-
Security Officer
1 week ago
Kenya Pipeline Company (KPC) Limited Nairobi, Kenya Full timeThe Kenya Pipeline Company Limited is a State Corporation established on 6th September, 1973 under the Companies Act (CAP 486) of the Laws of Kenya and started commercial operations in 1978. The Company is 100% owned by the Government and complies with the provisions of the State ...
-
Administration and Security Officer at
1 week ago
Refugee Consortium of Kenya Nairobi, Kenya Full timeJOB PURPOSE: · The Administration and security Officer shall coordinate security and provide coordination of logistics including travel and administration. The role will also support/assist in ensuring the smooth functioning of day-to-day operations across various functions, with ...
-
Information Security Officer at
1 week ago
Rainforest Alliance Nairobi, Kenya Full timeThe Rainforest Alliance is a growing network of people who are inspired and committed to working together to achieve our mission of conserving biodiversity and ensuring sustainable livelihoods. Through creative, pragmatic collaboration, we aim to rebalance the planet by building ...
-
Physical Security Officer
1 week ago
United Nations Office at Nairobi UNON , Nairobi, Kenya , ContractResponsibilities · Provides substantive inputs in the designing of the physical security environment and the UN's security and operational responses. · Using analytical techniques and collaborative team research, supports planning and ensure awareness of the current trends to en ...
-
Office of Staff Security
4 days ago
International Organization for Migration Nairobi, Kenya Full timeABOUT THE COMPANY · Established in 1951, IOM is the leading inter-governmental organization in the field of migration and works closely with governmental, intergovernmental and non-governmental partners. · With 162 member states, a further 9 states holding observer status and off ...
-
Chief Security Officer
1 week ago
Kenya Pipeline Company (KPC) Limited Nairobi, Kenya Full timeThe Kenya Pipeline Company Limited is a State Corporation established on 6th September, 1973 under the Companies Act (CAP 486) of the Laws of Kenya and started commercial operations in 1978. The Company is 100% owned by the Government and complies with the provisions of the State ...
-
Principal Security Officer
1 week ago
Kenya Medical Research Institute Nairobi, Kenya Full timeABOUT THE COMPANY · Kenya Medical Research Institute (KEMRI) is a State Corporation established through the Science and Technology (Amendment) Act of 1979, which has since been amended to Science, Technology and Innovation Act 2013. The 1979 Act established KEMRI as a National bo ...
-
Security Officer In-Charge at
2 hours ago
Aminika Manpower Limited Nairobi, Kenya Full timeAminika Manpower Limited is a competency-based strategic HR-consultancy. Aminika Manpower Limited (AML) is a knowledge-driven organization committed to achieving excellence in Human Capital & Business Coaching in both virtual and real circumstances. · Role Summary : · To oversee ...
-
Security Training Officer at
1 week ago
Kenya Airways Nairobi, Kenya Full timeKenya Airways, the leading African airline flying to more African destinations than any other carrier, takes pride in being at the forefront of connecting Africa to the world and the World to Africa through its hub Nairobi Jomo Kenyatta International Airport. · Summary · Organize ...
-
Senior Officer, Information Security at
2 days ago
SBM Bank Nairobi, Kenya Full timeSBM Bank Kenya is a leading and trusted financial institution with an international footprint, headquartered in Mauritius and positioned to offer an unprecedented banking experience in Kenya to niche Retail, SME and corporate clients · JOB SUMMARY: · Senior Officer, Information S ...
-
Senior Security Officer III
2 weeks ago
Technical University of Mombasa Nairobi, Kenya Full timeA university of global excellence in advancing Knowledge, science and Technology. To provide leadership and outstanding programmes by engaging in scholarly reflection, cultivating critical thinking and advancing creative problem-solving skills in the fields of engineering, the sc ...
-
Senior Information Security Officer
3 days ago
Inkomoko Nairobi, Kenya Full timeInkomoko's vision is an Africa with thriving communities where young people and refugees are engaged, communities have access to relevant innovations for self-determination, and where African solutions are unleashed to solve African problems · About the Opportunity · The Senior I ...
-
Senior Officer, Information Security
15 hours ago
SBM Bank Nairobi, Kenya Full timeABOUT THE COMPANY · Now present in Kenya, SBM Bank (Kenya) Limited reaches out to more customers' needs through its 10 branches in the country, namely 6 in Nairobi and 4 in Mombasa. Through this acquisition, SBM Group now has its footprint on the African continent. · SBM, a growi ...
-
Senior ICT Security Officer
1 week ago
Tier 1 Deposit-taking Sacco Nairobi, Kenya Full timeABOUT THE COMPANY · Tier 1 Deposit-taking Sacco with assets at 11.4 billion. · JOB SUMMARY · The Senior ICT Security role entails establishing, managing and administering of organizational ICT security, policies and procedures. He/ She will be expected to maintain healthy relatio ...
-
AKDN Regional Security Officer Africa
6 days ago
Aga Khan Foundation Nairobi, Kenya Full timeThe Aga Khan Foundation (AKF) is a private, not-for-profit international development agency, which was founded in 1967 by Prince Shah Karim Al Hussaini, Aga Khan IV. AKF seeks to provide long-term solutions to problems of poverty, hunger, illiteracy and ill health in the poorest ...
-
Kenya Institute for Public Policy Research and Analysis (KIPPRA) Nairobi, Kenya Full timeThe Kenya Institute for Public Policy Research and Analysis (KIPPRA) is an autonomous public institute that was established in May 1997 through a Legal Notice and commenced operations in June 1999. In January 2007,His Excellency the President signed the KIPPRA Bill into law and t ...
-
Nairobi City County Public Service Board Nairobi, Kenya Full timeOur mission is tp provide affordable, accessible and sustainable quality services, enhancing community participation and creating a secure climate for political,social and economic development through the commitment of a motivated and dedicated team. · Job Requirement · A Bachelo ...
-
Nairobi City County Public Service Board Nairobi, Kenya Full timeOur mission is tp provide affordable, accessible and sustainable quality services, enhancing community participation and creating a secure climate for political,social and economic development through the commitment of a motivated and dedicated team. · Job Requirement · A bachelo ...
-
Operations Director
5 days ago
Innovations for Poverty Action (IPA) Nairobi, Kenya Full timeInnovations for Poverty Action (IPA) is a non-profit organization dedicated to discovering and promoting effective solutions to global poverty problems. In close partnership with decision makers - the policymakers, practitioners, investors, and donors working with the poor around ...
-
Administrative Clerk/Chauffeur
1 week ago
U.S.A Embassy Kenya Nairobi, Kenya Full timeABOUT THE COMPANY · The USA embassy Kenya is a us government that seeks to offer services on behalf of the US government · JOB SUMMARY · EXPERIENCE: Five years of commercial driving experience with B, C, E license including one year experience driving four-wheel vehicles is requi ...
Cyber Security Officer at - Nairobi, Kenya - United Nations
Description
The United Nations is an intergovernmental organization to promote international co-operation. A replacement for the ineffective League of Nations, the organization was established on 24 October 1945Responsibilities
Within limits of delegated authority, the Cyber Security Officer will be responsible for the following duties:
Design, implement, and monitor cyber security systems of controls in place to ensure that the Organization complies with applicable UN internal regulatory and compliance requirements.
Provide guidance on designing, implementing, auditing, and conducting compliance testing activities to ensure adherence to cyber security compliance requirements.
Provide guidance in the design and implementation of applicable cyber security frameworks, and ensure its policies, processes, procedures, and controls are appropriately mapped to relevant UN internal regulatory and compliance requirements.
Continuously assess the efficiency and effectiveness of control systems, recommend necessary remediations and propose steps for improvements to ensure ongoing compliance.
Develop the organisation's vulnerability management strategy.Develop procedures for the organisation on patch and vulnerability management, including automated patch deployment, assessment procedures, and procedures for remediation.
Coordinate with appropriate teams to ensure prioritization of patching and mitigations to vulnerabilities.Contribute to the development of the organisation's cyber security strategy, policy, and procedures in consultation with senior management and legal team, as necessary.
Provide guidance in the discussions regarding existing initiatives from security, compliance, and risk perspectives.Routinely monitor and validate information security controls to ensure compliance with mandatory requirements, identify irregularities, risks, and potential weaknesses, and use this insight to develop and implement best practices and process improvements for the organisation's information systems.
Develop monitoring methods to track and evaluate compliance efforts, e.g., dashboards.Participate in review of the cyber security programmes in collaboration with risk and governance and provide advice to ensure their alignment with organisational requirements.
Provide security guidance and advice to users and ICT specialists to ensure the cyber security of the organisation and achieve compliance.
Coordinate with external security auditors and penetration testers to verify security of information systems and to identify and remedy vulnerabilities.
Act as the main focal point for the coordination of required activities to address security vulnerabilities.Prepare concise reports based on penetration test outcomes to communicate remediation recommendations to relevant stakeholders.
Train staff on security processes and procedures and actively participate in the security response process.
Monitor compliance of identity and access management (IAM) with access control policy and relevant technical procedures.
Keep abreast of the current and emerging security issues, risks, threats, vulnerabilities, and advancements in cyber security techniques and technologies.
RequirementsCompetencies
PROFESSIONALISM:
Knowledge in cyber security management controls including cyber security policies, standards, and processes. Knowledge of cyber security industry standards, methodologies and frameworks, and ability to adapt and integrate subsequent changes. Knowledge of current and emerging cyber security threat landscape, attack methodologies, tools, technologies, and mitigation / remediation methods. Skill in designing and implementing a cyber security strategy. Analytical thinking skills. Ability to design and implement risk management processes.
Takes responsibility for incorporating gender perspectives and ensuring the equal participation of women and men in all areas of work.
Shows pride in work and in achievements; Demonstrates professional competence and mastery of subject matter; Is conscientious and efficient in meeting commitments, observing deadlines, and achieving results; Is motivated by professional rather than personal concerns; Shows persistence when faced with difficult problems or challenges; Remains calm in stressful situations.
PLANNING AND ORGANIZING:
Develops clear goals that are consistent with agreed strategies. Identifies priority activities and assignments; Adjusts priorities as required. Allocates appropriate amount of time and resources for completing work. Foresees risks and allows for contingencies when planning. Monitors and adjusts plans and actions as necessary. Uses time efficiently.
CLIENT ORIENTATION:
Considers all those to whom services are provided to be "clients" and seeks to see things from clients' point of view.
Establishes and maintains productive partnerships with clients by gaining their trust and respect. Identifies clients' needs and matches them to appropriate solutions. Monitors ongoing developments inside and outside the clients' environment to keep informed and anticipate problems. Keeps clients informed of progress or setbacks in projects. Meets timeline for delivery of products or services to client.Education
Advanced university degree (Master's degree or equivalent degree) in computer science, information systems, mathematics, statistics, information security, cyber security, or a related field.
A first-level university degree in combination with two additional years of qualifying experience may be accepted in lieu of the advanced university degree.
Successful completion of both degree and non-degree programs in data analytics, business analytics or data science programs is desirable.Job - Specific Qualification
An active certificate in Information Security (e.g., CISM, CISSP) or equivalent is desirable and may be accepted as substantiation of candidates' proficiency in the requisite knowledge, skills, and abilities for this position.
Work ExperienceA minimum of seven years of progressively responsible experience using knowledge and skills indicated below with the phrase is required should be evident in the employment details in the application.
Use of knowledge in cyber management control including cyber security policies, standards and processes are required.Use of knowledge of cyber security industry standards, methodology and frameworks, and ability to adapt and integrate subsequent changes is required.
Use of skill in designing and implementing a cyber security strategy is desirable. 1 year or more of experience in data analytics or related area is desirable.Languages
English and French are the working languages of the United Nations Secretariat. For the position advertised, fluency in English is required. Knowledge of another official United Nations language is desirable.
NOTE:
"fluency equals a rating of "fluent" in all four areas (read, write, speak, understand) and " Knowledge of" equals a rating of " confident" in two of the four areas.