ICT Risk Officer

Recruiter / Employer: Co-operative Bank of Kenya
Contract: Contract / Casual
Status: Active

Specifically, the successful jobholder will be required to:

  • Carry out ICT risk assessments of Co-operative Bank systems and provide recommendation of appropriate and adequate IT security controls to mitigate and minimize ICT Risks.
  • Continuously review and improve the ICT controls in place.
  • Continuously review systems at all levels i.e. servers, applications, database, network devices etc., identify risks and make recommendations on closure of the risks.
  • Provide continuous assurance on ICT Risks on the Bank’s systems.
  • Evaluate ICT controls for all operating systems, applications, database management system interfaces and networks across the Bank to ensure consistency in achieving compliance requirements (regulatory, standards and internal policies).
  • Promote Information Security awareness within the Bank by providing consultation, guidance and conducting relevant awareness programs to ensure an IS compliant culture.
  • Proactively anticipate potential threats and vulnerabilities and provide guidance in coordination with the ICT department on effective responses or control measures to be implemented to mitigate them.
  • Manage ICT Risks registers.
  • Periodically perform vulnerability assessments & penetration tests on Bank systems and technology, identifying vulnerabilities and recommendations on closure of these vulnerabilities.

Skills, Competencies and Experience

The successful candidate will be required to have the following skills and competencies:

  • A Bachelor’s degree in Information Technology, Information Security or Computer Science.
  • Relevant IT Security professional qualifications e.g. CISA, CISM, CEH or other relevant security certifications.
  • A minimum of 5 years working experience in a similar role in a highly computerized environment.
  • Experience in implementing Information Security Standards such as ISO 27001, COBIT.
  • Understanding of ICT risk and systems security control processes.
  • Understanding of Information Systems Architecture and operational practices.
  • Appreciation of Audit Methodologies.
  • Experience in Windows Enterprise servers or UNIX systems.
  • Experience of working in the IT function within a banking environment will be an advantage.
  • Knowledge of cybersecurity good practices (Identity and Access Management, Data Protection, Penetration Testing etc.)

This recruitment process is fully managed by Co-operative Bank of Kenya. Please follow the following link to apply

Go to the Website

Follow Us on Social Media