62 Senior Cloud Security Architect jobs in Nairobi

• Design, develop, and implement comprehensive cybersecurity architectures for cloud platforms (AWS, Azure, GCP).
• Develop and enforce security policies, standards, and procedures to protect cloud infrastructure and data.
• Conduct regular security assessments, vulnerability scans, and penetration tests to identify and remediate potential risks.
• Implement and manage security controls, including firewalls, intrusion detection/prevention systems, encryption, and identity and access management (IAM).
• Develop incident response plans and lead the response to security breaches, minimizing impact and ensuring swift recovery.
• Collaborate with development and operations teams to integrate security into the CI/CD pipeline (DevSecOps).
• Provide expert guidance on cybersecurity best practices and emerging threats to internal teams.
• Evaluate and recommend new security technologies and solutions.
• Develop and maintain security documentation, including architecture diagrams and runbooks.
• Mentor and guide junior security engineers and analysts.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field. Master's degree preferred.
• Minimum of 8 years of experience in cybersecurity, with at least 4 years in a cybersecurity architecture role focusing on cloud environments.
• In-depth knowledge of major cloud platforms (AWS, Azure, GCP) and their respective security services.
• Hands-on experience with security tools such as SIEM, IDS/IPS, WAF, vulnerability scanners, and endpoint protection.
• Strong understanding of network security, cryptography, identity and access management, and data loss prevention (DLP).
• Experience with scripting languages (e.g., Python, Bash) for automation.
• Excellent analytical, problem-solving, and strategic thinking skills.
• Strong communication and leadership skills, with the ability to articulate complex technical concepts to diverse audiences.
• Relevant certifications such as CISSP, CISM, CCSP, or cloud-specific security certifications are highly valued.
• Proven ability to work effectively in a fully remote, collaborative environment.

• Design and architect secure cloud environments (AWS, Azure, GCP) and associated infrastructure, ensuring adherence to security best practices and compliance requirements.
• Develop and implement comprehensive security policies, standards, and procedures for the organization.
• Lead threat modeling, risk assessments, and vulnerability management processes.
• Evaluate, recommend, and implement security technologies and solutions, including firewalls, IDS/IPS, SIEM, endpoint security, and encryption.
• Develop and manage security architecture roadmaps, aligning with business objectives and emerging threats.
• Provide expert guidance on secure coding practices, data protection, and access control mechanisms.
• Collaborate with engineering and operations teams to integrate security into the development lifecycle (DevSecOps).
• Respond to and investigate security incidents, developing remediation plans and lessons learned.
• Ensure compliance with relevant industry regulations and standards (e.g., ISO 27001, SOC 2).
• Develop and deliver security awareness training to employees in a remote setting.
• Mentor junior security analysts and architects, sharing knowledge and promoting a strong security culture.
• Stay current with the latest security threats, vulnerabilities, and mitigation techniques.
• Manage security vendor relationships and evaluate new security products and services.

• Bachelor's degree in Computer Science, Information Security, or a related field. Master’s degree or equivalent experience is highly desirable.
• Minimum of 8 years of experience in information security, with a strong focus on security architecture and cloud security.
• Proven experience designing and securing complex cloud environments (AWS, Azure, GCP).
• In-depth knowledge of network security, identity and access management (IAM), data loss prevention (DLP), and cryptography.
• Experience with security frameworks, compliance standards, and regulatory requirements.
• Familiarity with DevSecOps principles and practices.
• Relevant security certifications such as CISSP, CCSP, CISM are highly preferred.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently, prioritize effectively, and manage multiple projects in a remote setting.
• Strong understanding of threat intelligence and incident response processes.

• Design and architect secure cloud environments (AWS, Azure, GCP) that meet compliance and regulatory requirements.
• Develop and implement comprehensive security strategies, policies, and procedures for cloud-based systems and applications.
• Evaluate and select security technologies, tools, and services to protect the organization's data and infrastructure.
• Conduct security risk assessments, vulnerability analyses, and penetration testing.
• Lead the design and implementation of identity and access management (IAM) solutions.
• Develop incident response plans and oversee their execution in case of security breaches.
• Collaborate with development and operations teams to embed security best practices throughout the software development lifecycle (DevSecOps).
• Provide expert guidance on network security, data encryption, and threat detection.
• Stay abreast of the latest cybersecurity threats, vulnerabilities, and mitigation strategies.
• Develop security awareness training programs for employees.
• Ensure compliance with relevant industry standards and regulations (e.g., GDPR, ISO 27001).
• Mentor junior security analysts and engineers.
• Document security architectures, procedures, and controls.
• Lead security architecture reviews and provide recommendations for improvement.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master's degree is a plus.
• Minimum of 8 years of experience in cybersecurity, with at least 5 years in a security architecture role.
• Extensive experience designing and securing cloud environments (AWS, Azure, GCP).
• Deep understanding of network security principles, firewalls, intrusion detection/prevention systems (IDS/IPS), and SIEM solutions.
• Proficiency in IAM best practices, including multi-factor authentication (MFA) and single sign-on (SSO).
• Experience with scripting languages (e.g., Python, Bash) for security automation.
• Strong knowledge of common security vulnerabilities and attack vectors.
• Relevant certifications such as CISSP, CISM, CCSP, or cloud security certifications are highly desirable.
• Excellent analytical, problem-solving, and decision-making skills.
• Superior communication and interpersonal skills, with the ability to articulate technical concepts to diverse audiences in a remote setting.
• Proven ability to lead and influence technical teams.

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.

Your day at NTT DATA
The Senior Associate Collaboration Technical Services (TS) Systems Integration Specialist is a developing subject matter expert, responsible for ensuring that client solution requirements are resolved in line with Service Level Agreements (SLAs).

This role performs configurations, actions installations and attends to break/fix events.

This role works towards associate to professional level certification, whilst at the same time developing business knowledge.

Key responsibilities:

• Owns larger portions of an installation, break/fix incidents at a low to medium level of complexity during project lifecycle
• Takes responsibility for problem resolution and troubleshooting during project lifecycle
• Escalates complex problems to the relevant third parties.
• Assists with the documentation of standard operating procedures relating to installations and fixes during ops handover
• Compiles and maintains project administration (Time Capture and feedback to stakeholders)
• Conducts elementary presentations within the customer's organization.
• Expected to take leadership from senior resources on relevant technologies according to specialization and best practice.
• Performs any other related task as required.

To thrive in this role, you need to have:
Knowledge and Attributes:

• Display a strong learning orientation.
• Good verbal communication skills.
• Demonstrate a client service orientation.
• Hands-on proactive in approach.
• Knowledge on security concepts and application of those concepts.
• Ability in configuring/managing security controls, such as Firewalls, NAC, SIEM, Adaptive MFA, SSE solutions, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, Honeypots, decoys, and other security tools.
• Knowledge in security architecture.
• Knowledge on log collection mechanism such as Syslog, Log file, DB API.
• Analytical skills and ability to communicate effectively.
• Ability to solve problems in innovative ways while adhering to industry standards and practices.
• Developing understanding practices on securing data and systems by applying appropriate authentication and authorization controls.
• Developing understanding of Event Driven Development and asynchronous operations.
• Developing understanding project fundamentals which are demonstrated in the execution of installations and other assignments.
• Developing knowledge of security technologies and understanding of managed services concepts

Academic Qualifications and Certifications:

• Bachelor's degree or equivalent in Information Technology or Computing or a related field.
• Vendor certification is mandatory.
• Cisco, Check Point, Palo Alto or Fortinet Professional Level Certifications
• Cloud Security certifications and certifications like AZ-500, SC-200, Security+, CEH, CISSP, CISM or similar Certification in different networking technologies such as CCDP /CCNP Security, JNCIA, ACCA, PCNSE, PCNSA, FCP, CCSA, ITIL, Azure Security Engineer, Azure Certified DevOps Engineer, Azure Certified Network Engineer, Azure Administrator Associate, will be an advantage.

Required experience:

• Experience in Security technologies like Firewall, IPS, IDS, Proxy etc.
• Experience in technical support to clients.
• Experience in handling security incidents end to end.
• Experience in configuring/managing security controls, such as Firewall, NAC, SIEM, SSE solutions, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, Honeypots, and other security tools.

Workplace type:
Hybrid Working

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters
NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an

email address. If you suspect any fraudulent activity, please
contact us
.

• Design, implement, and maintain network security infrastructure, including firewalls, VPNs, IDS/IPS, and SIEM systems.
• Monitor network traffic for security threats and vulnerabilities.
• Conduct regular security assessments, vulnerability scans, and penetration tests.
• Develop and enforce network security policies and procedures.
• Respond to and resolve security incidents in a timely and effective manner.
• Configure and manage secure network devices (routers, switches, firewalls).
• Collaborate with cross-functional teams to integrate security into network architecture.
• Stay up-to-date with the latest security threats, trends, and technologies.
• Develop and deliver security awareness training to employees.
• Maintain accurate documentation of network security configurations and procedures.
• Ensure compliance with industry regulations and security standards.
• Provide technical expertise and support for security-related issues in a remote environment.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 4 years of experience in network security engineering.
• Strong understanding of TCP/IP, routing protocols, and network architectures.
• Hands-on experience with firewalls (e.g., Cisco ASA, Palo Alto), VPNs, and intrusion detection/prevention systems.
• Experience with SIEM tools and security monitoring platforms.
• Knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001).
• Relevant security certifications (e.g., CISSP, CCNA Security, CompTIA Security+) are highly desirable.
• Excellent problem-solving and analytical skills.
• Strong communication and interpersonal skills, particularly in a remote setting.
• Ability to work independently and as part of a distributed team.

• Design, implement, and maintain enterprise-level network security architectures, including firewalls, VPNs, intrusion detection/prevention systems, and access control mechanisms.
• Develop and enforce network security policies, standards, and procedures.
• Monitor network traffic for security breaches, anomalies, and potential threats, and respond effectively to incidents.
• Conduct regular security assessments, vulnerability scans, and penetration tests to identify and mitigate risks.
• Manage and optimize security technologies to ensure their effectiveness and efficiency.
• Lead security incident response efforts, including investigation, containment, eradication, and recovery.
• Collaborate with IT infrastructure teams to ensure secure network configurations and implementations.
• Provide technical leadership and mentorship to junior security engineers.
• Stay abreast of the latest cybersecurity threats, vulnerabilities, and technologies, and recommend appropriate countermeasures.
• Develop and deliver security awareness training to employees.
• Ensure compliance with relevant security regulations and standards.