Cybersecurity Specialist, Security Testing

The role holder will identify potential threats and vulnerabilities to the existing technology systems, platforms and processes through continuous Penetration Testing and Vulnerability Assessment. The Cybersecurity Specialist (Security Testing) is responsible for conducting Security and Penetration Testing exercises, recommending appropriate controls, in accordance with KCB Group’s business objectives, regulatory requirements, and strategic goals.

Key Responsibilities: -

• Execute red team scenarios to highlight gaps impacting the organizations security posture.
• Perform in-depth analysis of penetration testing results and create reports that describe findings, exploitation procedures, risks, and recommendations.
• Perform vulnerability assessment and penetration testing on the banks infrastructure and systems to ensure that they are secure from external or internal intrusion attempts thus reducing the risk of successful intrusions against KCB group.
• Provide technical VAPT related support to projects in a bid to ensure compliance to technical security policies and standards. Execute penetration testing projects using the established methodology, tools, and rules of engagements.
• Perform authorized attack surface reviews and penetration tests against specific targets at the direction of the Senior Managers Cybersecurity Assurance and Head, Group Cybersecurity.
• Provide assessment reports that are easily understandable by the target audience and include practical and reasonable recommendations based upon sound risk management principles.
• Assess the sufficiency of policies, standards and procedures relative to VAPT best practices.
• Perform continuous vulnerability monitoring in the KCB group environment and report compliance failures to management for immediate remediation.
• Define, create, and deliver status reports and relevant metrics to the Senior Manager, Group Cybersecurity.
• Provide input into Information Security risk control self-assessments by leveraging specialized knowledge in VAPT.

The Person

For the above position, the successful applicant should have the following:

• Bachelor’s degree in Information Technology / Computer Science / Cybersecurity / Engineering (Electrical, Electronic) or related field.
• At least one cybersecurity certification in the list: CISA/ CISM/ CISSP/ Security+/ CEH.
• 5 years technology experience with at least 2 years in cybersecurity.
• 2 years’ experience in System/ Network/ Database or Cloud Platform Administration.
• 1 year experience in Vulnerability Management / Security Testing / Penetration Testing.

The above position is a demanding role for which the Bank will provide a competitive remuneration package to the successful candidate. If you believe you can clearly demonstrate your abilities to meet the criteria given above, please log in to our Recruitment portal and submit your application with a detailed CV.

To be considered your application must be received by Friday 21^st June 2024.

Qualified candidates with a disability are encouraged to apply.

Only short-listed candidates will be contacted.