Career Opportunities at KCB Bank

The Position:

The CISOC Analyst is responsible for front-line cybersecurity defence focusing on monitoring, detection & responding to cyber security incidents in real time.

Key Responsibilities:

• Monitor user and system activity to identify suspicious activities leveraging on security systems.
• Monitor network activity and investigate anomalous events and traffic trends.
• Check security monitoring status of systems on monitoring tools and initiate remediate on noted gaps.
• Monitor alerts and alarms from security monitoring tools and initiate corrective actions.
• Configure and finetune security monitoring systems to make sure the Bank is sufficiently protected.
• Administer security tools ensuring optimal uptime and resource utilization.
• Investigate suspicious user and system events and identify breaches and root cause.
• Mitigate intrusion attempts through proactive response to incidents.
• Prepare manual and scheduled reports for various stakeholders.
• Research and stay up to date on technology and cybersecurity trends.

The Person:

For the above position, the successful applicant should have the following:

1. Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering (Electrical/ Electronic) or related field.
2. Professional qualifications in any one of the following:
3. Certified SOC Analyst (CSA).
4. Certified Incident Handler (E|CIH).
5. Certified Threat Intelligence Analyst (CTIA).
6. Certified Information Systems Security /Professional (CISSP).
7. Certified Ethical Hacker (CEH).
8. PENTEST+.
9. Security+.
10. Certified Information Systems Auditor (CISA).
11. Certified Information Security Manager (CISM).
12. 2 years Technology experience with at least 1 year experience in Cybersecurity.
13. Strong interpersonal and communication skills. did

go to method of application »

The Position:

The Information Security Specialist, Threat Intelligence will serve as a support system for the Bank’s Cyber Intelligence and Security Operations Centre (CISOC), Incident Response teams providing actionable intelligence by leveraging security tools and solutions, internal and external threat intelligence sources, regulator, and vendor advisories, etc to ensure the Bank has the most up-to-date cybersecurity threat intelligence.

Key Responsibilities:

• Identify patterns, trends, and events in Bank’s systems, and effectively make recommendations to the CISOC and Incident Response teams.
• Research, collect, fuse, and analyse open source and proprietary threat reporting tools to provide productive and actionable cyber threat intelligence.
• Carry out security awareness training and education programs, and internal phishing awareness campaigns.
• Maintaining a forward-looking view of the cyber threat landscape as it relates to financial sector, predicting shifts in adversarial intent, goals, and strategic objectives.
• Maintain thorough documentation of cyber threats, threat vectors, threat actors, and threat trends, tactics, techniques, and procedures for consumption during threat modelling activities and security incidents.
• Build and leverage relationships with internal/external peers from public and private sector organizations.
• Assist in developing and refining cyber threat intelligence lifecycle processes.
• Working side by side with internal cybersecurity defenders to provide intelligence-driven insights into existing and emerging threats.
• Stay up to date with relevant vulnerabilities, threat actors, indicators of compromise (IOCs) tactics, techniques, and procedures (TTPs), and trends, identifying actionable areas of interest and threats.
• Delivering timely, relevant, and actionable intelligence and recommendations through reports, briefings, and threat assessments to stakeholders to improve the ability to detect threats in the Banks’s environment.

The Person:

For the above position, the successful applicant should have the following:

1. Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering (Electrical/ Electronic) or related field.
2. Professional qualifications in any one of the following:
3. Certified Incident Handler (E|CIH).
4. Certified Threat Intelligence Analyst (CTIA).
5. Certified Information Systems Security Professional (CISSP).
6. Certified Ethical Hacker (CEH).
7. Offensive Security Certified Professional (OSCP).
8. Security+.
9. GIAC Cyber Threat Intelligence (GCTI).
10. GIAC Certified Incident Handler (GCIH).
11. 5 years Technology experience with at least 2 years in Cybersecurity.
12. 3 years’ experience in System/ Network/ Database/ Cloud Platform Administration or Application Development.
13. Strong interpersonal and communication skills.