-
Information Security Officer at
6 days ago
Rainforest Alliance Nairobi, Kenya Full timeThe Rainforest Alliance is a growing network of people who are inspired and committed to working together to achieve our mission of conserving biodiversity and ensuring sustainable livelihoods. Through creative, pragmatic collaboration, we aim to rebalance the planet by building ...
-
Senior Information Security Officer
15 hours ago
Inkomoko Nairobi, Kenya Full timeInkomoko's vision is an Africa with thriving communities where young people and refugees are engaged, communities have access to relevant innovations for self-determination, and where African solutions are unleashed to solve African problems · About the Opportunity · The Senior I ...
-
Associate Information Security Engineer at
4 days ago
M-KOPA Solar Nairobi, Kenya Full timeM-KOPA's mission is to make high quality energy affordable to everyone. OUR GROWTH SO FAR... M-KOPA has connected more than 400,000 homes in Kenya,Tanzania and Uganda to solar power with over 550 new homes being added every day. · Summary · As an Associate Engineer, you will be m ...
-
Application Security Specialist
5 days ago
KCB Group Nairobi, Kenya Full timeABOUT THE COMPANY · KCB Bank Group is East and Central Africa's oldest and largest commercial banking and has through its history set new records becoming the No.1 Bank in the region. · JOB SUMMARY · Particulars Detail Specific Field or QualificationEducationBachelor's Degree BSc ...
-
Cyber Security Analyst at
2 days ago
Frank Management Consult Ltd Nairobi, Kenya Full timeFrank Management Consult Ltd is an international management consulting agency. We work with major companies, raising their performance, driving their strategies and enhancing their productivity. · Summmary · The Cyber Security Analyst will be primarily responsible for the design, ...
-
Senior Systems Security Analyst
1 week ago
Kenya Power Nairobi, Kenya Full timeABOUT THE COMPANY · Kenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 2.6 million customers (as at April The Company's key mandate is to plan for sufficient electricity generation and transmissi ...
-
Lead, Security Technology Roadmap
1 day ago
Equity Bank Kenya Nairobi, Kenya Full timeABOUT THE COMPANY · Equity Bank Kenya Limited, is a financial services provider headquartered in Nairobi, Kenya. It is licensed as a commercial bank, by the Central Bank of Kenya, the central bank and national banking regulator. · JOB SUMMARY · Qualifications Knowledge and Experi ...
-
Senior Systems Security Analyst
2 days ago
Kenya Power Nairobi, Kenya Full timeKenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 4.8 million customers (as at June 29, The Company's key mandate is to plan for sufficient electricity generation and transmission capacity to me ...
-
Systems Security Analyst IV
2 days ago
Kenya Power Nairobi, Kenya Full timeKenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 4.8 million customers (as at June 29, The Company's key mandate is to plan for sufficient electricity generation and transmission capacity to me ...
-
Deputy Director System Security at
4 days ago
Nairobi City County Public Service Board Nairobi, Kenya Full timeOur mission is tp provide affordable, accessible and sustainable quality services, enhancing community participation and creating a secure climate for political,social and economic development through the commitment of a motivated and dedicated team. · Job Requirement · Bachelor' ...
-
Senior Manager, Security Governance
1 day ago
Equity Bank Kenya Nairobi, Kenya Full timeABOUT THE COMPANY · Equity Bank Kenya Limited, is a financial services provider headquartered in Nairobi, Kenya. It is licensed as a commercial bank, by the Central Bank of Kenya, the central bank and national banking regulator. · JOB SUMMARY · Minimum Requirements:Education:Mini ...
-
Systems Security Analyst I at
2 days ago
Kenya Power Nairobi, Kenya Full timeKenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 4.8 million customers (as at June 29, The Company's key mandate is to plan for sufficient electricity generation and transmission capacity to me ...
-
Senior ICT Security Officer
1 week ago
Tier 1 Deposit-taking Sacco Nairobi, Kenya Full timeABOUT THE COMPANY · Tier 1 Deposit-taking Sacco with assets at 11.4 billion. · JOB SUMMARY · The Senior ICT Security role entails establishing, managing and administering of organizational ICT security, policies and procedures. He/ She will be expected to maintain healthy relatio ...
-
CISOC Analyst
4 days ago
KCB Group Nairobi, Kenya Full timeABOUT THE COMPANY · KCB Bank Group is East and Central Africa's oldest and largest commercial banking and has through its history set new records becoming the No.1 Bank in the region. · JOB SUMMARY · The PersonFor the above position, the successful applicant should have the follo ...
-
Senior Manager, Security Governance
1 day ago
Equity Bank Kenya Nairobi, Kenya Full timeABOUT THE COMPANY · Equity Bank Kenya Limited, is a financial services provider headquartered in Nairobi, Kenya. It is licensed as a commercial bank, by the Central Bank of Kenya, the central bank and national banking regulator. · JOB SUMMARY · Mission/ Core purpose of the Job: T ...
-
Security Operations Center Analyst at
5 days ago
Nathan Digital Nairobi, Kenya Full timeFounded in 2020, Nathan Digital is a premiere software company in Dubai additionally based in six countries around the world. We provide a radical shift for businesses looking to elevate their operations. · Summary · We are seeking a diligent and proactive SOC Analyst to join our ...
-
CISOC Analyst
1 week ago
KCB Group Nairobi, Kenya Full timeABOUT THE COMPANY · KCB Bank Group is East and Central Africa's oldest and largest commercial banking and has through its history set new records becoming the No.1 Bank in the region. · JOB SUMMARY · The PersonFor the above position, the successful applicant should have the follo ...
-
Principal Security Analyst at
2 days ago
Kenya Power Nairobi, Kenya Full timeKenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 4.8 million customers (as at June 29, The Company's key mandate is to plan for sufficient electricity generation and transmission capacity to me ...
-
Safaricom Kenya Nairobi, Kenya Full timeSafaricom is the leading provider of converged communication solutions in Kenya. In addition to providing a broad range of first-class products and services for Telephony, Broadband Internet and Financial services, Safaricom seeks to uplift the welfare of Kenyans through value-ad ...
-
Product Security Architect-GIS
5 days ago
Equity Bank Kenya Nairobi, Kenya Full timeABOUT THE COMPANY · Equity Bank Kenya Limited, is a financial services provider headquartered in Nairobi, Kenya. It is licensed as a commercial bank, by the Central Bank of Kenya, the central bank and national banking regulator. · JOB SUMMARY · The Product Security Architect will ...
Director, Global Information Security - Nairobi, Kenya - Global Communities
Description
Global Communities is an international non-profit organization that works closely with communities worldwide to bring about sustainable changes that improve the lives and livelihoods of the vulnerable.
We envision a world where everyone has the freedom, means and ability to live and prosper with dignity.Summary
The Director, Information Security is a hands-on leadership role responsible for advancing, improving, and managing Global Communities digital protection and cybersecurity program across all offices worldwide.
The Director, Information Security ensures all information systems are functioning in accordance with established security policies and procedures. S/he oversees IT risk evaluations, audits, and security incident investigations.
The Director, Information Security Director provides strong and clear guidance, advice, and recommendations to the Chief Information Officer and other key Global Communities' staff on risk management, digital protection, and cyber security.
S/he actively contributes to the development and implementation of a comprehensive information security strategy, including ongoing collaboration with data protection counsel.
ResponsibilitiesDevelops and implements multi-year strategic plans to enhance information security maturity across the organization. Aligns plans with business goals, risk tolerance, and emerging cybersecurity trends.
Develops, maintains, and continuously improves information security frameworks, governing policies, standards, and procedures. Ensure alignment with industry best practices and evolving organizational needs.
Collaborates with internal data protection counsel to ensure compliance with global data protection regulations, including the GDPR. Leads the development and implementation of a comprehensive data protection and privacy program.
Collaborate with regional teams to ensure the effective execution of security measures aligned with company policies and local regulations.
Directs and approves the designing of security architecture and systems.Leads information security operations, including managing managed security service provider(s), incident response, impact analysis, remediation, and prevention activities.
Manages IT control policies for the organization.
Provide hands-on oversight of the implementation and maintenance of controls outlined in CIS Controls and NIST SP 800-53, adapting strategies to regional and global requirements.
Conducts hands-on risk assessments and audits to ensure ongoing compliance.Reviews vulnerability and event detection plans, reports risks and follows-up with IT teams, as necessary.
Schedules periodic security audits, including coordination and participation. Leads and ensures execution of remediation plan[s].
Leads the evaluation and mitigation of internal/external threat prevention.
Acts as the subject matter expert responding to cybersecurity questions and concerns from staff, partners, and donors.
Communicates security policies, standards, procedures, and best practices across the organization.
Leads the development and maintenance of a global incident response plan, actively coordinating efforts in the event of a security incident.
Conduct hands-on post-incident reviews and implement remediation plans globally.Reports regularly to the Chief Information Officer and other key stakeholders as required on the status of the digital protection and cybersecurity program, including metrics, risks, and remediation actions.
Provides coaching and mentoring to direct reports as well as others within the global IT team.Coordinates with internal and external stakeholders on information security governance and compliance.
Manages information security program budget within annual plan.
Designs and executes IT supplier assessments and due diligence to ensure compliance with Global Communities contractual/legal obligations and information security policies and procedures.
Conducts periodic testing of cybersecurity defenses using tooling, "red team" exercises or other well-recognized testing mechanisms and provides areas of improvements.
Develops and delivers hands-on global training programs to educate employees on security best practices and data protection requirements.Collaborates with regional teams, procurement, and legal to assess and manage the security risks associated with third-party vendors globally.
Provides hands-on leadership of a global information security team, actively participating in strategic planning and providing direct support to regional security leads.
Foster a collaborative and inclusive global team culture.POSITION SPECIAL RESPONSIBILITIES:
Supervise a unit of at least two employees in accordance with the organization's policies and applicable laws.
Responsibilities include servant and inclusive leading, coaching, mentoring, assigning, and directing work; interviewing, hiring, and training employees; appraising performance; rewarding and disciplining employees; addressing complaints by providing solutions.
Expected to travel on behalf of organization up to 15% annually in support of technology audits, projects, and/or initiatives.
QualificationsUndergraduate degree in a related discipline and a minimum of eight years of related work experience or a minimum of 12 years of related work experience.
Degree in computer science, Information Technology, Information Systems, Cybersecurity, or related field, or equivalent cybersecurity experience.Certified Information Systems Security Professional (CISSP) or equivalent certification.
Proven ability to manage multiple concurrent engagements with shifting priorities, demands, and timelines.
Minimum 7 to 8 years' experience in digital protection and cybersecurity role(s).
Minimum 3 to 5 years' experience in leading global digital protection and cybersecurity programs, including staff management and IT project management.
Strong understanding of cybersecurity principles, risk management, and regulatory requirements in various countries.Experience assessing IT security risks, designing practical action plans, and exposure to IT service management processes and tools.
Familiarity with industry standards such as ITIL, CIS Controls, ISO 27001, and NIST SP
Exceptional planning, organizational, problem-solving, analytical, interpersonal, decision-making, oral, and written communication skills.
Knowledge of servant and inclusive leadership philosophies and practical application in a geographically dispersed team context.
Evidence of successful operation in organizations with global, regional, and country-based staff.
Capacity to build and maintain excellent relations, work effectively in a multicultural environment, and respect diversity.
Strong personal, organizational, and self-management skills, with an ability to lead teams and motivate others.
Second language is a plus.
Experience working in an international development nonprofit/NGO environment preferred.
Knowledge of the NGO Reference Model preferred.