InfoSec Governance & Technical Assurance Job at Equity Bank Kenya

InfoSec Governance & Technical Assurance Job at Equity Bank Kenya… See details on how to apply for the opportunities available at Equity Bank Kenya.


Equity Bank Kenya Limited is a financial services provider headquartered in Nairobi, Kenya. It is licensed as a commercial bank by the Central Bank of Kenya, which is the central bank and national banking regulator of Kenya.


  • Define goals, strategies, plans and governance needed to achieve the EQUITY Information Security strategic vision
  • Drive implementation of capabilities to enable optimal Information Security control environment; directly responsible for significantly contributing to the overall security posture, stability and resiliency to the EQUITY environment and security solutions
  • Create and maintain security roadmap requirements by monitoring the control environment; identifying security gaps; evaluating and implementing enhancements.
  • Translate and head the implementation of EQUITY Group requirements and programmes for EQUITY.
  • Assume accountability for control deficiencies across Technology systems by ensuring the various Technology teams implement requisite controls
  • Track and monitor EQUITY security initiatives closely with Cyber Defense & Engineering and Security Architecture teams
  • Evaluate and manage outsourced/third-party technologies and hosting environments to ensure they provide adequate protection for the processing, transmission, and storage of
  • EQUITY’s information; validate that security controls are designed properly, perform effectively and align to Group Information Security
  • Work with the application functions, network teams and IT infrastructure teams to identify and assist with the implementation of Security policy, process, people and technology improvements.
  • Analyze and provide remediation guidance for identified weaknesses or vulnerabilities; validating and verifying appropriate remediation
  • Create and continuously review security governing principles to guide information, technology, and solution decision making
  • Work closely with the various business and technology teams to identify and select the right security controls to protect EQUITY’s network & IT infrastructure, cloud and IoT solutions;
  • Partner with business leaders and peer-level managers to assess the technological cost and impact of recommended control changes, help clarify priorities, and coordinate cross-organizational consortia where common needs have been identified.
  • Drive assessments of security risk and audits; work with Technology Assurance, EQUITY Risk, Audit and Group teams to review compliance and audit requirements for Information
  • Security and ensure they are addressed; Report any residual risk or security exposures against the security standards, policies and noncompliance. Provide actionable recommendations
  • Lead security compliance requirements on highly complex projects that require in-depth domain knowledge of multiple specialized security areas.
  • Provide on-going subject matter expert level consultation to Technology leadership team, project teams, system owners, EBU Security team and other technology and network teams on relevant security controls requirements.
  • Partner with commercial CIOs and commercial teams on their go-to-market strategy and provide support in their business solutions and solutioning efforts for clients; guide and provide best practices in implementing security solutions and consult to them on their projects.
  • Serve as a technical lead and mentor to own team and other members of the information security team.
  • Foster a security-conscious culture within EQUITY Technology and Business teams.
  • Enable training for all EQUITY staff on Information Security policies and procedures.
  • Ensure that benchmarking is conducted with other companies and organizations within and outside the industry
  • Measure and report on the effectiveness of Information Security management and control activities to Senior Management and the requisite governance committees across EQUITY
  • Group, and manage the actionable outcomes related to security
  • Define security service assurance model for internal security services, Group services to subsidiaries and outsourced services, and ensure implementation thereof.

Minimum Requirements:


  • Minimum of 4 years tertiary qualification in Information Technology MBA or Masters advantageous


  • Manager with track record of at least 5 years supervisory experience.
  • At least 8 years in technical security disciplines.
  • At least 3 years in the telecommunications industry
  • Must have a wide breadth of knowledge and experience across security products, tools, and industry trends
  • Good working knowledge of current security risks, risk management and assessments
  • Ability to interact with a broad cross-section of personnel to explain and enforce security measures
  • Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters
  • Expert knowledge of regulatory compliance requirements (PCI-DSS, ISO 27001, GDPR, etc.)

How to Apply

Submit your CV and Application on Company Website: Click Here

Application Deadline: 28th February 2022.

Leave a Reply Protection Status