2,288 Cissp jobs in Kenya

• Designing, implementing, and maintaining network security infrastructure, including firewalls, VPNs, IDS/IPS, and web application firewalls (WAFs).
• Developing and deploying security tools and technologies to protect endpoints, servers, and cloud environments.
• Automating security processes and workflows using scripting languages (e.g., Python, PowerShell).
• Conducting regular security audits, penetration testing, and vulnerability assessments to identify and remediate risks.
• Monitoring security alerts and logs, and responding promptly to security incidents.
• Collaborating with system administrators and developers to ensure security best practices are integrated into system design and deployment.
• Developing and enforcing security policies and procedures.
• Participating in security architecture reviews and providing recommendations for improvement.
• Managing security awareness programs and providing technical guidance to other IT staff.
• Staying current with emerging security threats, vulnerabilities, and defensive technologies.
• Ensuring compliance with relevant security regulations and standards.

• Bachelor's degree in Computer Science, Engineering, Information Security, or a related field.
• Minimum of 4 years of hands-on experience in information security engineering or a similar role.
• Strong understanding of network protocols, operating systems (Windows, Linux), and cloud security principles (AWS, Azure, GCP).
• Proficiency in configuring and managing various security technologies such as firewalls (Palo Alto, Cisco), SIEM (Splunk, ELK), EDR (CrowdStrike, SentinelOne), and vulnerability management tools.
• Experience with scripting and automation for security tasks.
• Knowledge of security frameworks like NIST Cybersecurity Framework and ISO 27001.
• Excellent problem-solving and analytical skills.
• Strong communication and teamwork abilities, essential for a remote environment.
• Relevant security certifications (e.g., CompTIA Security+, CISSP, CCNA Security) are a significant advantage.
• Proven ability to work independently and manage time effectively in a remote setting.

Job Role: Information Security Engineer

Exp Required: Atleast 3+ Years of relevant work experience as Information Security engineer

Job type: Full time - Permanent

Job Location: Nairobi, Kenya

***KINDLY DO NOT APPLY IF YOU HAVE LESS THAN 3+ YEARS OF RELEVANT WORK EXPERIENCE IN INFORMATION SECURITY ENGINEER ROLE ***

***KINDLY DO NOT APPLY IF YOU ARE A NON KENYAN CITIZEN***ONLY KENYA CITIZENS WILL BE PREFERRED/CONSIDERED***

Job Summary:

Roles and responsibilities:

Security Architecture & Design

Develop, document, and maintain the enterprise security architecture, ensuring alignment with business goals and IT strategy.

Design security controlsand solutions for infrastructure, applications, networks, and cloud environments.

Evaluate new technologies and recommend secure integration into existing systems.

Implementation & Operations

Configure, deploy, and maintain securitytools (e.g., firewalls, IDS/IPS, SIEM, endpoint protection, vulnerability management).

Lead security configurations for servers, databases, applications, and network devices. Conduct regular vulnerability assessments, penetration testing, and remediation activities.

Governance, Risk, and Compliance

Assist in the development and enforcement of IT security policies, standards, and procedures.

Ensure compliance with applicable regulatory requirements (e.g., GDPR, PCI DSS, ISO 27001, Data Protection Act).

Support risk assessments and the creationof mitigation plans. Prepares the Governance, Risk, and Compliance reports

Incident Response & Monitoring

Act as a key technicallead in the detection, response, and recovery from security incidents.

Maintain and improvethe incident responseplaybook in collaboration with the outsourced CISO.

Conduct post-incident analysis to strengthen defences.

Collaboration & Reporting

Work closely with the outsourced CISO to align on security strategy and initiatives. Provide security status updates, risk assessments, and recommendations to the CIO. Partner with IT operations, development teams, and business units to embed security in all projects.

Qualifications:

• Bachelor's degreein Computer Science,Information Technology, Cybersecurity, or related field. Security certifications preferred (e.g., CISSP, CISM, CEH, CompTIA Security+, CCSP).
• Atleast 3+ years of relevant work experience as information security roles, with strong exposure to security architecture or engineering.
• Hands-on experience with security technologies (firewalls, SIEM, endpoint security, vulnerability scanners).
• Knowledge of cloud security (AWS, Azu1'e), network security, and application security best practices.
• Proven track record of working within a governance and compliance framework. Skills:
• Strong analytical, problem-solving, and troubleshooting skills. Excellent communication and documentation abilities.
• Ability to work independently and collaboratively in a hybrid oversight model.
• Technical depth in cybersecurity tools and architecture design.
• Strong understanding of IT infrastructure and software development lifecycle. Risk-based decision-making.
• Business acumen with the ability to balance security with operational needs.
• Strong communication skills
• We are looking for people who can join immediately to 30 days of notice period

Technical Skills Required: (Mandatory)

• Atleast 3+ years of relevant work experience in information security, with strong exposure to security architecture or engineering.
• Atleast 3+ Years of relevant work experience in information security roles with strong exposure to security architecture or engineering.
• Atleast 3+ Years of relevant work experience with security technologies (firewalls, SIEM, endpoint security, vulnerability scanners).
• Knowledge of cloud security (AWS, Azure), network security, and application security best practices.
• Technical depth in cybersecurity tools and architecture design.
• Strong understanding of IT infrastructure and software development lifecycle

Note:

This is a permanent full time role

Interested candidates can share your updated resume to with the below details

Name -

Tot Exp -

Rel years of wok exp as Internet Security Engineer (IT) -

Rel years of work exp in Information Security Engineering -

Rel years of work exp in Information security -

Rel years of work exp in security architecture or engineering -

Rel years of work exp in security technologies (firewalls, SIEM, endpoint security, vulnerability scanners) -

Rel years of work exp in cloud security (AWS, Azure) -

Rel years of work exp in network security -

Rel years of work exp in application security -

Rel years of work exp in cybersecurity tools -

Rel years of work exp in IT infrastructure-

Rel years of work exp in software development lifecycle -

Rel years of work exp in architecture design -

Notice period (in days) -

Current location -

Mob No -

Email id -

Current salary (in per month Kenyan Shillings) -

Expected salary ECTC (In per month Kenyan Shillings) -

Any offers on hand -

Certification if any -

Reason for leaving or job change -

Nationality -

Kenya ID No/PR ID No -

Date of Birth -

WHY INDSAFRI:

We believe anything is possible We humans have the potential to create and build anything we can imagine. we have walked the entire planet, climbed the greatest mountains, sailed once infinite oceans, inspired by birds we decided to fly, in our once impossible quest for space, now we even float in the outer space. Everything started with a simple belief that something is possible, from simple beginnings, we have come a long way, to building technology that is indistinguishable from magic. And we believe that technology is at its best when it can make people smile. If we do it with all our passion & intelligence, together nothing is impossible. How do we do it? In the future, every business will be a technology company, & the future is now. From food to finance every business is rapidly transforming & embracing cutting-edge technology at its core & good humanistic design at its heart. Indsafri can transform your business for growth, as we have done for numerous organizations big and small, by working as your trusted technology partner and bringing our deep industry experience. If you have a challenging business problem we believe there is always a solution, with the right process, talents & technology anything is possible. The Impact we create: We work with some of the Best Organizations around the world, with a distributed global network of Partners & Talents, using state-of-the-art cutting-edge Technology & High-end Human-Centered Design.

Website

• Designing, implementing, and maintaining security infrastructure, including firewalls, IDS/IPS, VPNs, and endpoint protection solutions.
• Conducting regular vulnerability assessments and penetration testing to identify and mitigate security risks.
• Developing and executing incident response plans, and leading the investigation and remediation of security breaches.
• Implementing and managing security monitoring tools and Security Information and Event Management (SIEM) systems.
• Developing and enforcing security policies, standards, and procedures.
• Providing security awareness training to employees.
• Collaborating with IT teams to ensure security best practices are integrated into all systems and applications.
• Staying up-to-date with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
• Evaluating and recommending new security technologies and solutions.
• Managing security-related projects and initiatives from inception to completion.

• Design, implement, and maintain enterprise-level information security systems and controls.
• Develop and enforce security policies, standards, and procedures.
• Lead and manage security incident response activities, including investigation and remediation.
• Conduct regular security assessments, vulnerability scans, and penetration tests.
• Implement and manage security monitoring tools (SIEM, IDS/IPS).
• Develop and deliver security awareness training programs for employees.
• Evaluate and recommend new security technologies and solutions.
• Collaborate with IT and development teams to ensure security is integrated into the system lifecycle.
• Stay abreast of the latest cybersecurity threats, vulnerabilities, and trends.
• Provide expert guidance and technical leadership on security matters.
• Manage relationships with third-party security vendors.
• Ensure compliance with relevant regulations and industry standards.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 8 years of progressive experience in information security.
• Proven expertise in network security, application security, cloud security, and data protection.
• Hands-on experience with SIEM, EDR, firewalls, vulnerability management, and incident response tools.
• Strong understanding of security frameworks such as NIST, ISO 27001, and GDPR.
• Excellent analytical and problem-solving skills, with a keen eye for detail.
• Strong leadership and mentoring abilities.
• Effective communication and interpersonal skills, capable of explaining complex security concepts.
• Ability to work independently and collaboratively in a fully remote setting.
• Relevant security certifications such as CISSP, CISM, or GIAC are highly desirable.
• Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus.

• Designing, implementing, and managing security solutions, including firewalls, intrusion prevention systems (IPS), VPNs, and endpoint security.
• Developing and enforcing security policies, standards, and procedures.
• Conducting security architecture reviews and providing recommendations for improvement.
• Managing and monitoring security infrastructure, ensuring optimal performance and availability.
• Performing vulnerability assessments and penetration testing to identify and remediate security gaps.
• Responding to and investigating security incidents, developing effective containment and eradication strategies.
• Staying up-to-date with the latest cybersecurity threats, vulnerabilities, and technologies.
• Collaborating with IT and development teams to integrate security best practices into system design and deployment.
• Automating security tasks and processes where possible.
• Contributing to the development and maintenance of disaster recovery and business continuity plans.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent practical experience.
• Minimum of 5-7 years of experience in information security engineering or a related security role.
• Proven expertise in network security, system security, and cloud security (AWS, Azure, GCP).
• Strong knowledge of security protocols, cryptography, and access control mechanisms.
• Experience with security tools such as SIEM, IDS/IPS, vulnerability scanners, and firewalls.
• Proficiency in scripting languages (e.g., Python, PowerShell) for automation.
• Relevant security certifications such as CISSP, CCSP, or GIAC are highly desirable.
• Excellent problem-solving and analytical skills.
• Strong communication and teamwork abilities, especially within a remote setting.
• Ability to work independently, prioritize tasks, and manage time effectively in a remote environment.

• Architecting and deploying scalable and resilient security systems, including firewalls, intrusion detection/prevention systems, and VPNs.
• Developing and enforcing security policies, standards, and procedures across the organization.
• Leading incident response efforts, conducting root cause analysis, and implementing corrective actions.
• Performing vulnerability assessments and recommending remediation strategies.
• Managing security awareness training programs for employees.
• Evaluating and recommending new security technologies and solutions.
• Ensuring compliance with relevant data protection regulations and standards.
• Collaborating with internal teams to ensure security is integrated into all IT operations and projects.
• Mentoring and guiding junior security engineers.

• Architecting, deploying, and managing security infrastructure, including firewalls, intrusion detection/prevention systems, VPNs, and SIEM solutions.
• Developing and enforcing security policies, standards, and procedures.
• Leading security assessments, penetration testing initiatives, and vulnerability management programs.
• Designing and implementing secure solutions for cloud environments (AWS, Azure, GCP).
• Developing and maintaining secure coding practices and application security testing processes.
• Orchestrating and leading incident response efforts during security breaches.
• Providing technical guidance and mentorship to junior security engineers and analysts.
• Evaluating and recommending new security technologies and tools.
• Collaborating with development and operations teams to ensure security by design.
• Reporting on security metrics, risks, and compliance status to senior management.

• Bachelor's or Master's degree in Computer Science, Engineering, Cybersecurity, or a related field.
• At least 7 years of experience in information security engineering and architecture.
• Extensive experience with security technologies such as SIEM, EDR, DLP, and IAM.
• In-depth knowledge of network protocols, cryptography, and security best practices.
• Proven experience with cloud security architecture and implementation.
• Experience with scripting and automation tools (e.g., Python, Ansible).
• Strong understanding of application security principles (OWASP Top 10).
• Excellent leadership, communication, and interpersonal skills.
• Relevant security certifications (e.g., CISSP, CISM, CCSP) are highly preferred.
• Ability to manage multiple projects in a fast-paced, remote environment.