Specialist – IT Security
Career Directions Limited
Nairobi, Kenya
5d ago
source : BrighterMonday

Job Summary

Responsible for the maintenance and enhancement of the information security and integrity of the company through the monitoring and rationalization of security technologies within the infrastructural and business areas.

  • Minimum Qualification : Bachelor
  • Experience Level : Mid level
  • Experience Length : 5 years
  • RolePurpose :

    Responsible for the maintenance and enhancement ofthe information security and integrity of the company through the monitoringand rationalization of security technologies within the infrastructural andbusiness areas.

    Conducting regular audits to ensure compliance with companypolicy and procedures including Disaster Recovery and business continuityplanning


  • Protects system by defining accessprivileges, control structures, and resources.
  • Develop security standards, processes andpolicies for IT Governance for the company.
  • Conducting network security assessments andaudit log reviews to evaluate the effectiveness of current security measures
  • Manage network, intrusion detection andprevention systems and monitor and review intrusion detection systems andfirewall logs, analysing events and patterns and coordinating mitigationresponses
  • Working with internal and external businesspartners on ensuring that Technology acquisitions meet network securitystandards
  • Monitor multiple environments to detect,validate and respond to cyber security incidents
  • Participate in information securityinitiatives, provide risk assessments, define security requirements and applysecurity best practices during projects.
  • Provide technical support in the areas ofvulnerability assessment, risk assessment, network security, productevaluation, incident management and security implementation
  • Provide technical evaluations and assistswith making security improvements
  • Responsible for designing and implementingsolutions for protecting the confidentiality, integrity and availability ofsensitive information
  • Respond to and assist in information securityassessment requests; evaluate vendor products and services; advise managementof risks and best security practices.
  • Track security trends / events to provide monthlysecurity reports.
  • Coordinate disaster recovery and businesscontinuity tasks for the company.
  • Remediating security anomalies on theend-point estate including; unprotected devices, infected devices or devicesand software with malfunction affecting security
  • Assessing and deploying security patches andconfiguration for endpoint devices in a timely manner, including hardware,operating systems, applications and end-user cloud services.
  • Creating, evolving, updating and maintainingsecurity policy and documentation.
  • Creating, managing, maintaining and carryingout, the procedures and processes required
  • Document and promote awareness of securitypractices, processes, procedures and policies.
  • Maintain a security risk register ofinformation risks with assigned owners and work with the Manager IT Securityand Compliance to define appropriate work packages to mitigate risks.
  • Mentor junior security professionals.
  • ProfessionalSkills

  • Business acumen
  • Strategic
  • Result oriented
  • Developing self and others
  • Innovation
  • Managing risk
  • Analytical thinking
  • Academic / Professional Qualifications

  • Degree in Electrical Eng / ComputerScience / Information Technology or other relevant Technical Degree
  • Advanced professional information securitycertifications e.g. CISSP / CISM / CISA / GIAC / CEH / CPTP / OSCP are preferred
  • Advanced Networking certifications : CCNA / CCNPare also preferred
  • Certifications in Microsoft Windows andLinux / Unix Operating Systems
  • Certifications in ITIL / ETOM also preferred
  • Experience

  • At least a minimum 5 years background in IT,Telecommunication or Service Provider environment
  • Experience in penetration testing andvulnerability assessments, IDS / Firewalls / VPN Administration, content filers,Security scan tools, Network and Systems
  • Administration Experience in enterprisesecurity architecture design
  • Experience in enterprise security documentcreation
  • Experience in designing and deliveringemployee security awareness training
  • Experience in developing Business ContinuityPlans and Disaster Recovery Plans
  • Apply
    Add to favorites
    Remove from favorites
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form