BANK

Senior Manager -Cybersecurity Program Management

Reporting to the Head, Group Cyber Security, the purpose of the role is to lead the Cybersecurity Strategy & Program Management unit within Group Cyber Security to drive, improve, and demonstrate cybersecurity maturity.

The Cybersecurity Strategy & Program Management unit’s mandate is to develop, maintain and measure cybersecurity strategic plans that support and align with the Bank’s corporate and technology strategies, cybersecurity vision and regulatory compliance.

The role is also responsible for management of KCB’s portfolio of Cybersecurity investments, third party cybersecurity governance, cyber culture and analytics across the group that align to overall needs and priorities of the enterprise. Overall, the role is responsible for translating the Group Cybersecurity vision and strategy into actionable artefacts, drive maturity and report to all relevant stakeholders within the organization.

 Key Responsibilities

  • Cybersecurity Strategy: Maintain, coordinate, and measure the overall group Cyber Security strategy, the budgeting cycle, and the selection of security technology within the remit of the cybersecurity department.
  • Cybersecurity Maturity: Oversee the yearly cybersecurity maturity assessment process across the group, track strategic and tactical initiatives that will achieve the target maturity of the KCB cybersecurity practice.
  • Cybersecurity Investments Portfolio Management: oversee the management of cybersecurity investments across the group working closely with all senior managers in group cybersecurity and subsidiary leads through the life cycle of products i.e., acquisition to decommissioning of security technologies.
  • Cybersecurity Governance and Reporting: prepare reports, presentations, and visualizations to communicate cybersecurity program status and posture to various stakeholders, including senior management on a weekly, monthly, quarterly, and yearly basis. 
  • Cybersecurity Data Analytics: Maintain an effective centralized datastore for all key cybersecurity data and metrics, leveraging data analytics to capture insights and intelligence to drive and report on cybersecurity maturity. 
  • Define, create, deliver, and maintain compliance reports and relevant cybersecurity metrics (key performance indicators) across all the various security domains in verticals – technical security, enterprise security architecture, cyber intelligence and security operations centre, cybersecurity assurance and cybersecurity program management - to senior management.
  • Third party cybersecurity governance: identify and manage the potential cybersecurity risk from third parties by setting up a practice to understand, evaluate, report on and minimize the cybersecurity risks third parties could bring.
  • Cyber Culture and stakeholder management: manage cybersecurity’s engagements and relationships with the various stakeholders within the organization, in a bid to build a cyber risk aware culture working closely with the security awareness unit. 
  • Lead the team in delivery of cybersecurity projects from inception through to successful implementation in a bid to ensure that the solution is delivered as per defined requirements.
  • Cybersecurity Risk Self-Assessment: Participate in the identification and reporting of information security risks, as well as non-conformance to the Bank’s Information Security policies and standards.

 

The Person

For the above position, the successful applicant should have the following:

  • Bachelor’s Degree in Information Technology/ Computer Science/ Telecommunications/ Engineering (Electrical, Electronic) or a Related field from a recognized university.
  • At least one Information Security certification such as CISA / CISM/ CISSP/ Security+/, GSE/ GSEC/ CRISC/ SSCP.
  • At least one certification in any of the key technology domains; network, databases, operating systems, system administration, security administration, cloud, servers, containerized platforms, virtualization platforms, incident management and response.
  • 5 years' experience in cybersecurity.
  • 3 years’ experience in the acquisition, deployment and management of cyber security tools and processes.
  • 2 years’ experience in cybersecurity reporting and data analytics.
  • 1 year experience in cybersecurity strategy development, execution tracking.

 

The above position is a demanding role for which the Bank will provide a competitive remuneration package to the successful candidate. If you believe you can clearly demonstrate your abilities to meet the criteria given above, please log in to our Recruitment portal and submit your application with a detailed CV.

 

To be considered your application must be received by Friday 22nd March 2024

 Qualified candidates with disability are encouraged to apply.

 Only short-listed candidates will be contacted

Apply Now
Uploaded: 2024-03-12 00:00:00 Deadline: 2024-03-22 00:00:00 Reference Number: 2399