695 Security Solutions jobs in Kenya

Job Purpose

The role holder is responsible for ensuring information systems developed and deployed meet the Bank's set cybersecurity policies, standards, and requirements as well as complying to applicable cybersecurity regulations and industry standards.

The role holder will ensure that security requirements are well captured and embedded in the SDLC process for all technology initiatives, secure coding practices are adhered to, and secure software and application configurations are maintained.

The specialist will carry out security testing across all technology stacks (mobile, web applications, APIs/ Microservices, code, web servers, containers, servers, databases, virtualization environments, network devices and connectivity) within assigned scrums and projects.

Responsibilities

·   Work with scrums and project teams to ensure that security requirements are adequately captured during requirements analysis phase.

·   Provide input into the secure design of information systems architecture during the project lifecycle.

·   Ensure that access to the Bank's systems during the project lifecycle by staff, contractors and vendors is secure and based on least privilege principle.

·   Enforce the implementation and adoption of the Bank's minimum security baseline standards across all technologies in use.

·   Facilitate the identification of security vulnerabilities through performing or coordinating security assessments or vulnerability assessment and penetration testing (VAPT).

·   Ensure security tools and checks are running as expected within all pipelines, review security reports from them.

·   Report any scrums & projects security gaps identified and follow up for closure as per the Bank's standards and procedures.

·   Identify any security violations and incidents during the project lifecycle and coordinate the response process.

·   Ensure effective integration of the Bank's security tools to protect, detect, and respond to any attempted intrusions prior to and during project go live.

·   Work together with scrums & projects units to ensure that user access matrices are well defined and in line with defined roles and responsibilities.

·   Participate in deployment sessions and perform post implementation review (PIR) to ensure that security configurations are done and gaps noted in testing do not permeate into production.

·   Embed the bank's cybersecurity awareness program during the project lifecycle, targeting secure coding training.

·   Provide scheduled security reports to the cybersecurity project lead, project team and steering committee on progress of security workstream activities.

Skills and Experience

·   Bachelor's degree in computer science, IT, or other STEM related Degree.

·   Master's degree in information security, Cyber Security or Related Fields will be an added advantage.

·   Information security certification in either of the following CISA/ CISM/ CISSP/CRISC/Security+; as well as testing certifications such as CSSLP/CEH/OSCP/ CPT/ GPEN/ GWAPT/eWPT/eJPT.

· years' experience in technology.

· years' experience in information security.

· years' experience in Application Security, within Secure SDLC and DevSecOps environments.

·   Comprehensive technical expertise in a variety of DevSecOps toolkits, including Ansible, Jenkins, Gitlab, Azure DevOps, Trivy, SonarQube, Terraform, Git/Version Control Software, or comparable technologies.

·   Familiarity with information security frameworks and standards such as PCI-DSS, ISO 27001, SABSA etc.

·   Familiarity with API Security, Container Security, Cloud Security

·   Experience in Project Implementation and user training.

·   Ability to multi-task, respond well to pressure and deadlines, influence others, work well individually and in a team environment.

·   Strong verbal and written communication skills.

·   Strong analytical and problem-solving skills, and the ability to work collaboratively with cross-functional teams.

Location: Nairobi

Terms
: Full Time, On site; Contract duration: 1 Year with possibility of extension

Please share your cv to:

Emai
l:

Subject
: Prefix the subject matter as –
Cyber Security Analyst (DevSecOps)

Format:
PDF ONLY (Any other format will be automatically disqualified)

Resume:
If sending via email, ensure your resume is clearly saved with your full names correctly indicated e.g. John Smith Cv not "Latest Cv" as this will lead to automatic disqualification

Deadline:
21
st
/ October /2025

N/B:
For this position, kindly
only
apply if your profile matches the above criteria and note the job is contract based

Are you passionate about inclusion, early years education, and making a lasting difference in children's lives? We have an exciting opportunity for a dedicated and motivated Early Years SENDCo to join our nurturing and caring team at the University's Early Years Centre.

This position offers a chance to shape futures, lead with heart, and be part of a setting that truly values curiosity, compassion, and connection.

As our SENDCo, you will play a key role in ensuring that every child, whatever their starting point or need, thrives in an environment filled with wonder, warmth, and opportunity.

You will be the lead who coordinates our SEND provision across the centre, ensuring high-quality care, support, and education for all children. This is a dynamic and rewarding leadership role that calls for a calm, reflective, and empathetic practitioner who can inspire others through best practice and meaningful relationships.

Your main roles and responsibilities will include ensuring you champion our inclusive practice and ensure all children's individual needs are recognised and supported, whilst working closely with families, staff, and external professionals to create tailored learning journeys.

You will model excellence in early years education, inspiring colleagues to reflect and grow, whilst fostering a peaceful, secure, and joyful environment where children and staff feel valued and supported.

You will be a strong communicator and compassionate leader who thrives on collaboration and reflection. You will bring:

• A Level 3 qualification (NVQ, CACHE Diploma, NNEB, or equivalent).
• Experience supporting children with additional needs and a passion for inclusive practice.
• Commitment, creativity, and enthusiasm to make every day an opportunity for growth and discovery.
• The ability to inspire others, staying calm under pressure and leading with empathy.

A satisfactory Enhanced DBS check is required.

Contract: 12 Months maternity cover

At our University of Southampton - Early Years Centre, you will find a supportive, forward-thinking community where every voice matters. You will have the freedom to innovate the encouragement to develop, and the joy of seeing your impact every single day.

Together, we will nurture confident, curious, and kind little learners, and the adults who guide them.

Email details to a friend

Apply Online

Further Details

• Job Description and Person Specification

Apply by 11.59 pm GMT on the closing date. For assistance contact Recruitment on or quoting the job number.

Share
View All Vacancies

• Assist in monitoring network traffic and security logs for suspicious activity.
• Analyze security alerts and escalate potential incidents to senior analysts.
• Support incident response activities under the guidance of experienced professionals.
• Learn and utilize various cybersecurity tools and technologies.
• Assist in conducting vulnerability assessments and penetration testing activities.
• Help develop and maintain security documentation and procedures.
• Stay updated on the latest cybersecurity threats, trends, and best practices.
• Participate in team meetings and contribute to security discussions.
• Assist with the implementation of security controls and policies.
• Undergo continuous training and skill development in cybersecurity.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Foundational knowledge of networking concepts, operating systems, and IT infrastructure.
• Basic understanding of cybersecurity principles and common threats.
• Familiarity with security tools (e.g., SIEM, IDS/IPS, firewalls) is a plus.
• Strong analytical and problem-solving abilities.
• Excellent communication and teamwork skills.
• Eagerness to learn and adapt to new technologies in a rapidly evolving field.
• Ability to work independently and manage time effectively in a remote setting.
• Relevant certifications (e.g., CompTIA Security+) are advantageous.
• Demonstrated interest in cybersecurity through personal projects, capture-the-flag (CTF) competitions, or online courses.

• Lead and mentor a team of cyber security analysts, providing guidance and technical expertise.
• Develop, implement, and manage comprehensive security monitoring and incident response plans.
• Conduct in-depth analysis of security alerts, logs, and network traffic to detect and investigate potential threats.
• Perform vulnerability assessments and penetration testing to identify security weaknesses.
• Proactively hunt for advanced threats within the organization's network and systems.
• Design and implement security controls and technologies to safeguard against cyber-attacks.
• Stay current with the latest security threats, vulnerabilities, and mitigation techniques.
• Develop and deliver security awareness training to employees.
• Collaborate with IT and other departments to ensure security best practices are integrated into all systems and processes.
• Contribute to the development and refinement of security policies and procedures.
• Manage relationships with third-party security vendors and service providers.
• Prepare detailed reports on security incidents, vulnerabilities, and overall security posture for management.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master's degree preferred.
• Minimum of 8 years of experience in cyber security, with at least 3 years in a lead or senior analyst role.
• Proven experience in threat detection, incident response, vulnerability management, and security architecture.
• In-depth knowledge of network security, firewalls, IDS/IPS, SIEM solutions, and endpoint security.
• Strong understanding of common attack vectors, malware, and security exploits.
• Relevant certifications such as CISSP, OSCP, CEH, GIAC, or equivalent are highly desirable.
• Excellent analytical, problem-solving, and critical thinking skills.
• Exceptional communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical audiences.
• Experience working in a remote-first environment, with strong self-discipline and time management abilities.
• Proficiency in scripting languages (e.g., Python, PowerShell) is a plus.

• Monitor blockchain networks and applications for security anomalies and threats.
• Conduct security audits and vulnerability assessments of smart contracts and decentralized applications.
• Investigate and respond to security incidents, including data breaches and unauthorized access.
• Develop and implement security policies, procedures, and best practices for blockchain environments.
• Perform threat intelligence gathering and analysis related to cryptocurrency and blockchain security.
• Collaborate with development teams to ensure secure coding practices and system design.
• Stay up-to-date with the latest trends and advancements in blockchain security and cryptography.
• Prepare detailed security reports and present findings to stakeholders.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
• Proven experience in cybersecurity, with a strong emphasis on blockchain technology and smart contract security.
• In-depth knowledge of cryptography, network security, and common security vulnerabilities.
• Familiarity with various blockchain platforms (e.g., Ethereum, Solana, Polygon) and their security considerations.
• Experience with security assessment tools and techniques.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong communication and interpersonal skills, with the ability to explain technical concepts clearly.
• Ability to work independently and manage time effectively in a remote setting.

• Develop and implement comprehensive cloud security strategies and architectures.
• Conduct regular security audits, risk assessments, and compliance checks.
• Manage and monitor security systems, including SIEM, IDS/IPS, and endpoint protection.
• Lead incident response efforts, including investigation, containment, and remediation.
• Design and enforce security policies and procedures across the organization.
• Provide security guidance and support to development and operations teams.
• Stay updated on emerging threats and vulnerabilities, and implement proactive defenses.
• Contribute to the development of security awareness training programs.
• Ensure compliance with relevant data protection regulations.
• Collaborate effectively with cross-functional teams in a remote environment.

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 5+ years of experience in information security, with a focus on cloud security.
• Proficiency in cloud security platforms (AWS, Azure, GCP).
• Experience with security tools such as SIEM, IDS/IPS, WAF, and endpoint security solutions.
• Strong understanding of network security principles, cryptography, and authentication protocols.
• Experience in incident response, digital forensics, and threat intelligence.
• Excellent analytical, problem-solving, and communication skills.
• Relevant security certifications (e.g., CISSP, CCSP, cloud-specific security certifications) are a plus.

• Design, implement, and manage security controls for cloud environments (AWS, Azure, GCP).
• Develop and enforce cloud security policies, standards, and procedures.
• Conduct security assessments and audits of cloud infrastructure and applications.
• Implement and manage cloud-native security services and third-party security tools.
• Develop and maintain infrastructure-as-code for security configurations.
• Automate security tasks and workflows to improve efficiency and reduce risk.
• Respond to and investigate security incidents within the cloud environment.
• Collaborate with development and operations teams to ensure secure cloud deployments.
• Provide technical guidance and training on cloud security best practices.
• Stay abreast of evolving cloud security threats and compliance requirements.