Key Responsibilities:

• Patch and Vulnerability Management: Maintain a robust PVMG process by working with system and application custodians to ensure vulnerabilities are closed within SLA (25%).
• Audit: Track all audit issues within Technology and ensure they are closed within the agreed timelines (35%).
• Security Monitoring: Onboard all Digital Business assets to SIEM and perform SOC L2 role for NCBA Digital Business systems (25%).
• Leadership: Manage and coordinate cyber operation initiatives, ensure support SLAs are compliant, and report on key cyber operations metrics to senior management (15%).

Main Activities:

• Perform regular vulnerability assessments and compliance hardening reviews on Digital Business assets.
• Serve as the primary point of contact and escalation point for Security Administration tasks.
• Onboard all Digital Business systems to SIEM for monitoring by L1 teams.
• Perform SOC L2 role by investigating, closing, and reporting all cyber incidents affecting Digital Business systems.
• Coordinate and track the closure of all audit issues within Technology.
• Maintain an updated asset register for all servers and applications.
• Follow up with system custodians to ensure identified risks are addressed within the agreed timelines.
• Continuously review and improve cyber processes to ensure efficient support to the agile software development process.
• Work with the group Cyber team to fine-tune controls to protect Digital assets.

Qualification and Skills 

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Minimum of 5 years of experience in Cyber Security systems administration, e.g., Intrusion Prevention Systems, Web Application Firewalls, Remote Access, Content Filters, Endpoint Protection, Vulnerability Management solutions, etc.
• Minimum of 2 years’ experience working with Networking and Operating Systems (e.g., Cisco, Huawei, Windows, Linux).
• Information Security certifications (e.g., CEH, CISSP, CISM, CISA, GIAC, CPTP, OSCP).
• Hands-on experience in software development with major languages like Java, C++, C#, and using relational databases (e.g., Oracle, MS SQL).
• Working knowledge of Cloud technologies (e.g., AWS, Azure, Google, Huawei).
• Excellent analytical, problem-solving, and reporting skills.
• Knowledge of systems and processes within the Financial Services industry.
• Experience in leading teams of security analysts is an added advantage.