National Bank ICT Risk Manager Job in Kenya

National Bank – A Subsidiary of KCB Group Plc

Position Title: Manager, ICT Risk

Job Ref No. HR/021/2020

Available Position: 1

Division: Risk

Location: Head Office

Reporting to:  Head Risk Management

Position Scope: The successful candidate will be responsible for supporting risk identification and management process across all aspects of Information Technology for the Bank, updating the management on the results of the risk assessment and making recommendations for mitigations to protect the Bank systems or cover potential financial losses.

Key Responsibilities:

  • Develop and implement an ICT Risk Management Framework
  • Conduct system vulnerability tests in line with Bank policies and global standards and report to management on vulnerability and protection against malware and hackers
  • Identify and assess risks, design mitigation controls and monitor the risks till closure
  • Clearly document and define risks and their potential impact alongside the statistical probability of such an event, and identify systems affected by the defined risk
  • Develop ICT risk management guidelines to be used by all Divisions of the Bank
  • Conduct system penetration testing for various stages of the system development lifecycle to ensure integrity, availability and assurance of the systems and technical processes
  • Perform a review on compliance with ICT security policies across the technology ecosystem
  • Evaluate security policy, processes and procedures for completeness and assess its applicability
  • Work closely with business by identifying risks in products that use digital platforms
  • Conduct fraud assessments on technology platforms as per fraud risk management policy
  • Keep abreast with current advances in all areas of ICT security
  • Continuously evaluate communication security, data vulnerability, business continuity; and examine employee compliance with security controls and deficiencies

Skills & Experience:

  • Bachelor’s Degree in Computer related field
  • 3-5 years of related experience with an emphasis on ICT Risk
  • Masters’ degree would be added advantage
  • Certified in Risk and Information Systems Control (CRISC) or equivalent preferred;
  • Ability to conduct data mining, data analysis and reporting
  • An intermediate understanding of networking concepts
  • Intermediate understanding of security appliances including but not limited to Intrusion Detection System (IDS), Intrusion Prevention System (IPS), Firewall, and Security Information and Event Management (SIEM) systems;
  • Analytical, objective and ability to describe complex technical concepts and ideas in non-technical terms.
  • Good communication & interpersonal skills

How to Apply:

If you believe you meet the criteria given above, please log to the link provided and submit your application with a detailed CV addressed to the Director Human Resources by Tuesday, 9th June 2020.

https://nbk.taleo.net/careersection/ex/jobsearch.ftl

Please note that applications received after the deadline will not be considered.

Only shortlisted candidates will be contacted for the next stage/s of the recruitment and selection process.

National Bank of Kenya is an Equal Opportunity Employer.
Let us grow together


Job Summary:
Job Title
Job Category
Job Type
Company / Organization
Approx. Salary
Job Opening Date
Job Expiry Date
Job Details
Job Location
Nairobi

Nairobi, Kenya
N/A

Nairobi County

Kenya
ICT and Technology
Updated: June 5, 2020 — 7:14 am