This job listing has expired and may no longer be relevant!
9 Oct 2023

Technology Risk Management Specialist at Equity Bank Kenya

Recruit candidates with Ease. 100% recruitment control with Employer Dashboard.
We have the largest Job seeker visits by alexa rankings. Post a Job

Resubmit your Resume Today. Click Here to Start

We have started building our professional LinkedIn page. Follow


Job Description

Equity Bank Limited (The “Bank”) is incorporated, registered under the Kenyan Companies Act Cap 486 and domiciled in Kenya. The address of the Bank’s registered office is 9th Floor, Equity Centre, P.O. Box 75104 – 00200 Nairobi. The Bank is licensed under the Kenya Banking Act (Chapter 488), and continues to offer retail banking, microfinance and related services. The Bank has subsidiaries in Kenya, Uganda, South Sudan, Rwanda and Tanzania. Its shares are listed on the Nairobi Securities Exchange and Uganda Securities Exchange. Equity Bank was founded as Equity Building Society (EBS) in October 1984 and was originally a provider of mortgage financing for the majority of customers who fell into the low income population.

The Role

The IT Risk Specialist role is a 2nd line of defense role which encompasses creation/improvement/execution of Information and Technology risk management across the Group, including partnership with 1st line front line business and risk units, in alignment with the Enterprise Risk Framework. The role will be providing Risk Management leadership across the Group’s Information and Technology risks. The candidate is expected to possess a deep understanding of information technology and should understand concepts including computer networking, web and native application functionality, operating system functionality, cloud services, corporate network environments and operations.

Responsibilities

  • Support the review and update of the technology risk management framework on an annual basis with the changes in the environment.
  • Review technology policies, processes and procedures identify potential opportunities for improvement and alignment.
  • Working across the technology department to analyze and better understand their risk profile.
  • Review IT initiatives from technology risk perspectives and provide advisory and recommendation.
  • Supervise the IT disaster recovery measures deployed across the group.
  • Defining a risk and control methodology and framework to use in conducting risk assessments.
  • Proactively managing risks so that there are no major incidents, breaches, or examples of non-compliance.
  • Adhere to, advise, oversee, monitor and enforce enterprise frameworks and methodologies that relate to technology controls activities.
  • Support the definition of the technology risk appetite statements
  • Monitor Key Risk Indicators (KRIs) and report on deviation from defined technology risk appetite.
  • Assist in the role-out of risk control self-assessments across the 1st line of Defense.
  • Assist with the Technology Risk reporting operations, including scheduling key monthly meetings, monitoring key milestones, escalation of past due activities, problem triage and management.
  • Increase awareness and enhance risk culture across the organization and provide day to day risk and control advise as trusted 2nd line subject matter expert.

Qualifications

Ideal Candidate

  • Bachelor’s degree in Computer Science, Information and Cyber Security, Technology or equivalent
  • 5 years of relevant in information security or risk management, audit, information assurance preferably in Banking and Financial sector
  • Must have CISA (Certified Information Systems Auditor) certification
  • CISSP (Certified Information Systems Security Professional) * Added advantage
  • Must have CCSP (Certified Cloud Security Professional) certification
  • Other ISACA related Certification (e.g., CISM, CRISC or CGEIT) * Added advantage
  • Consistently able to demonstrate or articulate value proposition
  • Candidates must have hands on experience in performing risk assessments in diverse technology environments
  • Good understanding of technology infrastructure, networks, and database management systems.
  • Good understanding of cloud computing technologies and Microsoft Azure environment.
  • Expertise in Linux machine recommended Kali and parrot.
  • Familiar with various operating systems and databases
  • Ability to both assess priorities and to focus on work in a structured fashion which delivers results
  • Sound judgement and anticipation
  • Strong integrity, independence, and resilience
  • Deliver with minimal supervision.
  • Avid researcher of best practices and happenings in the global cyber space.
  • Engage key stakeholders on actions required.
  • Team player and contributor.
  • Strong problem-solving, persuasive skills and an ability to grasp abstract concepts and complex technology situations to challenge the status quo and further develop and build on our IT Risk Management Framework.
  • Excellent communication skill, both verbal and written, with the ability to initiate and lead conversations with technology and business leaders and risk colleagues regarding anticipated and emerging issues.


Method of Application

Submit your CV and Application on Company Website : Click Here

Closing Date : 23 October. 2023





Subscribe


Apply for this Job