Jobs
>
Nairobi

    Director, Global Information Security - Nairobi, Kenya - Global Communities

    Global Communities
    Global Communities Nairobi, Kenya

    2 weeks ago

    Default job background
    Full time
    Description

    Global Communities is an international non-profit organization that works closely with communities worldwide to bring about sustainable changes that improve the lives and livelihoods of the vulnerable.

    We envision a world where everyone has the freedom, means and ability to live and prosper with dignity.
    Summary


    The Director, Information Security is a hands-on leadership role responsible for advancing, improving, and managing Global Communities digital protection and cybersecurity program across all offices worldwide.

    This includes the appropriate framework(s), architecture, internal/external threat prevention and information security operations. S/he oversees the development, implementation and enforcement of information security policies, standards, and procedures.
    The Director, Information Security ensures all information systems are functioning in accordance with established security policies and procedures. S/he oversees IT risk evaluations, audits, and security incident investigations.

    The Director, Information Security Director provides strong and clear guidance, advice, and recommendations to the Chief Information Officer and other key Global Communities' staff on risk management, digital protection, and cyber security.

    S/he actively contributes to the development and implementation of a comprehensive information security strategy, including ongoing collaboration with data protection counsel.

    Responsibilities

    Develops and implements multi-year strategic plans to enhance information security maturity across the organization. Aligns plans with business goals, risk tolerance, and emerging cybersecurity trends.
    Develops, maintains, and continuously improves information security frameworks, governing policies, standards, and procedures. Ensure alignment with industry best practices and evolving organizational needs.
    Collaborates with internal data protection counsel to ensure compliance with global data protection regulations, including the GDPR. Leads the development and implementation of a comprehensive data protection and privacy program.

    Collaborate with regional teams to ensure the effective execution of security measures aligned with company policies and local regulations.

    Directs and approves the designing of security architecture and systems.
    Leads information security operations, including managing managed security service provider(s), incident response, impact analysis, remediation, and prevention activities.
    Manages IT control policies for the organization.

    Provide hands-on oversight of the implementation and maintenance of controls outlined in CIS Controls and NIST SP 800-53, adapting strategies to regional and global requirements.

    Conducts hands-on risk assessments and audits to ensure ongoing compliance.
    Reviews vulnerability and event detection plans, reports risks and follows-up with IT teams, as necessary.
    Schedules periodic security audits, including coordination and participation. Leads and ensures execution of remediation plan[s].
    Leads the evaluation and mitigation of internal/external threat prevention.
    Acts as the subject matter expert responding to cybersecurity questions and concerns from staff, partners, and donors.
    Communicates security policies, standards, procedures, and best practices across the organization.

    Leads the development and maintenance of a global incident response plan, actively coordinating efforts in the event of a security incident.

    Conduct hands-on post-incident reviews and implement remediation plans globally.

    Reports regularly to the Chief Information Officer and other key stakeholders as required on the status of the digital protection and cybersecurity program, including metrics, risks, and remediation actions.

    Provides coaching and mentoring to direct reports as well as others within the global IT team.
    Coordinates with internal and external stakeholders on information security governance and compliance.
    Manages information security program budget within annual plan.

    Designs and executes IT supplier assessments and due diligence to ensure compliance with Global Communities contractual/legal obligations and information security policies and procedures.

    Conducts periodic testing of cybersecurity defenses using tooling, "red team" exercises or other well-recognized testing mechanisms and provides areas of improvements.

    Develops and delivers hands-on global training programs to educate employees on security best practices and data protection requirements.

    Collaborates with regional teams, procurement, and legal to assess and manage the security risks associated with third-party vendors globally.

    Provides hands-on leadership of a global information security team, actively participating in strategic planning and providing direct support to regional security leads.

    Foster a collaborative and inclusive global team culture.


    POSITION SPECIAL RESPONSIBILITIES:
    Supervise a unit of at least two employees in accordance with the organization's policies and applicable laws.

    Responsibilities include servant and inclusive leading, coaching, mentoring, assigning, and directing work; interviewing, hiring, and training employees; appraising performance; rewarding and disciplining employees; addressing complaints by providing solutions.

    Expected to travel on behalf of organization up to 15% annually in support of technology audits, projects, and/or initiatives.

    Qualifications

    Undergraduate degree in a related discipline and a minimum of eight years of related work experience or a minimum of 12 years of related work experience.

    Degree in computer science, Information Technology, Information Systems, Cybersecurity, or related field, or equivalent cybersecurity experience.
    Certified Information Systems Security Professional (CISSP) or equivalent certification.
    Proven ability to manage multiple concurrent engagements with shifting priorities, demands, and timelines.
    Minimum 7 to 8 years' experience in digital protection and cybersecurity role(s).

    Minimum 3 to 5 years' experience in leading global digital protection and cybersecurity programs, including staff management and IT project management.

    Strong understanding of cybersecurity principles, risk management, and regulatory requirements in various countries.
    Experience assessing IT security risks, designing practical action plans, and exposure to IT service management processes and tools.
    Familiarity with industry standards such as ITIL, CIS Controls, ISO 27001, and NIST SP
    Exceptional planning, organizational, problem-solving, analytical, interpersonal, decision-making, oral, and written communication skills.
    Knowledge of servant and inclusive leadership philosophies and practical application in a geographically dispersed team context.
    Evidence of successful operation in organizations with global, regional, and country-based staff.
    Capacity to build and maintain excellent relations, work effectively in a multicultural environment, and respect diversity.
    Strong personal, organizational, and self-management skills, with an ability to lead teams and motivate others.
    Second language is a plus.
    Experience working in an international development nonprofit/NGO environment preferred.
    Knowledge of the NGO Reference Model preferred.
  • Rainforest Alliance

    Information Security Officer at

    6 days ago

    Rainforest Alliance Nairobi, Kenya Full time

    The Rainforest Alliance is a growing network of people who are inspired and committed to working together to achieve our mission of conserving biodiversity and ensuring sustainable livelihoods. Through creative, pragmatic collaboration, we aim to rebalance the planet by building ...

  • Inkomoko

    Senior Information Security Officer

    15 hours ago

    Inkomoko Nairobi, Kenya Full time

    Inkomoko's vision is an Africa with thriving communities where young people and refugees are engaged, communities have access to relevant innovations for self-determination, and where African solutions are unleashed to solve African problems · About the Opportunity · The Senior I ...

  • M-KOPA Solar

    Associate Information Security Engineer at

    4 days ago

    M-KOPA Solar Nairobi, Kenya Full time

    M-KOPA's mission is to make high quality energy affordable to everyone. OUR GROWTH SO FAR... M-KOPA has connected more than 400,000 homes in Kenya,Tanzania and Uganda to solar power with over 550 new homes being added every day. · Summary · As an Associate Engineer, you will be m ...

  • KCB Group

    Application Security Specialist

    5 days ago

    KCB Group Nairobi, Kenya Full time

    ABOUT THE COMPANY · KCB Bank Group is East and Central Africa's oldest and largest commercial banking and has through its history set new records becoming the No.1 Bank in the region. · JOB SUMMARY · Particulars Detail Specific Field or QualificationEducationBachelor's Degree BSc ...

  • Frank Management Consult Ltd

    Cyber Security Analyst at

    2 days ago

    Frank Management Consult Ltd Nairobi, Kenya Full time

    Frank Management Consult Ltd is an international management consulting agency. We work with major companies, raising their performance, driving their strategies and enhancing their productivity. · Summmary · The Cyber Security Analyst will be primarily responsible for the design, ...

  • Kenya Power

    Senior Systems Security Analyst

    1 week ago

    Kenya Power Nairobi, Kenya Full time

    ABOUT THE COMPANY · Kenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 2.6 million customers (as at April The Company's key mandate is to plan for sufficient electricity generation and transmissi ...

  • Equity Bank Kenya

    Lead, Security Technology Roadmap

    1 day ago

    Equity Bank Kenya Nairobi, Kenya Full time

    ABOUT THE COMPANY · Equity Bank Kenya Limited, is a financial services provider headquartered in Nairobi, Kenya. It is licensed as a commercial bank, by the Central Bank of Kenya, the central bank and national banking regulator. · JOB SUMMARY · Qualifications Knowledge and Experi ...

  • Kenya Power

    Senior Systems Security Analyst

    2 days ago

    Kenya Power Nairobi, Kenya Full time

    Kenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 4.8 million customers (as at June 29, The Company's key mandate is to plan for sufficient electricity generation and transmission capacity to me ...

  • Kenya Power

    Systems Security Analyst IV

    2 days ago

    Kenya Power Nairobi, Kenya Full time

    Kenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 4.8 million customers (as at June 29, The Company's key mandate is to plan for sufficient electricity generation and transmission capacity to me ...

  • Nairobi City County Public Service Board

    Deputy Director System Security at

    4 days ago

    Nairobi City County Public Service Board Nairobi, Kenya Full time

    Our mission is tp provide affordable, accessible and sustainable quality services, enhancing community participation and creating a secure climate for political,social and economic development through the commitment of a motivated and dedicated team. · Job Requirement · Bachelor' ...

  • Equity Bank Kenya

    Senior Manager, Security Governance

    1 day ago

    Equity Bank Kenya Nairobi, Kenya Full time

    ABOUT THE COMPANY · Equity Bank Kenya Limited, is a financial services provider headquartered in Nairobi, Kenya. It is licensed as a commercial bank, by the Central Bank of Kenya, the central bank and national banking regulator. · JOB SUMMARY · Minimum Requirements:Education:Mini ...

  • Kenya Power

    Systems Security Analyst I at

    2 days ago

    Kenya Power Nairobi, Kenya Full time

    Kenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 4.8 million customers (as at June 29, The Company's key mandate is to plan for sufficient electricity generation and transmission capacity to me ...

  • Tier 1 Deposit-taking Sacco

    Senior ICT Security Officer

    1 week ago

    Tier 1 Deposit-taking Sacco Nairobi, Kenya Full time

    ABOUT THE COMPANY · Tier 1 Deposit-taking Sacco with assets at 11.4 billion. · JOB SUMMARY · The Senior ICT Security role entails establishing, managing and administering of organizational ICT security, policies and procedures. He/ She will be expected to maintain healthy relatio ...

  • KCB Group

    CISOC Analyst

    4 days ago

    KCB Group Nairobi, Kenya Full time

    ABOUT THE COMPANY · KCB Bank Group is East and Central Africa's oldest and largest commercial banking and has through its history set new records becoming the No.1 Bank in the region. · JOB SUMMARY · The PersonFor the above position, the successful applicant should have the follo ...

  • Equity Bank Kenya

    Senior Manager, Security Governance

    1 day ago

    Equity Bank Kenya Nairobi, Kenya Full time

    ABOUT THE COMPANY · Equity Bank Kenya Limited, is a financial services provider headquartered in Nairobi, Kenya. It is licensed as a commercial bank, by the Central Bank of Kenya, the central bank and national banking regulator. · JOB SUMMARY · Mission/ Core purpose of the Job: T ...

  • Nathan Digital

    Security Operations Center Analyst at

    5 days ago

    Nathan Digital Nairobi, Kenya Full time

    Founded in 2020, Nathan Digital is a premiere software company in Dubai additionally based in six countries around the world. We provide a radical shift for businesses looking to elevate their operations. · Summary · We are seeking a diligent and proactive SOC Analyst to join our ...

  • KCB Group

    CISOC Analyst

    1 week ago

    KCB Group Nairobi, Kenya Full time

    ABOUT THE COMPANY · KCB Bank Group is East and Central Africa's oldest and largest commercial banking and has through its history set new records becoming the No.1 Bank in the region. · JOB SUMMARY · The PersonFor the above position, the successful applicant should have the follo ...

  • Kenya Power

    Principal Security Analyst at

    2 days ago

    Kenya Power Nairobi, Kenya Full time

    Kenya Power owns and operates most of the electricity transmission and distribution system in the country and sells electricity to over 4.8 million customers (as at June 29, The Company's key mandate is to plan for sufficient electricity generation and transmission capacity to me ...

  • Safaricom Kenya

    Senior Manager Governance, Risk and Compliance at

    1 week ago

    Safaricom Kenya Nairobi, Kenya Full time

    Safaricom is the leading provider of converged communication solutions in Kenya. In addition to providing a broad range of first-class products and services for Telephony, Broadband Internet and Financial services, Safaricom seeks to uplift the welfare of Kenyans through value-ad ...

  • Equity Bank Kenya

    Product Security Architect-GIS

    5 days ago

    Equity Bank Kenya Nairobi, Kenya Full time

    ABOUT THE COMPANY · Equity Bank Kenya Limited, is a financial services provider headquartered in Nairobi, Kenya. It is licensed as a commercial bank, by the Central Bank of Kenya, the central bank and national banking regulator. · JOB SUMMARY · The Product Security Architect will ...