2,244 Incident Response jobs in Kenya
Lead Cybersecurity Analyst (Threat Detection & Incident Response)
20400 Naivasha, Rift Valley
KES6000000 Annually
WhatJobs
Posted 4 days ago
Job Viewed
Job Description
Our client is seeking a highly skilled and experienced Lead Cybersecurity Analyst to spearhead their threat detection and incident response efforts. This is a fully remote position, allowing you to work from any location within Kenya. In this critical role, you will be responsible for developing and maintaining robust security monitoring capabilities, identifying potential security threats, and orchestrating rapid and effective responses to security incidents. You will lead a team of cybersecurity professionals, ensuring the continuous improvement of security protocols and the protection of the organization's digital assets. The ideal candidate will possess deep expertise in SIEM technologies, intrusion detection/prevention systems, network forensics, and malware analysis. You should be proficient in security frameworks (e.g., NIST, ISO 27001) and have a strong understanding of common attack vectors and mitigation strategies. This role requires exceptional analytical and problem-solving skills, the ability to work under pressure, and excellent communication skills to effectively report on security posture and incidents to various stakeholders. Your leadership will be instrumental in safeguarding the organization against evolving cyber threats.
Location: This position is fully remote and is aligned with **Naivasha, Nakuru, KE**. We encourage motivated individuals seeking to make a substantial contribution to cybersecurity resilience.
Responsibilities:
Location: This position is fully remote and is aligned with **Naivasha, Nakuru, KE**. We encourage motivated individuals seeking to make a substantial contribution to cybersecurity resilience.
Responsibilities:
- Lead the development and implementation of security monitoring and threat detection strategies.
- Oversee the incident response process, including containment, eradication, and recovery.
- Analyze security alerts and logs from various sources to identify and investigate potential threats.
- Conduct forensic analysis of security incidents to determine root cause and impact.
- Develop and maintain playbooks and procedures for incident response.
- Manage and tune SIEM, IDS/IPS, and other security tools.
- Perform vulnerability assessments and penetration testing.
- Stay current with emerging cybersecurity threats, vulnerabilities, and technologies.
- Provide technical leadership and mentorship to the cybersecurity team.
- Communicate security risks and incident status to management and relevant stakeholders.
- Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field.
- 5+ years of progressive experience in cybersecurity, with a focus on threat detection and incident response.
- Proven experience managing and leading cybersecurity teams.
- In-depth knowledge of SIEM platforms (e.g., Splunk, QRadar, ELK Stack).
- Hands-on experience with network security tools, endpoint security solutions, and forensic tools.
- Strong understanding of operating systems (Windows, Linux), networking protocols, and cloud security.
- Experience with scripting languages (e.g., Python, PowerShell) for automation.
- Relevant cybersecurity certifications (e.g., CISSP, GIAC, CEH) are highly desirable.
- Exceptional analytical, problem-solving, and critical thinking skills.
- Excellent written and verbal communication skills.
This advertiser has chosen not to accept applicants from your region.
0
Senior Security Operations Center (SOC) Analyst - Remote Incident Response Lead
00100 Abothuguchi West
KES320000 Annually
WhatJobs
Posted 7 days ago
Job Viewed
Job Description
Our client, a leader in the cybersecurity industry, is seeking a highly experienced Senior Security Operations Center (SOC) Analyst to spearhead their remote incident response efforts. This critical role involves the detection, analysis, and mitigation of security incidents to protect the organization's sensitive data and systems. The ideal candidate will possess a comprehensive understanding of security threats, network protocols, and incident response methodologies. You will be responsible for monitoring security alerts, conducting in-depth investigations, and coordinating response activities across various technical teams. This position demands exceptional analytical skills, meticulous attention to detail, and the ability to make quick, sound decisions under pressure. As a remote-first role, you must be highly self-disciplined, possess excellent communication skills, and be adept at collaborating effectively within a distributed SOC environment. You will leverage advanced security tools, including SIEM, IDS/IPS, and EDR, to identify and respond to malicious activities. We are looking for an individual with a passion for cybersecurity, a proactive mindset, and a proven track record in incident response and security operations. This is an exceptional opportunity to join a talented security team, contribute to the protection of critical infrastructure, and make a significant impact in a challenging and evolving field. Your expertise will be vital in maintaining the organization's security posture and minimizing the impact of security breaches.
Responsibilities:
Qualifications:
Responsibilities:
- Monitor and analyze security alerts from various sources (SIEM, IDS/IPS, EDR, etc.).
- Investigate and triage security incidents, determining scope and impact.
- Lead and coordinate incident response activities, including containment, eradication, and recovery.
- Perform malware analysis and digital forensics to understand attack vectors.
- Develop and refine incident response playbooks and procedures.
- Communicate incident details and status updates to relevant stakeholders, including management and legal teams.
- Participate in threat hunting exercises to proactively identify potential security weaknesses.
- Evaluate and recommend improvements to security monitoring tools and processes.
- Contribute to post-incident reviews and lessons learned sessions.
- Mentor junior SOC analysts and provide technical guidance.
Qualifications:
- Bachelor's degree in Cybersecurity, Computer Science, or a related field, or equivalent work experience.
- Minimum of 7 years of experience in Security Operations Center (SOC) environments and incident response.
- Demonstrated expertise in analyzing security alerts, network traffic, and system logs.
- Strong understanding of common attack vectors, malware, and forensic techniques.
- Proficiency with SIEM platforms (e.g., Splunk, QRadar), EDR solutions, and network security tools.
- Excellent analytical, problem-solving, and critical thinking skills.
- Exceptional written and verbal communication skills, with the ability to articulate technical information clearly under pressure.
- Ability to work independently and collaboratively in a remote 24/7 operational environment.
- Relevant security certifications such as GIAC (GCIH, GCFA), CISSP, or CCSP are highly desirable.
- Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus.
This advertiser has chosen not to accept applicants from your region.
1
Information Security Analyst
40100 Kisumu
KES90000 Annually
WhatJobs
Posted today
Job Viewed
Job Description
Our client is seeking a vigilant and skilled Information Security Analyst to join their fully remote cybersecurity team. This critical role is responsible for protecting the company's digital assets by identifying and mitigating security threats. As an Information Security Analyst, you will monitor security systems, conduct vulnerability assessments, analyze security breaches, and implement appropriate security measures. You will play a key part in developing and enforcing security policies and procedures to safeguard sensitive data and ensure compliance with industry standards. This is a 100% remote position, requiring a proactive mindset, exceptional analytical skills, and the ability to work independently and collaboratively within a virtual team. The ideal candidate possesses a deep understanding of cybersecurity principles, threat landscapes, and risk management. A bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, along with relevant certifications (e.g., CompTIA Security+, CEH), is highly desirable. You must be meticulous, detail-oriented, and committed to maintaining a robust security posture for the organization.
Key Responsibilities:
Key Responsibilities:
- Monitor security infrastructure and systems for threats and vulnerabilities.
- Conduct regular vulnerability assessments and penetration testing.
- Analyze security incidents and breaches, providing detailed reports and recommendations.
- Develop, implement, and maintain security policies, standards, and procedures.
- Respond to security alerts and incidents, coordinating containment and eradication efforts.
- Perform risk assessments and identify potential security weaknesses.
- Implement and manage security tools such as firewalls, IDS/IPS, and SIEM.
- Educate employees on security best practices and awareness training.
- Ensure compliance with relevant data protection regulations (e.g., GDPR, CCPA).
- Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
- Collaborate with IT teams to ensure security is integrated into all systems and applications.
- Assist in the development and execution of incident response plans.
- Manage security documentation and provide regular reports to management.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 3-5 years of experience in information security or a related IT security role.
- Strong understanding of cybersecurity principles, network security, and threat intelligence.
- Experience with security tools such as SIEM, vulnerability scanners, and endpoint protection.
- Knowledge of security frameworks (e.g., NIST, ISO 27001).
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication skills for reporting and collaboration.
- Ability to work independently and manage priorities in a remote environment.
- Relevant certifications such as CompTIA Security+, CEH, CISSP are a plus.
- Experience with incident response and digital forensics is advantageous.
This advertiser has chosen not to accept applicants from your region.
2
Information Security Analyst
30100 Moiben
KES180000 Annually
WhatJobs
Posted today
Job Viewed
Job Description
Our client is looking for a vigilant and skilled Information Security Analyst to join their growing IT department. This role requires a proactive approach to safeguarding sensitive data and systems against evolving cyber threats. The Information Security Analyst will be responsible for implementing and managing security measures, monitoring network traffic for suspicious activities, and responding to security incidents. Key duties include conducting vulnerability assessments, performing penetration testing, developing and enforcing security policies, and ensuring compliance with industry regulations. The ideal candidate will have a strong understanding of network security, cryptography, risk management, and various security frameworks. Experience with security information and event management (SIEM) tools, intrusion detection/prevention systems, and endpoint security solutions is crucial. You will work closely with IT teams to integrate security into all aspects of the infrastructure and operations. Excellent analytical and problem-solving skills are essential, as is the ability to communicate complex security concepts clearly to both technical and non-technical audiences. This position offers a hybrid work arrangement, allowing for a balance between remote flexibility and in-office collaboration at our client's facilities in Kitale, Trans-Nzoia, Kenya . The ability to stay updated with the latest security threats and technologies is paramount. This is an excellent opportunity for a security professional to contribute to a secure digital environment and advance their career within a supportive team.
This advertiser has chosen not to accept applicants from your region.
3
Information Security Analyst
30200 Bungoma, Western
KES95000 Annually
WhatJobs
Posted today
Job Viewed
Job Description
Our client is seeking a skilled and vigilant Information Security Analyst to join their growing team in Bungoma. This hybrid role offers a blend of in-office collaboration and remote flexibility. You will be instrumental in safeguarding the organization's digital assets and sensitive data against evolving cyber threats. Your responsibilities will include conducting regular security assessments, vulnerability scans, and penetration testing to identify potential weaknesses in our systems and networks. You will develop and implement security policies, procedures, and best practices to ensure compliance with industry standards and regulatory requirements. Monitoring security alerts and incident response will be a critical part of your daily duties, requiring you to swiftly and effectively mitigate security breaches. You will also be involved in security awareness training for employees, fostering a culture of security consciousness throughout the organization. The ideal candidate possesses a strong understanding of network security, firewalls, intrusion detection/prevention systems, and data encryption techniques. Experience with security information and event management (SIEM) tools and security frameworks like ISO 27001 or NIST is highly desirable. You should have excellent analytical and problem-solving skills, with the ability to work under pressure and make critical decisions during security incidents. A Bachelor's degree in Computer Science, Information Technology, or a related field, coupled with relevant security certifications (e.g., CISSP, CompTIA Security+), would be advantageous. This is an excellent opportunity to contribute to a secure digital environment and grow your career in the vital field of cybersecurity. Join a team dedicated to protecting our digital future and making a tangible impact on the organization's resilience.
This advertiser has chosen not to accept applicants from your region.
4
Information Security Analyst
0100 Mangu
KES700000 Annually
WhatJobs
Posted today
Job Viewed
Job Description
Our client is seeking a vigilant and skilled Information Security Analyst to safeguard their digital assets and sensitive data. This is a fully remote position, allowing you to contribute to robust security operations from anywhere. You will be responsible for monitoring security systems, identifying potential threats, investigating security incidents, and implementing preventative measures to protect the organization's IT infrastructure. The ideal candidate possesses a strong understanding of cybersecurity principles, network security, and threat detection methodologies.
Key Responsibilities:
Key Responsibilities:
- Monitor security alerts and events from various security tools (SIEM, IDS/IPS, firewalls).
- Investigate security incidents, determine their scope and impact, and provide timely resolution.
- Perform vulnerability assessments and penetration testing to identify security weaknesses.
- Develop and implement security policies, procedures, and best practices.
- Manage and maintain security infrastructure, including firewalls, antivirus, and intrusion detection systems.
- Conduct security awareness training for employees.
- Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and trends.
- Respond to security breaches and manage incident response activities.
- Collaborate with IT teams to ensure secure system configurations and deployments.
- Assist in the development and maintenance of disaster recovery and business continuity plans.
- Generate security reports and dashboards for management.
- Ensure compliance with relevant security standards and regulations.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent practical experience.
- Minimum of 3 years of experience in information security, cybersecurity operations, or a related role.
- Proficiency with security tools such as SIEM, IDS/IPS, firewalls, endpoint protection, and vulnerability scanners.
- Strong understanding of networking protocols, operating systems (Windows, Linux), and web application security.
- Knowledge of common attack vectors and threat mitigation techniques.
- Experience with incident response procedures.
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication skills, essential for remote collaboration.
- Ability to work independently, manage time effectively, and prioritize tasks in a remote setting.
- Relevant certifications such as CompTIA Security+, CEH, CISSP are highly desirable.
This advertiser has chosen not to accept applicants from your region.
5
Blockchain Security Analyst
20100 Kapsuser
KES180000 Annually
WhatJobs
Posted today
Job Viewed
Job Description
Our client, a pioneering firm in the decentralized finance (DeFi) space, is seeking a highly skilled and motivated Blockchain Security Analyst to join their dynamic team in **Kericho, Kericho, KE**. This role is crucial for safeguarding our digital assets and ensuring the integrity of our blockchain infrastructure. The successful candidate will be responsible for conducting thorough security audits of smart contracts, identifying vulnerabilities, and developing robust mitigation strategies. You will also play a key role in staying ahead of emerging threats and implementing proactive security measures. Responsibilities include:
Qualifications and Skills:
This is an exciting opportunity to contribute to the security of cutting-edge blockchain solutions in a challenging and rewarding environment.
- Perform comprehensive security assessments of blockchain protocols, smart contracts, and decentralized applications (dApps).
- Identify, analyze, and report on security vulnerabilities, exploits, and potential attack vectors.
- Develop and implement security testing methodologies, including penetration testing and fuzzing techniques.
- Collaborate with development teams to ensure secure coding practices and timely remediation of identified issues.
- Monitor blockchain networks for suspicious activity and respond to security incidents.
- Research and stay abreast of the latest advancements in blockchain technology, cryptography, and cybersecurity threats.
- Contribute to the development of internal security policies and procedures.
- Provide expert advice on security best practices for blockchain development.
- Maintain up-to-date documentation of security findings and recommendations.
Qualifications and Skills:
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Proven experience in blockchain security analysis or smart contract auditing.
- Strong understanding of blockchain technologies, including Ethereum, Bitcoin, and other prominent protocols.
- Proficiency in smart contract languages such as Solidity and experience with relevant development environments.
- Expertise in security assessment tools and techniques.
- Excellent analytical and problem-solving skills.
- Ability to work independently and as part of a collaborative team.
- Strong communication skills, both written and verbal.
- Relevant certifications (e.g., CISSP, CISM, OSCP) are a plus.
This is an exciting opportunity to contribute to the security of cutting-edge blockchain solutions in a challenging and rewarding environment.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Incident response Jobs in Kenya !
6
Information Security Analyst
80100 Gede
KES110000 Annually
WhatJobs
Posted today
Job Viewed
Job Description
Our client, a growing financial technology firm, is seeking a diligent and proactive Information Security Analyst to join their IT security team. This position will play a crucial role in safeguarding our client's digital assets, systems, and sensitive data against cyber threats. The ideal candidate will have a strong understanding of cybersecurity principles, risk management, and incident response. You will be responsible for monitoring security systems, identifying vulnerabilities, implementing security controls, and responding to security incidents, all within a fully remote capacity.
Responsibilities:
Responsibilities:
- Monitor security systems and networks for potential threats and vulnerabilities.
- Conduct regular security assessments and vulnerability scans.
- Implement and maintain security controls and technologies, including firewalls, intrusion detection/prevention systems, and endpoint security solutions.
- Develop and execute incident response plans to address security breaches and minimize impact.
- Investigate security incidents, analyze logs, and perform forensic analysis when necessary.
- Assist in the development and implementation of information security policies, procedures, and standards.
- Conduct security awareness training for employees.
- Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
- Collaborate with IT teams to ensure security is integrated into all systems and applications.
- Prepare reports on security incidents, vulnerabilities, and recommendations for improvement.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 3 years of experience in information security or a related IT role.
- Strong understanding of cybersecurity principles, frameworks (e.g., NIST, ISO 27001), and best practices.
- Experience with security monitoring tools, SIEM solutions, and vulnerability assessment tools.
- Knowledge of network security, cryptography, and access control mechanisms.
- Familiarity with incident response procedures and digital forensics.
- Excellent analytical, problem-solving, and communication skills.
- Relevant certifications such as CompTIA Security+, CISSP, or CEH are highly desirable.
- Ability to work independently and as part of a remote team, managing time effectively.
- Demonstrated commitment to continuous learning in the field of cybersecurity.
This advertiser has chosen not to accept applicants from your region.
7
Information Security Analyst
50100 Kakamega, Western
KES200000 Annually
WhatJobs
Posted 1 day ago
Job Viewed
Job Description
Our client is looking for a skilled and vigilant Information Security Analyst to strengthen their security posture. This role operates on a hybrid model, offering a blend of remote flexibility and in-office collaboration. You will be responsible for monitoring, analyzing, and responding to security threats and incidents across the organization's IT infrastructure. Key duties include implementing and managing security controls, conducting vulnerability assessments, and performing penetration testing to identify weaknesses. You will develop and maintain security policies, procedures, and standards to ensure compliance with industry best practices and regulatory requirements. The ideal candidate will possess a strong understanding of network security, endpoint security, data protection, and cloud security principles. Experience with security information and event management (SIEM) tools, intrusion detection/prevention systems (IDS/IPS), and firewalls is essential. You will play a crucial role in incident response, including investigation, containment, eradication, and recovery. The ability to analyze complex security events, provide clear and concise reports, and recommend effective remediation strategies is paramount. Collaboration with IT teams to implement security enhancements and educate staff on security best practices is also a key aspect of this role. The candidate should possess excellent analytical, problem-solving, and communication skills. Relevant certifications such as CISSP, CompTIA Security+, or CEH are highly advantageous. This is an excellent opportunity to contribute to maintaining a secure environment in a challenging and dynamic industry. The hybrid nature of this role allows for strategic planning and deep analysis remotely, while fostering team synergy and collaborative problem-solving in the office. Your expertise will be vital in safeguarding our digital assets against evolving threats.
This advertiser has chosen not to accept applicants from your region.
8
Information Security Analyst
50200 Bungoma, Western
KES300000 Monthly
WhatJobs
Posted 1 day ago
Job Viewed
Job Description
Our client is looking for a vigilant and proactive Information Security Analyst to join their fully remote security operations team. In this critical role, you will be responsible for safeguarding our client's digital assets, detecting and responding to security threats, and ensuring the integrity and confidentiality of sensitive data. This is a remote-first position, offering the flexibility to work from any location within Kenya while contributing to a robust security posture. The ideal candidate has a deep understanding of cybersecurity principles, threat landscapes, and risk management.
Responsibilities:
Qualifications:
This is an excellent opportunity to play a pivotal role in protecting our client's information assets in a dynamic, fully remote cybersecurity role. If you are a security-minded professional with a passion for defending against cyber threats, we encourage you to apply.
Responsibilities:
- Monitor security alerts and events using SIEM tools to identify potential security breaches and policy violations.
- Conduct security risk assessments and vulnerability analyses across IT infrastructure and applications.
- Investigate security incidents, perform root cause analysis, and implement containment and eradication strategies.
- Develop and maintain security policies, procedures, and guidelines.
- Implement and manage security controls, including firewalls, intrusion detection/prevention systems (IDPS), and endpoint security solutions.
- Stay current with emerging threats, vulnerabilities, and security technologies.
- Participate in security awareness training initiatives for employees.
- Collaborate with IT teams to ensure security is integrated into system design and deployment.
- Perform penetration testing and security audits to identify weaknesses.
- Prepare reports on security status, incident trends, and recommended improvements.
Qualifications:
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Minimum of 4 years of experience in information security, with a focus on security analysis and incident response.
- Proficiency with Security Information and Event Management (SIEM) tools (e.g., Splunk, QRadar).
- Strong understanding of network security, cryptography, and security protocols.
- Experience with vulnerability assessment tools and techniques.
- Knowledge of common security frameworks (e.g., ISO 27001, NIST).
- Excellent analytical, problem-solving, and critical-thinking skills.
- Strong written and verbal communication skills, with the ability to articulate complex security issues.
- Relevant security certifications such as CompTIA Security+, CEH, CISSP are highly desirable.
- Ability to work independently and manage time effectively in a remote environment.
This is an excellent opportunity to play a pivotal role in protecting our client's information assets in a dynamic, fully remote cybersecurity role. If you are a security-minded professional with a passion for defending against cyber threats, we encourage you to apply.
This advertiser has chosen not to accept applicants from your region.
9