What Jobs are available for Security Analyst in Kenya?

• Monitor security systems, including firewalls, intrusion detection/prevention systems, and antivirus software.
• Detect, investigate, and respond to security incidents and breaches in a timely manner.
• Conduct regular vulnerability assessments and penetration testing.
• Analyze security logs and system events to identify potential threats and anomalies.
• Develop and implement security policies, procedures, and guidelines.
• Ensure compliance with relevant security standards and regulations.
• Provide security awareness training to employees.
• Collaborate with IT teams to implement and maintain security controls.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
• Generate reports on security posture and incident response activities.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Minimum of 3 years of experience in information security.
• Strong understanding of cybersecurity principles, network security, and cryptography.
• Experience with security monitoring tools and incident response procedures.
• Proficiency in analyzing security logs and network traffic.
• Familiarity with common security vulnerabilities and their mitigation.
• Excellent analytical and problem-solving skills.
• Strong written and verbal communication skills.
• Relevant security certifications (e.g., CompTIA Security+, CISSP) are a plus.
• Ability to work effectively in a team and independently.

Our Client, Eastern Produce Kenya and Kakuzi Plc., are looking to hire a professional 
IT Security Analyst
 to assist in monitoring, analyzing and responding to security incidents while assisting in the implementation of robust security measures for Eastern Produce Kenya Limited and Kakuzi Plc.

Reports to:
IT Manager

Industry
: Agriculture

Location
: Nairobi, Kenya

Job Responsibilities:

Monitoring

• Continuously monitor security systems, logs and alerts to identify and mitigate potential threats.
• Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers and other systems and in databases and other data repositories.
• Ensure all systems interfaces are secured from any intrusion and all users' activities are logged and users' activities in systems are detailed and traceable.

Analysis

• Investigate, analyze and respond to security breaches, ensuring rapid containment and resolution.
• Periodically perform vulnerability assessments & penetration tests on systems and technology, identifying vulnerabilities and recommendations on closure of these vulnerabilities.
• Analysis of data from user and network monitoring to ascertain legitimacy of high priority activities noted.

Reporting

• Actively review application, server, database, network logs and audit trails and report.
• Provide and analyze departmental self-assessment reports on all systems controls to assist in focused controls.
• Pro-actively and comprehensively provide guidance on tools required to effectively manage and control company systems environment.
• Be involved in providing forensic data to all reviewers i.e. investigators, analysts, auditors etc.
• Provide Cyber security dashboard report for IT Committee, Executive management and board.

Review

• Review all issues logged by users and analyze trends as relates to systems security management.
• Conduct training sessions and awareness programs to educate employees and stakeholders on the latest cyber security threats and best practices
• Be involved and provide security guidance during technology projects, systems deployment, upgrades and changes.
• Continuous review of systems at all levels i.e. servers, applications, database, network devices etc., identify risks and make recommendations on closure of the risks.
• Collaborate with the IT teams to implement security tools, frameworks and system hardening techniques.

Implementation

• Manage all external parties' access to infrastructure and systems and have detective measures for intrusion.
• Ensure that the infrastructure network LAN / WAN is secure from any intrusion.
• Establish and Maintain the Business Continuity Plan and Disaster Recovery Plan.
• Spearhead a compliance program to achieve industry standards, regulations, best practices, legal obligations and business goals by prioritizing initiatives and assessing the evaluation, deployment, and management of current and future technologies.
• Establish and implement the company's security documents (policies, standards, baselines, guidelines and procedures).
• Enforce patches, version management and virus control.
• Pro-actively enforce and plan to ensure all noted risks are mitigated and potential threats addressed immediately.
• Carry out any other duties that may be assigned from time to time

Requirements:

• Degree in Cyber Security, Computer Science or IT
• CompTIA Security+; CISSP Certification is highly desired
• 3 years' relevant experience in Cyber Security or IT Security
• Experience with SIEM tools, IDS/IPS, Firewalls, Endpoint Security and Security monitoring tools, scripting or automation (Python, PowerShell)
• Knowledge of networking protocols, operating systems and cloud Security.

• Monitor security alerts and events from various sources, including SIEM, IDS/IPS, firewalls, and endpoint security solutions.
• Analyze security incidents to determine the scope, impact, and root cause.
• Investigate potential security breaches and suspicious activities.
• Develop and refine threat detection rules and signatures.
• Utilize threat intelligence feeds to proactively identify emerging threats.
• Respond to security incidents according to established procedures and playbooks.
• Document incident details, findings, and remediation steps accurately.
• Collaborate with IT and other departments to implement security controls and remediation actions.
• Stay current with the latest cybersecurity threats, vulnerabilities, and industry trends.
• Participate in security awareness training initiatives.
• Contribute to the improvement of security monitoring and incident response capabilities.
• Generate regular reports on security incidents and threat landscape.
• Assist in the development and maintenance of security policies and procedures.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• 2-4 years of experience in information security, with a focus on threat detection and incident response.
• Proficiency with SIEM tools (e.g., Splunk, QRadar, ELK Stack).
• Knowledge of IDS/IPS, firewalls, VPNs, and other security technologies.
• Understanding of common cyber attack techniques and methodologies (e.g., phishing, malware, DDoS).
• Familiarity with threat intelligence platforms and frameworks.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong written and verbal communication skills.
• Ability to work independently and as part of a remote team.
• Relevant security certifications (e.g., CompTIA Security+, CEH, GIAC) are a plus.
• Experience with scripting languages (e.g., Python, PowerShell) is beneficial.

• Design, implement, and manage security controls for cloud environments (AWS, Azure, GCP).
• Conduct regular security assessments, vulnerability scans, and penetration testing to identify potential weaknesses.
• Develop and maintain incident response plans, and lead investigations into security breaches.
• Create and enforce security policies, standards, and procedures.
• Monitor security alerts and events, and perform threat hunting activities.
• Provide expert guidance on cloud security best practices and emerging threats.
• Collaborate with development and operations teams to integrate security into the software development lifecycle (DevSecOps).
• Stay abreast of the latest security technologies, trends, and regulatory requirements.
• Develop and deliver security awareness training to employees.
• Manage and maintain security tools and technologies, including SIEM, IDS/IPS, and endpoint detection and response (EDR) solutions.

• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
• Minimum of 5 years of experience in information security, with at least 3 years focused on cloud security.
• Proven experience with security in major cloud platforms (AWS, Azure, GCP).
• In-depth knowledge of networking protocols, operating systems, and application security.
• Strong understanding of security frameworks such as ISO 27001, NIST, and CIS.
• Experience with scripting languages (e.g., Python, Bash) for automation.
• Excellent analytical, problem-solving, and communication skills.
• Relevant security certifications (e.g., CISSP, CCSP, AWS Security Specialty) are highly desirable.
• Ability to work independently and collaboratively in a remote environment.
• Proven track record of successfully managing and mitigating security risks in complex environments.

• Monitor and analyze cloud security events and alerts to detect and respond to threats.
  
• Implement and manage security controls and configurations for cloud environments (AWS, Azure, GCP).
  
• Conduct vulnerability assessments and coordinate penetration testing activities.
  
• Develop and maintain security policies, standards, and procedures for cloud operations.
  
• Manage identity and access management (IAM) within cloud platforms.
  
• Investigate and remediate security incidents, providing detailed post-incident analysis.
  
• Collaborate with development and operations teams to implement DevSecOps practices.
  
• Stay current with emerging cloud security threats, trends, and technologies.
  
• Ensure compliance with relevant security regulations and frameworks.
  

• Bachelor's degree in Computer Science, Information Technology, or a related field.
  
• 3+ years of experience in information security, with a focus on cloud security.
  
• Hands-on experience with major cloud providers (AWS, Azure, GCP).
  
• Proficiency with SIEM, IDS/IPS, and endpoint security solutions.
  
• Strong understanding of network security, cryptography, and application security.
  
• Experience with scripting languages (e.g., Python, Bash) for automation is a plus.
  
• Relevant security certifications (CISSP, CCSP, CompTIA Security+) are preferred.
  
• Excellent analytical, problem-solving, and communication skills.