327 Senior Information Security Analyst jobs in Kenya

Our client is looking for a proactive and skilled Senior Information Security Analyst to bolster their cybersecurity defenses. This role is integral to protecting the organization's digital assets, ensuring the confidentiality, integrity, and availability of sensitive information. The ideal candidate will possess a deep understanding of cybersecurity principles, threat landscapes, and vulnerability management. Key responsibilities include monitoring security systems for suspicious activities, conducting in-depth security investigations, and responding to security incidents. You will perform regular vulnerability assessments and penetration tests, identify potential weaknesses, and develop remediation plans. This role also involves staying abreast of the latest cybersecurity threats and trends, implementing security best practices, and contributing to the development and refinement of security policies and procedures. You will collaborate with IT teams to ensure secure system configurations and assist in security awareness training for employees. Experience with security information and event management (SIEM) tools, intrusion detection/prevention systems (IDPS), and firewalls is essential. A strong understanding of network security, cloud security, and data privacy regulations is highly desirable. This position requires excellent analytical and problem-solving skills, attention to detail, and the ability to work effectively both independently and as part of a team. This role offers the flexibility of remote work, allowing you to contribute to enhancing security posture from anywhere, supporting operations in Nakuru, Nakuru, KE .

Introduction:

Amref Health Africa, on behalf of the Kenya Ministry of Health, State Department for Public Health and Professional Standards, invites proposals from eligible candidates for consultancy to conduct Kenya's Climate Change and Health Vulnerability and Adaptation Assessment (CHVA).

Background and Context:

Climate change is significantly increasing health risks in Kenya, amplifying existing challenges and threatening Universal Health Coverage (UHC). The country faces a rise in vector- and waterborne diseases (like malaria, dengue, and cholera due to increased vector suitability, higher temperatures, rainfall changes, and impacts on water quality). Extreme weather events (flash floods and prolonged droughts) further worsen water and air quality (leading to respiratory issues) and increase cases of heat-related illness, food insecurity, mental health challenges, injuries, and deaths. These impacts disproportionately affect vulnerable groups (children, women, and the elderly in poor rural areas). Kenya's already strained health system is ill-equipped to handle this growing demand, making proactive intervention critical.

Kenya's commitment under the COP26 Health Programme includes conducting a Climate Change and Health Vulnerability and Adaptation Assessment, which is to inform the country's first Health National Adaptation Plan (HNAP). This RfP therefore aims to support Kenya's Ministry of Health to complete a comprehensive Climate Change and Health Vulnerability and Adaptation Assessment (CHVA).

Expected profiles of the eligible entities:

The applicants should demonstrate the following;

• Proven Experience: Minimum 7–10 years in conducting public health consultancies in the areas of HIA, ESIAs, climate health modelling, preferably with climate health projects financed by the Dutch government, World Health Organization, World Bank, IFC, UNICEF or other multilateral institutions.
• Proven track record of completing public health and climate health consultancies, with particular focus in assessing public health impacts and developing health impact assessment and management plans and climate change vulnerability and adaptation assessments in low- and middle-income countries, particularly in sub-Saharan Africa.
• Experience with projects funded by international financial institutions, such as the World Bank, World Health Organization, Global Fund and familiarity with the WHO's guide on climate vulnerability and adaptation assessments and the World Bank's Environmental and Social Framework (ESF), among other global best frameworks.
• Regulatory Compliance: Familiarity with: World Bank ESF (ESS1-ESS10), WHO climate change and health vulnerability Assessment Guidelines.
• Kenyan health, environmental and climate change laws (e.g., Public Health Act, Health Act, Climate Change Act, County health laws).
• Technical Expertise: Consultancy team to have experience in health impact assessment, environmental health and climate change specialization.
• Knowledge of Good Best Practices in the development of health policies and undertaking of health impact assessment in the African Region.
• Stakeholder Engagement: Demonstrated ability to conduct public consultations with affected communities, government agencies, and civil society.
• Communication skills: to manage the project's visibility and media relations.
• Preferred credentials: Past Projects: Examples of completed HIA/CHVA/C-HNAP or any health project or policy impact assessment reports.

Submission of Full Proposal:

Completed proposals are to be enclosed in a plain sealed envelope(s) clearly marked with the RFP name and RFP reference number and should be addressed to the following address:

Group Financial Resources Director

Amref Health Africa in Kenya

P.O. Box ,

NAIROBI

Or be deposited at the
Amref Health Africa - Tender Box
at the
Main Reception
so as to be received on or before
Monday, October 27, 2025
, at
12:00 noon EAT.
Electronic bidding will not be permitted. Late applications will be rejected.

Interested eligible bidders are also invited to a virtual pre-tender conference on
Thursday, October 16, 2025,
at
10:00 AM (EAT)
. Register in advance for this meeting through the link below:

After registering, you will receive a confirmation email containing information about joining the meeting.

Amref reserves the right to accept or reject any or all bids and is not bound to give reasons for its decision.

Introduction:

Amref Health Africa, on behalf of the Kenya Ministry of Health, State Department for Public Health and Professional Standards, invites proposals from eligible candidates for consultancy to conduct Kenya’s Climate Change and Health Vulnerability and Adaptation Assessment (CHVA).

Background and Context:

Climate change is significantly increasing health risks in Kenya, amplifying existing challenges and threatening Universal Health Coverage (UHC). The country faces a rise in vector- and waterborne diseases (like malaria, dengue, and cholera due to increased vector suitability, higher temperatures, rainfall changes, and impacts on water quality). Extreme weather events (flash floods and prolonged droughts) further worsen water and air quality (leading to respiratory issues) and increase cases of heat-related illness, food insecurity, mental health challenges, injuries, and deaths. These impacts disproportionately affect vulnerable groups (children, women, and the elderly in poor rural areas). Kenya's already strained health system is ill-equipped to handle this growing demand, making proactive intervention critical.

Kenya's commitment under the COP26 Health Programme includes conducting a Climate Change and Health Vulnerability and Adaptation Assessment, which is to inform the country's first Health National Adaptation Plan (HNAP). This RfP therefore aims to support Kenya’s Ministry of Health to complete a comprehensive Climate Change and Health Vulnerability and Adaptation Assessment (CHVA).

Expected profiles of the eligible entities:

The applicants should demonstrate the following;





Proven Experience: Minimum 7–10 years in conducting public health consultancies in the areas of HIA, ESIAs, climate health modelling, preferably with climate health projects financed by the Dutch government, World Health Organization, World Bank, IFC, UNICEF or other multilateral institutions.

Proven track record of completing public health and climate health consultancies, with particular focus in assessing public health impacts and developing health impact assessment and management plans and climate change vulnerability and adaptation assessments in low- and middle-income countries, particularly in sub-Saharan Africa.

Experience with projects funded by international financial institutions, such as the World Bank, World Health Organization, Global Fund and familiarity with the WHO's guide on climate vulnerability and adaptation assessments and the World Bank’s Environmental and Social Framework (ESF), among other global best frameworks.

Regulatory Compliance: Familiarity with: World Bank ESF (ESS1-ESS10), WHO climate change and health vulnerability Assessment Guidelines.

Kenyan health, environmental and climate change laws (e.g., Public Health Act, Health Act, Climate Change Act, County health laws).

Technical Expertise: Consultancy team to have experience in health impact assessment, environmental health and climate change specialization.

Knowledge of Good Best Practices in the development of health policies and undertaking of health impact assessment in the African Region.

Stakeholder Engagement: Demonstrated ability to conduct public consultations with affected communities, government agencies, and civil society.

Communication skills: to manage the project’s visibility and media relations.

Preferred credentials: Past Projects: Examples of completed HIA/CHVA/C-HNAP or any health project or policy impact assessment reports.





How to apply

Interested eligible applicants may download the complete Request for Proposal document from the Amref Health Africa website at: of Full Proposal:

Completed proposals are to be enclosed in a plain sealed envelope(s) clearly marked with the RFP name and RFP reference number and should be addressed to the following address:

Group Financial Resources Director

Amref Health Africa in Kenya

P.O. Box ,

NAIROBI

Or be deposited at the Amref Health Africa - Tender Box at the Main Reception so as to be received on or before Monday, October 27, 2025, at 12:00 noon EAT. Electronic bidding will not be permitted. Late applications will be rejected.

Interested eligible bidders are also invited to a virtual pre-tender conference on Thursday, October 16, 2025, at 10:00 AM (EAT). Register in advance for this meeting through the link below:

>> registering, you will receive a confirmation email containing information about joining the meeting.

Amref reserves the right to accept or reject any or all bids and is not bound to give reasons for its decision.

Our client is seeking a highly skilled Senior Information Security Threat Analyst to join their advanced, fully remote cybersecurity operations center (SOC). In this critical role, you will be responsible for identifying, analyzing, and responding to sophisticated cyber threats targeting our organization's digital assets. You will leverage cutting-edge tools and techniques to monitor security alerts, investigate potential breaches, and develop proactive defense strategies. The ideal candidate possesses extensive experience in threat intelligence, incident response, malware analysis, and security forensics. You should have a deep understanding of various attack vectors, threat actor methodologies, and the latest cybersecurity trends. Your responsibilities will include threat hunting, vulnerability assessment, and developing actionable intelligence to enhance our security posture. Collaboration is essential, and you will work closely with security engineers, incident responders, and other stakeholders to protect the organization. As a remote analyst, you must demonstrate exceptional analytical skills, meticulous attention to detail, and the ability to work effectively under pressure in a 24/7 operational environment. Strong communication skills are vital for reporting findings and recommendations to both technical teams and senior management. We are looking for a proactive and experienced professional who can stay ahead of emerging threats and contribute significantly to our defense mechanisms. The ability to analyze complex data sets, interpret security logs, and develop effective mitigation strategies will be paramount. This is an excellent opportunity to apply your expertise in a challenging and rewarding remote role.

Key Responsibilities:

• Monitor security alerts and events from various sources (SIEM, IDS/IPS, EDR) to detect and identify potential cyber threats.
• Conduct in-depth investigations into security incidents, including malware analysis, forensic examination, and root cause determination.
• Perform threat hunting activities to proactively identify hidden threats within the network environment.
• Analyze threat intelligence from various feeds and sources to understand emerging threats and attacker tactics, techniques, and procedures (TTPs).
• Develop and implement detection rules and signatures to enhance security monitoring capabilities.
• Create comprehensive reports on security incidents, threat analyses, and recommendations for mitigation.
• Collaborate with incident response teams to contain, eradicate, and recover from security breaches.
• Stay current with the latest cybersecurity threats, vulnerabilities, and defensive technologies.
• Develop and maintain security documentation, playbooks, and procedures.
• Provide expert guidance and support to junior security analysts and other team members.
• Contribute to the continuous improvement of the SOC's tools, processes, and capabilities.
• Participate in tabletop exercises and incident response drills.

Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Minimum of 6 years of experience in information security, with a significant focus on threat analysis and incident response.
• Proven experience in analyzing malware, conducting forensic investigations, and understanding network protocols.
• Proficiency with security tools such as SIEM platforms (e.g., Splunk, QRadar), EDR solutions, and packet analysis tools (e.g., Wireshark).
• Strong understanding of common attack vectors, cyber threat landscapes, and threat actor TTPs.
• Experience with threat intelligence platforms and methodologies.
• Excellent analytical, problem-solving, and critical thinking skills.
• Exceptional written and verbal communication skills, with the ability to articulate technical findings clearly.
• Demonstrated ability to work independently and effectively in a remote, potentially 24/7 operational environment.
• Relevant certifications such as GIAC GCIH, GCFA, CEH, or CISSP are highly desirable.

Our client is seeking a highly vigilant and skilled Information Security Analyst specializing in Threat Detection to join their robust, fully remote security operations team. This critical role involves the continuous monitoring of security systems, identifying potential threats, analyzing security incidents, and implementing measures to protect the organization's digital assets. The ideal candidate possesses a deep understanding of cybersecurity principles, threat landscapes, incident response protocols, and various security technologies. You will be at the forefront of defending against cyberattacks, working collaboratively with security professionals across different time zones in a remote setting. The ability to analyze complex security data, make rapid decisions under pressure, and communicate findings clearly is paramount.

Responsibilities:

• Monitor security alerts and logs from various sources (SIEM, IDS/IPS, firewalls, endpoints) to detect potential security incidents.
• Analyze security events and incidents to determine scope, impact, and root cause.
• Investigate and respond to security breaches and cyber threats in a timely and effective manner.
• Develop and refine threat detection rules, signatures, and use cases.
• Conduct vulnerability assessments and penetration testing (or coordinate with external teams).
• Implement and manage security tools and technologies.
• Contribute to the development and maintenance of incident response plans and playbooks.
• Perform forensic analysis of compromised systems when necessary.
• Stay abreast of the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Educate internal teams on security best practices and awareness.
• Prepare detailed reports on security incidents and mitigation strategies.
• Ensure compliance with relevant security standards and regulations.
• Collaborate with IT and other departments to implement security controls.

This is a fully remote position, offering the flexibility to work from your preferred location. Our client is committed to a secure and productive remote work environment, utilizing cutting-edge tools to ensure data protection and operational efficiency. While the role is remote, it is conceptually linked to our client's security operations center near **Mlolongo, Machakos, Kenya**, providing an opportunity to play a vital role in global cybersecurity. We seek proactive and analytical individuals dedicated to safeguarding digital infrastructure.

Our client is seeking a highly skilled and vigilant Lead Information Security Analyst to join their cybersecurity team. This fully remote position is crucial for safeguarding our digital assets and ensuring the integrity, confidentiality, and availability of our information systems. You will be responsible for monitoring security threats, analyzing vulnerabilities, and developing strategies to mitigate risks. Your core duties will include performing security assessments, incident response, and penetration testing. You will also be involved in developing and implementing security policies, procedures, and best practices to maintain a robust security posture. A key focus of this role is threat intelligence gathering and analysis, staying ahead of emerging threats, and proactively defending against cyber-attacks. The ideal candidate will possess extensive knowledge of cybersecurity principles, network security, cryptography, and common attack vectors. Hands-on experience with security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), and endpoint detection and response (EDR) solutions is essential. Certifications such as CISSP, CISM, or CEH are highly desirable. This position requires exceptional analytical and problem-solving skills, coupled with outstanding communication abilities to effectively report findings and collaborate with technical and non-technical stakeholders in a remote environment. We are looking for a self-motivated, detail-oriented individual who can work independently and as part of a distributed team, maintaining a high level of situational awareness and a proactive approach to security. Your expertise will be instrumental in protecting our organization from evolving cyber threats and ensuring a secure digital landscape.

Our client is seeking a highly experienced Senior Information Security Analyst to join their fully remote security operations center (SOC). This critical role involves proactively identifying, analyzing, and responding to information security threats and vulnerabilities across the organization's digital landscape. You will be instrumental in developing and implementing threat intelligence strategies, monitoring security alerts, and conducting incident response activities. As a remote specialist, you will utilize advanced security tools, collaborate with global security teams, and contribute to enhancing the overall security posture of the company. Your responsibilities will include performing security risk assessments, analyzing malware, investigating security breaches, and developing effective mitigation and remediation plans. The ideal candidate will possess a deep understanding of cybersecurity principles, network security, incident response frameworks, and threat intelligence methodologies. Proficiency in security information and event management (SIEM) systems, intrusion detection/prevention systems (IDPS), and vulnerability assessment tools is mandatory. Excellent analytical, problem-solving, and critical thinking skills are essential. This role demands strong communication abilities, both written and verbal, for reporting on security incidents and recommending protective measures. We are looking for a candidate with a Bachelor's degree in Computer Science, Information Security, or a related field, and a minimum of 7 years of experience in information security. Relevant certifications such as CISSP, CISM, or GIAC are highly desirable. Experience with cloud security and incident response in a remote setting is a plus. This fully remote position will provide vital security expertise and support for our operations, with a strategic nexus near Kitale, Trans-Nzoia, KE . Join our client in safeguarding critical information assets from evolving cyber threats.

Our client is actively seeking a dedicated and insightful Information Security Threat Intelligence Analyst to join their fully remote security operations center. In this critical role, you will be at the forefront of identifying, analyzing, and disseminating actionable threat intelligence to proactively defend our client's global infrastructure. You will be responsible for gathering intelligence from diverse sources, assessing the credibility and relevance of threats, and translating complex data into clear, concise, and actionable insights for security teams and leadership. This position requires a sharp analytical mind, a passion for staying ahead of evolving cyber threats, and the ability to work independently in a distributed team environment. You will contribute significantly to the development and refinement of threat detection and prevention strategies, ensuring our client remains resilient against sophisticated cyber adversaries. The ideal candidate possesses a strong understanding of geopolitical landscapes, attacker methodologies, and the tools and techniques used in modern cyber warfare.

Key Responsibilities:

• Collect, analyze, and interpret threat intelligence data from various internal and external sources (e.g., OSINT, commercial feeds, dark web monitoring, government agencies).
• Identify emerging threats, vulnerabilities, and attack trends relevant to our client's industry and technology stack.
• Develop and maintain profiles of threat actors, their motivations, capabilities, and tactics, techniques, and procedures (TTPs).
• Produce regular intelligence reports, briefings, and alerts for different audiences, including technical security teams and executive leadership.
• Integrate threat intelligence into security operations processes, such as SIEM correlation rules, IDS/IPS signatures, and threat hunting playbooks.
• Collaborate with incident response teams to provide context and support during active security incidents.
• Build and maintain relationships with external threat intelligence sharing communities and partners.
• Evaluate and recommend new threat intelligence tools and technologies.
• Conduct research on specific threats, malware, and attacker groups as needed.
• Contribute to the development of strategic security recommendations based on threat landscape analysis.
• Ensure the timely dissemination of critical threat information to relevant stakeholders.

Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, International Relations, or a related field, or equivalent professional experience.
• 3-5 years of experience in threat intelligence, cybersecurity analysis, or a related field.
• Demonstrated ability to analyze large datasets and extract meaningful intelligence.
• Strong understanding of cyber threat actor methodologies, malware analysis, and digital forensics.
• Familiarity with OSINT gathering techniques and tools.
• Excellent written and verbal communication skills, with the ability to present complex information clearly.
• Proficiency in scripting languages (e.g., Python) for data analysis and automation is a plus.
• Experience with threat intelligence platforms (TIPs) is desirable.
• Ability to work independently and manage time effectively in a remote setting.
• Curiosity and a proactive mindset towards understanding the evolving threat landscape.

This role is based in Kakamega, Kakamega, KE and is a fully remote position.

Our client, a leading financial institution in **Nakuru, Nakuru, KE**, is seeking a vigilant and skilled Cybersecurity Threat Analyst to bolster their security operations center. This role is critical in protecting the organization's digital assets from evolving cyber threats. The successful candidate will be responsible for monitoring security alerts, analyzing potential threats, investigating security incidents, and recommending mitigation strategies. You will work with cutting-edge security tools and technologies, including SIEM platforms, intrusion detection systems, and threat intelligence feeds. A deep understanding of common attack vectors, malware analysis, and network security principles is essential. The ability to analyze large volumes of data, identify patterns, and report findings clearly and concisely is paramount. You will play a key role in developing and refining security policies and procedures, conducting vulnerability assessments, and participating in incident response activities. This position requires a proactive mindset, a strong sense of urgency, and the ability to remain calm under pressure. The ideal candidate will possess a passion for cybersecurity, a commitment to continuous learning, and excellent analytical and problem-solving skills. You will collaborate with various IT teams to ensure the security posture of the organization is robust and resilient. This is an exciting opportunity to join a dedicated security team and make a significant contribution to safeguarding critical infrastructure. Your expertise will be vital in identifying, assessing, and responding to cyber threats in real-time. The role involves staying abreast of the latest threat landscapes and proactively recommending defensive measures to counter emerging risks. This is a hands-on role requiring technical proficiency and a strategic approach to cybersecurity.