2,313 Security Engineer jobs in Kenya

• Designing, implementing, and maintaining network security infrastructure, including firewalls, VPNs, IDS/IPS, and web application firewalls (WAFs).
• Developing and deploying security tools and technologies to protect endpoints, servers, and cloud environments.
• Automating security processes and workflows using scripting languages (e.g., Python, PowerShell).
• Conducting regular security audits, penetration testing, and vulnerability assessments to identify and remediate risks.
• Monitoring security alerts and logs, and responding promptly to security incidents.
• Collaborating with system administrators and developers to ensure security best practices are integrated into system design and deployment.
• Developing and enforcing security policies and procedures.
• Participating in security architecture reviews and providing recommendations for improvement.
• Managing security awareness programs and providing technical guidance to other IT staff.
• Staying current with emerging security threats, vulnerabilities, and defensive technologies.
• Ensuring compliance with relevant security regulations and standards.

• Bachelor's degree in Computer Science, Engineering, Information Security, or a related field.
• Minimum of 4 years of hands-on experience in information security engineering or a similar role.
• Strong understanding of network protocols, operating systems (Windows, Linux), and cloud security principles (AWS, Azure, GCP).
• Proficiency in configuring and managing various security technologies such as firewalls (Palo Alto, Cisco), SIEM (Splunk, ELK), EDR (CrowdStrike, SentinelOne), and vulnerability management tools.
• Experience with scripting and automation for security tasks.
• Knowledge of security frameworks like NIST Cybersecurity Framework and ISO 27001.
• Excellent problem-solving and analytical skills.
• Strong communication and teamwork abilities, essential for a remote environment.
• Relevant security certifications (e.g., CompTIA Security+, CISSP, CCNA Security) are a significant advantage.
• Proven ability to work independently and manage time effectively in a remote setting.

• Design, implement, and maintain scalable and secure cloud infrastructure (AWS, Azure, GCP).
• Develop and deploy security automation solutions using scripting and SOAR platforms.
• Manage and optimize SIEM, IDS/IPS, WAF, and other security monitoring tools.
• Lead incident response efforts for complex security events, including forensic analysis.
• Conduct regular security assessments, penetration testing, and vulnerability management activities.
• Develop and enforce security policies, standards, and best practices.
• Collaborate with development and operations teams to ensure secure coding practices and infrastructure deployment.
• Stay ahead of emerging threats and security technologies, proactively enhancing defenses.
• Develop and maintain comprehensive security documentation and runbooks.
• Mentor junior security team members and contribute to team knowledge sharing.

• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or a related technical field.
• Minimum of 7 years of experience in security engineering, operations, or a related role, with a significant focus on cloud environments.
• Proven experience in designing and implementing security solutions in AWS, Azure, or GCP.
• Expertise in SIEM/SOAR platforms (e.g., Splunk, QRadar, Demisto).
• Strong proficiency in scripting languages such as Python, Bash, or PowerShell for automation.
• Deep understanding of network security, endpoint security, cryptography, and identity and access management.
• Experience with container security (Docker, Kubernetes) is highly desirable.
• Excellent problem-solving, analytical, and communication skills.
• Ability to work independently and collaboratively in a fast-paced, remote team environment.
• Relevant security certifications (e.g., CISSP, CCSP, OSCP) are a strong plus.

• Design, implement, manage, and maintain security tools and technologies, including SIEM, IDS/IPS, EDR, firewalls, and threat intelligence platforms.
• Develop, tune, and optimize security monitoring rules, alerts, and dashboards to detect potential security threats and policy violations.
• Lead and coordinate incident response activities, including investigation, containment, eradication, and recovery.
• Conduct proactive threat hunting to identify advanced persistent threats (APTs) and other sophisticated attack patterns.
• Perform vulnerability assessments and penetration testing, and track remediation efforts.
• Analyze security logs and alerts to identify malicious activity and provide detailed incident reports.
• Develop and maintain security playbooks and standard operating procedures (SOPs) for incident response and security monitoring.
• Collaborate with IT and other departments to ensure security best practices are implemented across the organization.
• Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and defensive technologies.
• Participate in security architecture reviews and provide recommendations for enhancing security controls.
• Mentor and guide junior security analysts and engineers.
• Contribute to the development and maintenance of security awareness training programs.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Minimum of 5 years of experience in information security, with a strong focus on Security Operations (SecOps) and incident response.
• Hands-on experience with SIEM solutions (e.g., Splunk, QRadar, ELK Stack), EDR tools, and other security monitoring technologies.
• In-depth knowledge of networking protocols, operating systems (Windows, Linux), and cybersecurity principles.
• Experience with scripting languages (e.g., Python, PowerShell) for automation is highly desirable.
• Strong analytical, problem-solving, and critical thinking skills.
• Excellent communication and interpersonal skills, with the ability to explain complex technical issues clearly.
• Ability to work independently and manage priorities effectively in a remote work environment.
• Relevant certifications such as CISSP, GSEC, GCIA, CEH, or OSCP are highly preferred.
• Experience with cloud security (AWS, Azure, GCP) is a plus.

• Monitor and analyze security alerts from various sources (SIEM, IDS/IPS, EDR).
• Investigate security incidents, identify root causes, and implement remediation actions.
• Develop and maintain security playbooks and incident response procedures.
• Configure, manage, and optimize security tools and technologies.
• Perform vulnerability scanning and penetration testing, and track remediation efforts.
• Contribute to threat intelligence gathering and analysis.
• Collaborate with IT and engineering teams to implement security controls.
• Develop and deliver security awareness training to employees.
• Stay current with emerging threats, vulnerabilities, and security best practices.
• Assist in the development and maintenance of security policies and standards.
• Participate in security architecture reviews and provide input on security best practices.
• On-call rotation may be required for incident response.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• CISSP, GSEC, CEH, or similar security certifications are highly desirable.
• Minimum of 6 years of experience in security operations, incident response, or a related cybersecurity role.
• Hands-on experience with SIEM tools (e.g., Splunk, QRadar), EDR solutions, and firewall management.
• Strong understanding of network protocols, operating systems, and common attack vectors.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong written and verbal communication skills, with the ability to document and explain technical findings.
• Experience working in a hybrid or remote team environment.
• Ability to work independently and as part of a team.
• Knowledge of cloud security principles (AWS, Azure, GCP) is a plus.

• Oversee and manage security monitoring tools, including SIEM, IDS/IPS, EDR, and vulnerability scanners.
• Analyze security alerts and events, and perform in-depth investigations into potential security incidents.
• Develop, refine, and execute incident response plans and playbooks.
• Conduct forensic analysis of security breaches and provide detailed reports on findings and remediation.
• Stay current with the latest threat intelligence, attack vectors, and malware trends.
• Automate security tasks and processes to improve efficiency and effectiveness.
• Collaborate with other security teams and IT departments to implement security enhancements.
• Participate in threat hunting activities to proactively identify and mitigate risks.
• Provide guidance and mentorship to junior SOC analysts.
• Contribute to the continuous improvement of the SOC's capabilities and procedures.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent experience.
• Minimum of 5 years of experience in security operations, incident response, or a related cybersecurity role.
• Strong experience with SIEM platforms (e.g., Splunk, QRadar, LogRhythm) and security analytics.
• Hands-on experience with various security tools such as EDR, IDS/IPS, firewalls, and malware analysis tools.
• Proficiency in scripting languages (e.g., Python, PowerShell) for automation.
• Deep understanding of network protocols, operating systems, and common attack methodologies.
• Experience with cloud security monitoring and incident response in AWS, Azure, or GCP environments.
• Relevant security certifications (e.g., GIAC certifications, CCSP, CISSP) are highly desirable.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and collaboration abilities, essential for a remote team.

Job Role: Information Security Engineer

Exp Required: Atleast 3+ Years of relevant work experience as Information Security engineer

Job type: Full time - Permanent

Job Location: Nairobi, Kenya

***KINDLY DO NOT APPLY IF YOU HAVE LESS THAN 3+ YEARS OF RELEVANT WORK EXPERIENCE IN INFORMATION SECURITY ENGINEER ROLE ***

***KINDLY DO NOT APPLY IF YOU ARE A NON KENYAN CITIZEN***ONLY KENYA CITIZENS WILL BE PREFERRED/CONSIDERED***

Job Summary:

Roles and responsibilities:

Security Architecture & Design

Develop, document, and maintain the enterprise security architecture, ensuring alignment with business goals and IT strategy.

Design security controlsand solutions for infrastructure, applications, networks, and cloud environments.

Evaluate new technologies and recommend secure integration into existing systems.

Implementation & Operations

Configure, deploy, and maintain securitytools (e.g., firewalls, IDS/IPS, SIEM, endpoint protection, vulnerability management).

Lead security configurations for servers, databases, applications, and network devices. Conduct regular vulnerability assessments, penetration testing, and remediation activities.

Governance, Risk, and Compliance

Assist in the development and enforcement of IT security policies, standards, and procedures.

Ensure compliance with applicable regulatory requirements (e.g., GDPR, PCI DSS, ISO 27001, Data Protection Act).

Support risk assessments and the creationof mitigation plans. Prepares the Governance, Risk, and Compliance reports

Incident Response & Monitoring

Act as a key technicallead in the detection, response, and recovery from security incidents.

Maintain and improvethe incident responseplaybook in collaboration with the outsourced CISO.

Conduct post-incident analysis to strengthen defences.

Collaboration & Reporting

Work closely with the outsourced CISO to align on security strategy and initiatives. Provide security status updates, risk assessments, and recommendations to the CIO. Partner with IT operations, development teams, and business units to embed security in all projects.

Qualifications:

• Bachelor's degreein Computer Science,Information Technology, Cybersecurity, or related field. Security certifications preferred (e.g., CISSP, CISM, CEH, CompTIA Security+, CCSP).
• Atleast 3+ years of relevant work experience as information security roles, with strong exposure to security architecture or engineering.
• Hands-on experience with security technologies (firewalls, SIEM, endpoint security, vulnerability scanners).
• Knowledge of cloud security (AWS, Azu1'e), network security, and application security best practices.
• Proven track record of working within a governance and compliance framework. Skills:
• Strong analytical, problem-solving, and troubleshooting skills. Excellent communication and documentation abilities.
• Ability to work independently and collaboratively in a hybrid oversight model.
• Technical depth in cybersecurity tools and architecture design.
• Strong understanding of IT infrastructure and software development lifecycle. Risk-based decision-making.
• Business acumen with the ability to balance security with operational needs.
• Strong communication skills
• We are looking for people who can join immediately to 30 days of notice period

Technical Skills Required: (Mandatory)

• Atleast 3+ years of relevant work experience in information security, with strong exposure to security architecture or engineering.
• Atleast 3+ Years of relevant work experience in information security roles with strong exposure to security architecture or engineering.
• Atleast 3+ Years of relevant work experience with security technologies (firewalls, SIEM, endpoint security, vulnerability scanners).
• Knowledge of cloud security (AWS, Azure), network security, and application security best practices.
• Technical depth in cybersecurity tools and architecture design.
• Strong understanding of IT infrastructure and software development lifecycle

Note:

This is a permanent full time role

Interested candidates can share your updated resume to with the below details

Name -

Tot Exp -

Rel years of wok exp as Internet Security Engineer (IT) -

Rel years of work exp in Information Security Engineering -

Rel years of work exp in Information security -

Rel years of work exp in security architecture or engineering -

Rel years of work exp in security technologies (firewalls, SIEM, endpoint security, vulnerability scanners) -

Rel years of work exp in cloud security (AWS, Azure) -

Rel years of work exp in network security -

Rel years of work exp in application security -

Rel years of work exp in cybersecurity tools -

Rel years of work exp in IT infrastructure-

Rel years of work exp in software development lifecycle -

Rel years of work exp in architecture design -

Notice period (in days) -

Current location -

Mob No -

Email id -

Current salary (in per month Kenyan Shillings) -

Expected salary ECTC (In per month Kenyan Shillings) -

Any offers on hand -

Certification if any -

Reason for leaving or job change -

Nationality -

Kenya ID No/PR ID No -

Date of Birth -

WHY INDSAFRI:

We believe anything is possible We humans have the potential to create and build anything we can imagine. we have walked the entire planet, climbed the greatest mountains, sailed once infinite oceans, inspired by birds we decided to fly, in our once impossible quest for space, now we even float in the outer space. Everything started with a simple belief that something is possible, from simple beginnings, we have come a long way, to building technology that is indistinguishable from magic. And we believe that technology is at its best when it can make people smile. If we do it with all our passion & intelligence, together nothing is impossible. How do we do it? In the future, every business will be a technology company, & the future is now. From food to finance every business is rapidly transforming & embracing cutting-edge technology at its core & good humanistic design at its heart. Indsafri can transform your business for growth, as we have done for numerous organizations big and small, by working as your trusted technology partner and bringing our deep industry experience. If you have a challenging business problem we believe there is always a solution, with the right process, talents & technology anything is possible. The Impact we create: We work with some of the Best Organizations around the world, with a distributed global network of Partners & Talents, using state-of-the-art cutting-edge Technology & High-end Human-Centered Design.

Website

• Designing, implementing, and maintaining security infrastructure, including firewalls, IDS/IPS, VPNs, and endpoint protection solutions.
• Conducting regular vulnerability assessments and penetration testing to identify and mitigate security risks.
• Developing and executing incident response plans, and leading the investigation and remediation of security breaches.
• Implementing and managing security monitoring tools and Security Information and Event Management (SIEM) systems.
• Developing and enforcing security policies, standards, and procedures.
• Providing security awareness training to employees.
• Collaborating with IT teams to ensure security best practices are integrated into all systems and applications.
• Staying up-to-date with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
• Evaluating and recommending new security technologies and solutions.
• Managing security-related projects and initiatives from inception to completion.