ICT/IT/Web

Sidian Bank Hiring IT Security Officer

by Adonai
written by Adonai

JOB PURPOSE

The job holder will be responsible for providing continuous independent assurance on the bank’s Information Security as regards confidentiality, integrity and availability of the IT infrastructure, processing systems and related resources in line with the Bank Information Security Policy.

KEY RESPONSIBILTIES 

  • Monitoring
  • Analysis 
  • Reporting
  • Review Implementation
  • Personal Leadership & Development
  • Risk & Compliance

Monitoring

  • Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers and other systems and in databases and other data repositories.
  • Ensure all systems interfaces are secured from any intrusion and all users’ activities are logged and users’ activities in systems are detailed and traceable.

Analysis

  • Periodically perform vulnerability assessments & penetration tests on Bank systems and technology, identifying vulnerabilities and recommendations on closure of these vulnerabilities.
  • Analysis of data from user and network monitoring to ascertain legitimacy of high priority activities noted.

Reporting 

  • Actively review application, server, database, network logs and audit trails and report.
  • Provide and analyze departmental self-assessment reports on all systems controls to assist in focused controls.
  • Pro-actively and comprehensively provide guidance on tools required to effectively manage and control bank systems environment.
  • Be involved in providing forensic data to all reviewers i.e. investigators, analysts etc.

Review

  • Review all issues logged by users and analyze trends as relates to systems security management.
  • Initiate, facilitate and promote activities within the bank to create information security awareness to various groups of bank staff and stakeholders.
  • Be involved and provide security guidance during technology projects, systems deployment, upgrades and changes.
  • Continuous review of systems at all levels i.e. servers, applications, database, network devices etc., identify risks and make recommendations on closure of the risks. 

Implementation

  • Manage all external parties’ access to bank infrastructure and systems and have detective measures for intrusion.
  • Ensure that the bank infrastructure network LAN / WAN is secure from any intrusion.
  • Establish and maintain the Bank’s Business Continuity Plan and Disaster Recovery Plan.
  • Spearhead a compliance program to achieve legal obligations and business goals by prioritizing initiatives and assessing the evaluation, deployment, and management of current and future technologies.
  • Establish and implement the Bank’s security documents (policies, standards, baselines, guidelines and procedures).
  • Enforce patches, version management and virus control. 

Pro-actively enforce and plan to ensure all noted risks are mitigated and potential threats addressed immediately.

Personal Leadership & Development:

  • Manage self by showing drive and motivation, an ability to self-reflect and a commitment to learning.
  • Communicate effectively communicate clearly, actively listen to others, and respond with understanding and respect.
    • Commit to Customer Service: provide, customer-focused services in line with banking sector and organizational objectives – adherence to the bank customer service charter and ensure personal accountability so as to meet the laid down Service Level Agreements (SLA) and work within stipulated Turn Around Time (TAT).
  • Work Collaboratively Collaborate with others and value their contribution.
  • Deliver Results Achieve results through the efficient use of resources and a commitment to quality outcomes.
  • Think and solve problems, analyze and consider the broader context to develop practical.
  • Keeping abreast with staff communications, attending staff meetings – morning huddles and weekly progress meetings.
  • Responsible for own career within the bank and preparing an annual Personal Development Plan (PDP) and ensuring its actualization.
  • Adherence to the banks policies and procedures, dress code, code of conduct, HR policies and procedures and follows laid down grievance and disciplinary procedure to ensure a conducive work environment.
  • Closure of identified deficiencies from concluded audits, correction within stipulated timelines, and ensure no repeat findings.
  • Live the brand values as a Sidian Bank brand ambassador and always project the right image of the bank to both staff and customers.

Risk & Compliance

  • Attend training and maintain knowledge of and comply with all bank policies and procedures including Anti Money Laundering/Countering Financing of Terrorism/Countering Proliferation Financing laws, rules and regulations.
  • Participate or undertake Anti Money Laundering/Countering Financing of Terrorism/Countering Proliferation Financing bank programs on a regular basis e.g. taking attestations, self-assessment tests, filling in compliance questionnaires as required.
  • Comply and not to knowingly participate or assist in any violation of Anti Money Laundering/Countering Financing of Terrorism/Countering Proliferation Financing laws, rules, regulations or internal policies, procedure and guidelines.
  • Report suspected money laundering cases to their respective heads of units or to the Money Laundering Reporting Officer as soon as such incidents occur immediately with a clear basis of suspicion.  
  • Avoid Misrepresentation and Malicious Reporting – knowingly making a false, fictitious or fraudulent representation e.g. statement, report, document.
  • Avoid Tipping Off customers being investigated so as not to knowingly prejudice an investigation by disclosing information.
  • Not provide advice or other assistance to individuals who attempt to violate or avoid Anti Money Laundering/Countering Financing of Terrorism/Countering Proliferation Financing laws, rules, regulations or corporate policies.
  • Respond to all AML/CFT/CPF queries when requested by Compliance Unit to allow the bank to comply with the requirements of The Anti-Money Laundering and Combating Financing of Terrorism Amendment Act.
  • Co – operate fully with regulators and law enforcement agents and make available required documents and information.

DECISION MAKING AUTHORITY

  • Escalation of any security breach or incidents to senior management.
  • Enhancing operation excellence through exemplary quality of service.

ACADEMIC BACKGROUND

  • University degree in Information Technology or Computer Science from a recognized university.

WORK EXPERIENCE

  • A minimum of three (3) years’ experience in IT with at least one (1) year experience in IT Security.
  • Awareness and exposure in IT security with experience working in financial institutions.

SKILLS & COMPETENCIES

  • Ability to use specialized tools and softwares to analyse, detect, investigate and report on various vulnerabilities and threats
  • Knowledge and experience with several relevant IT products i.e. SIEMs, DAMs/WAFs, Antivirus, Firewalls & Patch Management
  • Keen attention to detail with a time-conscious approach.
  • Ability to work under pressure in a competitive environment.

PROFESSIONAL CERTIFICATION

  • Relevant professional certifications.

Apply

You may also like

Safaricom Hiring Data Scientist, Gen AI – Nairobi,...

Safaricom Hiring Engineer – Service Operations Center, Kenya

One Acre Fund Hiring Information Security Specialist –...

We DO NOT support recruitment agents/entities that demand money or any other favors from applicants to expedite hiring process. We shall not be liable to any money, favors and valuables lost during the process. Incase you see it on this site, report it to us via our Facebook page Pata Kazi so as to take the necessary action. Report the matter to the police asap.

 

More from Us: OYK-CVs | Internshub

 

© 2025 All Rights Reserved. Web Design by Clinet Online

Facebook X-twitter Telegram Whatsapp

Soledad is the Best Newspaper & Magazine WordPress Theme with tons of customizations and demos ready to import. This theme is perfect for blogs and excellent for online stores, news, magazine or review sites.

More About Us

Subscribe

Adblock Detected

Please support us by disabling your AdBlocker extension from your browsers for our website.