Posted: By:Hiring Kenya
Overall Responsibility:
Oversee end-to-end cybersecurity, information assurance, and compliance across networks, systems, and data. Key duties include designing and implementing security measures, monitoring and enforcing policies, maintaining documentation, and demonstrating Poa’s data protection readiness.
Responsibilities and Accountabilities:
Define industry-leading cybersecurity standards, policies, KPIs, and measurement criteria.
Audit systems, networks, databases, and certificates against defined standards to identify weaknesses and recommend mitigation plans.
Implement a cybersecurity monitoring plan to detect and resolve security incidents in near real time.
Develop and share security awareness materials to upskill Poa employees, with emphasis on phishing prevention.
Continuously review digital systems for breaches, conduct simulated attacks to uncover vulnerabilities, and establish security protocols to prevent threats.
Participate in testing, implementation, and operation of secure systems, networks, and databases to ensure threats are mitigated before production.
Academic Qualifications:
BSC Degree in information Technology or related field with at least two years cybersecurity experience.
Certification on CCNP Security, Security+, CISA and CEH
Key Competencies required for the role:
Proficiency in conducting regular vulnerability assessments of the systems to prevent any security incident.
Expertise in penetration testing, networking, system administration, and operating systems.
Up-to-date awareness of hacking techniques and emerging cyber threats..
Ability to manage risk and ensure effective disaster recovery in the event of a security incident.
Attention to detail: Ability to conduct an in-depth analysis of networks and identify any vulnerabilities or gaps in the system.
Knowledge of cyber laws and compliance requirements as per the law of the land.
Minimum Qualifications:
Two years of experience in cybersecurity-related duties such as incident detection, response and forensics.
Must be conversant with the Data Protection Act 2019 and Data Protection Regulations 2021.