cooperate with legal, compliance and other risk owners.
• Engage staff on cybersecurity related audit and risk matters.

The Person:

For the above position, the successful applicant should meet the following criteria:

• Information Technology / Computer Science / Telecommunications / Engineering / (Electrical, Electronic) or related field
• Security certification such as CISA, CISM, CISSP, CRISC.
• Have a minimum of 5 years’ experience in Technology with at least 2 years’ experience in Risk, Audit, or Governance and 1 year experience in Cybersecurity.