926 Security Controls jobs in Kenya
Job Description
Er du en strategisk og relasjonssterk leder som vil bidra til at statlige virksomheter får lokaler som støtter deres samfunnsoppdrag når de skal leie lokaler i markedet? Nå søker vi en tydelig og inspirerende seksjonsleder til Statsbyggs rådgivningstjeneste.
Om Rådgivningstjenesten
Statsbyggs rådgivningstjeneste er statens fagmiljø for anskaffelse av effektive og bærekraftige kontorlokaler. Tjenesten sikrer statens interesser i leiesaker og oppnår svært gode resultater på kvalitet og kostnadseffektivitet. Med unntak for NAV og Politiet er tjenesten obligatorisk å bruke for virksomheter med leieforpliktelser over 30 millioner kroner i leieforholdets levetid.
Vi tilbyr
råd og bistand i alle faser av prosessen knyttet til leieforholdet: ved relokalisering, inngåelse av leieavtaler eller reforhandling av eksisterende avtaler. Fra innflytting til fraflytting og tilbakelevering.
Statsbyggs rådgivningstjeneste er del av avdeling for Rådgivning og tidligfase med totalt 50 medarbeidere fordelt på fire seksjoner. Avdelingen gir råd til departementer og statlige virksomheter knyttet til anskaffelse av nye lokaler, utredninger og byggeprosjekter i tidligfase og lokaliserings- og reguleringssaker.
Om Rollen
Som seksjonsleder får du ansvar for et sterkt team med prosjektledere og for rådgivningen vi gir om nye leieforhold. Du får en sentral rolle i å sikre at leieporteføljen møter statens krav til arealbruk, seriøsitet og fremtidsrettede løsninger. Rollen gir stor påvirkningskraft på utviklingen av virksomhetsområdet, og du blir en del av avdelingens ledergruppe.
Vi ser etter deg som bygger tillit, motiverer medarbeidere og evner å omsette strategiske mål til konkrete planer. Hos oss får du spennende og varierte dager, og muligheten til å utvikle både mennesker og fagmiljø.
Kvalifikasjoner
- Mastergrad, for eksempel innen økonomi, samfunnsfag, juss eller eiendomsfag
- Ledererfaring med personal- og resultatansvar
- Erfaring med offentlige beslutningsprosesser
- Svært gode formidlingsevner muntlig og skriftlig på norsk og god digital forståelse og interesse
Statsbygg benytter ekstern leverandør for bakgrunnssjekk av aktuelle kandidater. Bakgrunnssjekken blir utført etter samtykke fra deg som søker og innebærer at vi verifiserer CV og annen søknadsdokumentasjon i forbindelse med ansettelsen.
Personlige egenskaper
- Du er en problemløser, god på å se utfordringer og identifisere løsninger
- Du har høy gjennomføringsevne og er resultatorientert
- Du har god rolleforståelse, evner å løfte blikket og ha et strategisk tankesett
- Du har svært gode formidlingsevner muntlig og skriftlig
- Du er trygg i lederrollen og evner å skape troverdighet og motivere de rundt deg
Vi tilbyr
- Lederstilling for en seksjon på for tiden 10 medarbeidere. Stillingen rapporterer til direktør for Rådgivning og tidligfase
- Vi tilbyr
deg en spennende lederjobb med et viktig samfunnsoppdrag i et godt fagmiljø - Stillingen lønnes som avdelingsdirektør fra kr ,- til kr , avhengig av erfaring og kvalifikasjoner
- Medlemskap i Statens pensjonskasse, med gode pensjons-, forsikrings- og boliglånsordninger
- Sommertid og fleksible ordninger
- Støtteordninger for trening og eget bedriftsidrettslag
- Moderne arbeidsplass midt i Oslo sentrum med godt kollektivtransporttilbud, gratis sykkelparkering innendørs og meget bra kantine
This advertiser has chosen not to accept applicants from your region.
0
Senior Information Security Architect - Cloud Security & Compliance
Posted 15 days ago
Job Viewed
Job Description
Our client is seeking a highly skilled and experienced Senior Information Security Architect with a specialization in cloud security and compliance to join their fully remote, cutting-edge security team. This pivotal role will involve designing, implementing, and maintaining robust security architectures for cloud-based environments, ensuring the confidentiality, integrity, and availability of sensitive data. You will be responsible for developing security policies, standards, and procedures that align with industry best practices and regulatory requirements. Key responsibilities include conducting security risk assessments, threat modeling, and vulnerability management for cloud infrastructures (AWS, Azure, GCP). You will design and implement security controls, including identity and access management (IAM), network security, data encryption, and security monitoring solutions. Collaboration with development, operations, and compliance teams will be essential to integrate security seamlessly into the software development lifecycle and ensure adherence to compliance frameworks (e.g., ISO 27001, SOC 2, GDPR). The ideal candidate will possess deep expertise in cloud security principles, container security, and DevSecOps methodologies. Strong knowledge of security automation and orchestration tools is highly desirable. This is a fully remote position requiring exceptional analytical, problem-solving, and communication skills to effectively lead security initiatives and advise stakeholders across the organization. You will play a crucial role in safeguarding our client's digital assets and ensuring a strong security posture for their operations, impacting the **Nairobi, Nairobi, KE** region and their global presence. This role offers an exciting opportunity to architect and implement advanced security solutions in a dynamic, remote environment.
This advertiser has chosen not to accept applicants from your region.
1
Information Security Auditor
Posted 14 days ago
Job Viewed
Job Description
Our client is looking for a meticulous and analytical Information Security Auditor to join their team. This role will involve conducting comprehensive assessments of the organization's security controls, policies, and procedures to ensure compliance with industry standards and regulatory requirements. You will identify vulnerabilities, assess risks, and provide actionable recommendations for enhancing the overall security posture. The position offers a hybrid work arrangement, allowing for a balance between remote work and in-office collaboration. Your expertise will be vital in safeguarding sensitive data and maintaining the integrity of our IT systems.
Key Responsibilities:
Qualifications:
This hybrid role offers a significant opportunity to impact the security of a growing organization. If you possess a strong audit background and a passion for cybersecurity, we encourage you to apply.
Key Responsibilities:
- Plan and execute information security audits across various IT systems and business processes.
- Evaluate the effectiveness of existing security controls, including physical, technical, and administrative safeguards.
- Review and assess compliance with relevant regulations and standards (e.g., GDPR, SOX, PCI DSS, ISO 27001).
- Identify security risks, vulnerabilities, and non-compliance issues, and document findings clearly.
- Develop detailed audit reports with prioritized recommendations for remediation.
- Collaborate with IT and business departments to discuss audit findings and remediation plans.
- Follow up on audit recommendations to ensure timely and effective implementation.
- Stay current with emerging threats, security trends, and audit best practices.
- Assist in the development and maintenance of audit programs and methodologies.
- Contribute to the continuous improvement of the information security management system.
Qualifications:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 4 years of experience in information security, IT audit, or risk management.
- Strong understanding of cybersecurity principles, frameworks, and best practices.
- Experience with various IT systems, networks, and application security concepts.
- Knowledge of common IT audit frameworks and methodologies.
- Excellent analytical and problem-solving skills with a keen eye for detail.
- Strong written and verbal communication skills, with the ability to present complex information clearly.
- Proficiency in data analysis and reporting tools.
- Ability to work effectively both independently and as part of a team.
- Relevant certifications such as CISA, CISSP, or CRISC are highly desirable.
This hybrid role offers a significant opportunity to impact the security of a growing organization. If you possess a strong audit background and a passion for cybersecurity, we encourage you to apply.
This advertiser has chosen not to accept applicants from your region.
2
Information Security Compliance Manager
Posted 18 days ago
Job Viewed
Job Description
Our client is seeking a dedicated and experienced Information Security Compliance Manager to lead their security compliance initiatives within a fully remote framework. This role is crucial for ensuring that our organization adheres to all relevant legal, regulatory, and industry standards concerning data protection and cybersecurity. You will be responsible for developing, implementing, and maintaining comprehensive compliance programs, conducting audits, and managing relationships with regulatory bodies. As a remote leader, you will foster a culture of security awareness across the organization and guide teams in meeting compliance objectives. This position demands a deep understanding of global security regulations and a proactive approach to risk management.
Key Responsibilities:
Qualifications:
Key Responsibilities:
- Develop, implement, and manage information security policies, procedures, and controls to ensure compliance with relevant regulations (e.g., GDPR, CCPA, HIPAA, PCI DSS).
- Conduct regular internal and external security audits to assess compliance levels and identify areas for improvement.
- Manage the process of external audits and certifications, acting as the primary point of contact for auditors and assessors.
- Oversee the development and execution of risk management frameworks, including regular risk assessments and mitigation planning.
- Stay informed about evolving legal and regulatory requirements related to data privacy and cybersecurity, and update compliance programs accordingly.
- Develop and deliver security awareness training programs to employees across the organization.
- Investigate and manage any compliance breaches or incidents, ensuring appropriate remediation steps are taken and documented.
- Collaborate with legal, IT, and business units to ensure alignment on compliance strategies and initiatives.
- Prepare regular reports for senior management on the status of information security compliance and identified risks.
- Maintain documentation related to compliance policies, procedures, assessments, and training records.
Qualifications:
- Bachelor's degree in Information Technology, Computer Science, Law, or a related field; Master's degree preferred.
- Minimum of 6 years of experience in information security, with at least 3 years specifically focused on compliance and risk management.
- In-depth knowledge of major data privacy and security regulations (GDPR, CCPA, HIPAA, PCI DSS, ISO 27001).
- Proven experience in conducting security audits, risk assessments, and developing remediation plans.
- Strong understanding of IT infrastructure, cybersecurity principles, and common security threats.
- Excellent analytical, problem-solving, and strategic thinking skills.
- Exceptional communication, presentation, and interpersonal skills, with the ability to effectively engage stakeholders at all levels in a remote environment.
- Relevant certifications such as CISM, CISSP, CISA, or CIPP are highly desirable.
- Ability to work independently, manage multiple projects, and meet deadlines in a remote setting.
- Demonstrated leadership capabilities and experience in managing compliance programs.
This advertiser has chosen not to accept applicants from your region.
3
Senior Information Security Auditor
Posted 19 days ago
Job Viewed
Job Description
Our client, a rapidly growing technology firm, is seeking a highly experienced Senior Information Security Auditor to join their dedicated team in Ruiru, Kiambu, KE . This role is critical for ensuring the robust security of our client's digital assets and systems. You will be responsible for conducting comprehensive security audits, assessing vulnerabilities, and implementing corrective actions to mitigate risks. Key duties include evaluating IT controls, compliance with security policies and regulations, and developing security best practices. The ideal candidate will possess extensive knowledge of cybersecurity frameworks (e.g., ISO 27001, NIST), risk assessment methodologies, and audit procedures. You will play a pivotal role in identifying potential security threats and ensuring the integrity and confidentiality of sensitive data. This position requires excellent analytical skills, strong attention to detail, and the ability to communicate complex technical findings effectively to both technical and non-technical audiences. You will collaborate closely with IT and development teams to implement security enhancements and ensure compliance. We are looking for a proactive and detail-oriented professional with a proven track record in information security auditing. This is an exciting opportunity to contribute to a secure digital environment within a dynamic organization. The successful candidate will be instrumental in safeguarding our client's infrastructure and maintaining stakeholder trust. This role requires meticulous planning and execution of audit procedures. A strong understanding of penetration testing and vulnerability management is a plus.
This advertiser has chosen not to accept applicants from your region.
4
Information Security Auditor (Remote)
Posted 12 days ago
Job Viewed
Job Description
Our client is seeking a meticulous and knowledgeable Information Security Auditor to join their fully remote security team. This position is crucial for assessing and verifying the effectiveness of the company's security controls, policies, and procedures. You will be responsible for planning and conducting comprehensive security audits across various IT systems, applications, and infrastructure to identify vulnerabilities and ensure compliance with internal standards and external regulations. The ideal candidate will possess a strong understanding of information security frameworks (e.g., ISO 27001, NIST), risk assessment methodologies, and audit best practices. You will examine system logs, configuration settings, and access controls to detect potential security weaknesses and non-compliance issues. Developing detailed audit reports, documenting findings, and providing actionable recommendations for remediation to management and technical teams will be a core responsibility. Collaborating with IT and security personnel to implement corrective actions and track their progress towards resolution is also essential. Staying abreast of emerging threats, vulnerabilities, and regulatory changes to ensure audit scope remains relevant and effective is key. Experience with security auditing tools and techniques is highly desirable. Excellent analytical, problem-solving, and communication skills are required to effectively present audit findings and recommendations. This is an outstanding opportunity for a skilled auditor to contribute to the robust security posture of our client in a remote setting, focusing on security assurance for operations associated with Bungoma, Bungoma, KE .
This advertiser has chosen not to accept applicants from your region.
5
Lead Information Security Auditor (Remote)
Posted 3 days ago
Job Viewed
Job Description
Our client is seeking a highly experienced Lead Information Security Auditor to join their fully remote team. In this critical role, you will be responsible for conducting comprehensive security audits across our organization's IT infrastructure, applications, and processes. Your primary objective will be to ensure compliance with industry regulations, internal policies, and best practices in cybersecurity. You will lead audit engagements, manage audit teams, and provide strategic guidance on risk mitigation and security improvements. This position requires a deep understanding of various security domains, including network security, application security, data privacy, and cloud security. You will play a crucial role in identifying vulnerabilities, assessing risks, and recommending effective controls to protect sensitive information and maintain the integrity of our systems. The ideal candidate possesses exceptional analytical skills, a meticulous approach to detail, and a strong understanding of audit methodologies and frameworks such as ISO 27001, NIST, and SOC 2. You should be adept at communicating complex security findings to both technical and executive audiences. As a remote leader, you must be highly self-motivated, organized, and proficient in using collaboration tools to effectively manage distributed teams and projects. Your contributions will be essential in maintaining our robust security posture and fostering a culture of security awareness throughout the organization. This is an excellent opportunity for a seasoned security professional to make a significant impact from anywhere in the world.
Key Responsibilities:
Key Responsibilities:
- Plan, execute, and report on information security audits across various technology domains.
- Assess the effectiveness of security controls, policies, and procedures to ensure compliance with relevant regulations and standards.
- Identify security vulnerabilities, assess associated risks, and develop actionable recommendations for remediation.
- Lead and mentor junior auditors, providing technical guidance and oversight for audit engagements.
- Develop and maintain audit programs and methodologies tailored to the organization's risk profile.
- Review system configurations, network architectures, and application security practices for potential weaknesses.
- Conduct security awareness training and phishing simulations to improve employee understanding of security threats.
- Stay up-to-date with the latest security threats, vulnerabilities, and regulatory changes impacting the industry.
- Collaborate with IT, compliance, and legal teams to address audit findings and implement corrective actions.
- Prepare comprehensive audit reports detailing findings, risks, and recommendations for senior management.
- Develop and implement metrics to track the progress of security remediation efforts.
- Advise on the implementation of new security technologies and controls.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 8 years of experience in information security, with at least 5 years in security auditing or risk management.
- Proven experience leading and managing audit teams.
- In-depth knowledge of security frameworks (ISO 27001, NIST, COBIT) and regulations (e.g., GDPR, CCPA).
- Strong understanding of network security, cryptography, vulnerability management, and secure coding practices.
- Experience with cloud security assessments (AWS, Azure, GCP).
- Proficiency in security assessment tools and techniques.
- Excellent analytical, problem-solving, and critical thinking skills.
- Exceptional written and verbal communication skills, with the ability to present complex information clearly and concisely.
- Relevant certifications such as CISA, CISSP, CISM, or CRISC are highly desirable.
- Demonstrated ability to work independently and manage multiple priorities effectively in a remote setting.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Security controls Jobs in Kenya !
6
Blockchain Security Auditor
Posted 19 days ago
Job Viewed
Job Description
Our client, a pioneering force in the decentralized finance space, is seeking a highly skilled and security-conscious Blockchain Security Auditor to join our rapidly growing, fully remote team. This is an exceptional opportunity for a meticulous professional to play a critical role in ensuring the integrity and security of cutting-edge blockchain protocols and smart contracts. You will be responsible for conducting comprehensive security audits, identifying vulnerabilities, and providing actionable recommendations to enhance the security posture of our projects.
Responsibilities:
Qualifications:
Responsibilities:
- Perform in-depth security audits of smart contracts, decentralized applications (dApps), and blockchain infrastructure.
- Analyze code for potential vulnerabilities, logic flaws, and compliance issues across various blockchain platforms (e.g., Ethereum, Solana, Binance Smart Chain).
- Develop and execute detailed test plans to validate security controls and identify weaknesses.
- Utilize a range of static and dynamic analysis tools, as well as manual review techniques.
- Document findings meticulously, including severity assessments, potential impact, and recommended remediation strategies.
- Collaborate closely with development teams to explain identified risks and guide them through the remediation process.
- Stay abreast of the latest blockchain security threats, attack vectors, and best practices.
- Contribute to the development of internal security standards and audit methodologies.
- Prepare detailed audit reports for internal stakeholders and, where applicable, for public disclosure.
- Engage in research and development to discover new vulnerabilities and security patterns within the blockchain ecosystem.
Qualifications:
- Proven experience in smart contract auditing, penetration testing, or security research within the blockchain space.
- Deep understanding of blockchain technology, cryptography, and consensus mechanisms.
- Proficiency in programming languages commonly used in smart contract development (e.g., Solidity, Rust, Go).
- Familiarity with common smart contract vulnerabilities (e.g., reentrancy, integer overflow/underflow, front-running).
- Experience with security analysis tools and frameworks.
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication skills, with the ability to articulate complex technical issues clearly.
- Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
- Relevant certifications (e.g., Certified Blockchain Security Professional) are a plus.
This advertiser has chosen not to accept applicants from your region.
7
Remote Senior Information Security Auditor
Posted 12 days ago
Job Viewed
Job Description
Our client, a prominent financial services institution, is seeking a highly experienced and meticulous Senior Information Security Auditor to join their fully remote audit and compliance team. This role is essential for evaluating the effectiveness of the organization's information security controls, ensuring compliance with regulatory requirements, and identifying potential risks across all IT systems and processes. You will be responsible for planning and executing comprehensive security audits, developing audit reports, and recommending improvements to security posture. The ideal candidate will have a deep understanding of information security principles, audit methodologies, and relevant regulatory frameworks (e.g., PCI DSS, GDPR, SOX). Your key responsibilities will include:
Qualifications:
- Planning, scoping, and executing information security audits across various IT environments, including cloud platforms, networks, applications, and databases.
- Assessing the design and operating effectiveness of internal controls related to information security, data privacy, and IT governance.
- Identifying control deficiencies, security risks, and non-compliance issues, and documenting findings in detailed audit reports.
- Developing practical and actionable recommendations for remediation of identified risks and control weaknesses.
- Following up on audit findings to ensure that management implements corrective actions effectively and in a timely manner.
- Staying current with evolving threats, vulnerabilities, industry best practices, and regulatory requirements impacting information security.
- Collaborating with internal stakeholders, including IT, security operations, and compliance teams, to gather information and discuss audit findings.
- Conducting risk assessments to inform audit planning and prioritize audit activities.
- Performing ad-hoc security reviews and investigations as needed.
- Contributing to the continuous improvement of the internal audit function and its methodologies.
Qualifications:
- Bachelor's degree in Computer Science, Information Systems, Accounting, or a related field. A Master's degree is a plus.
- Minimum of 6 years of experience in information security auditing, IT audit, or a related security control function.
- In-depth knowledge of information security principles, risk management frameworks (e.g., NIST, ISO 27001), and common security controls.
- Experience with relevant regulatory and compliance frameworks such as PCI DSS, GDPR, SOX, HIPAA, etc.
- Familiarity with audit methodologies, including risk-based auditing and control testing.
- Proficiency in using audit management software and tools.
- Strong analytical, critical thinking, and problem-solving skills.
- Excellent written and verbal communication skills, with the ability to produce clear, concise audit reports and present findings effectively remotely.
- Relevant certifications such as CISA, CISSP, CISM, or CRISC are highly desirable.
- Ability to work independently, manage multiple audit engagements, and meet deadlines in a remote environment.
This advertiser has chosen not to accept applicants from your region.
8
Lead Blockchain Security Auditor
Posted 19 days ago
Job Viewed
Job Description
Our client is at the forefront of the decentralized revolution and is seeking a highly skilled Lead Blockchain Security Auditor to join their innovative team. This critical role involves conducting in-depth security assessments of smart contracts, decentralized applications (dApps), and blockchain protocols. You will be responsible for identifying vulnerabilities, developing robust security strategies, and ensuring the integrity and safety of our client's blockchain ecosystem. The ideal candidate possesses a deep understanding of blockchain technology, smart contract development, and a proven history of uncovering complex security flaws.
Responsibilities:
Qualifications:
Responsibilities:
- Perform comprehensive security audits of smart contracts written in Solidity, Rust, or other relevant languages.
- Analyze the architecture and implementation of dApps and blockchain protocols to identify potential security risks.
- Develop and execute penetration testing strategies to uncover vulnerabilities in blockchain systems.
- Provide detailed reports outlining identified vulnerabilities, their potential impact, and recommended remediation steps.
- Collaborate with development teams to implement security fixes and best practices.
- Contribute to the development of internal security tools and frameworks.
- Stay abreast of the latest security threats, attack vectors, and industry best practices in the blockchain space.
- Mentor junior security analysts and contribute to the growth of the security team.
- Represent the company at industry conferences and contribute to the broader blockchain security community.
- Advise on security considerations for new project development and feature implementations.
Qualifications:
- Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.
- 5+ years of experience in cybersecurity, with a specialization in blockchain security and smart contract auditing.
- Deep understanding of various blockchain platforms (e.g., Ethereum, Solana, Polkadot) and their underlying technologies.
- Proficiency in smart contract auditing tools (e.g., Mythril, Slither, Securify) and static analysis techniques.
- Strong knowledge of common smart contract vulnerabilities (e.g., reentrancy, integer overflow/underflow, access control issues).
- Experience with penetration testing methodologies and tools.
- Excellent analytical, problem-solving, and critical thinking skills.
- Strong communication and reporting skills, with the ability to explain complex technical issues clearly.
- Ability to work effectively in a collaborative team environment.
- Certifications such as Certified Blockchain Security Professional (CBSP) or Certified Smart Contract Auditor (CSCA) are a plus.
This advertiser has chosen not to accept applicants from your region.
9