KC

Senior Manager, Information Risk

Full-time Kenya, KE
Posted 6 days, 4 hours ago 9 views 0 applications

Job Description

KEY RESPONSIBILITIES: MUST NOT BE MORE THAN 10

Provide leadership in individual Information Risk / Technology related Risk and advisory assignments for the assigned scope.

  • Conduct Technology and Information risk assessments through Information Risk Managers and Analysts to develop the annual Group Information Risk action plan.
  • Provide leadership in cyber security risk related reviews and advisory assignments, IT general and IT application control risk reviews on information systems and Technology environment to give assurance on the effectiveness and efficiency of the preventive control and compliance to KCB Group policies, International Standards (ISO 27001, ISO 22301, PCI DSS, NIST 800 series, etc.), and Regulatory requirements and guidelines.
  • Provide leadership in emerging risks, threat hunting, Cloud computing & AI/ML by working with business functions in Technology in providing mitigations.
  • Providing regular updates to group senior leadership and the board on the latest trends.
  • Perform ongoing risk-based project assurance and post implementation reviews on Technology related projects.
  • Coordinate Red Team exercises across the group and SWIFT attestation program in timely manner.
  • Tracking of outstanding risks in DORCCO, GORCCO, CAB meetings.
  • Be a member of CAB representing the Information Risk Department.
  • Conduct, follow up and validate closure of PIR & KCSA review issues action plans as per stakeholder engagement agreements and track to completion within agreed timelines.

Design and monitor implementation of Information risks awareness program across KCB Group

  • Responsible for oversight and challenge of Information risks across KCB Group, including Information Security, Technology and Data quality risks.

MINIMUM POSITION REQUIREMENTS

Academic & Professional

  • Particulars Detail Specific Field or Qualification Need
    Education Bachelor’s Degree Information Technology, Electrical Engineering, Computer Science, Business, Mathematics & Computer Science, Information Systems, BBIT RQ
    Professional Qualifications – Information Risk, Security and BCM Relevant certifications in Information Security and Risk Management knowledge areas such as CRISC, CISM, CISSP, CISA or equivalent. RQ
    Master’s Degree Information Technology, MBA, Computer Science, Information Systems, AA

Experience

  • Total Minimum No of Years’ Experience Required Minimum Need Type
    Detail No of Years Need
    Experience Information Risk /or IT Security and/or IT Audit 6 ES
Apply Now ↗

How well do you match?

Get an instant AI match score for this role — free, takes 3 minutes.

Tailor your CV for this role

The concierge rewrites your whole CV and writes a matching cover letter for this job — opens right here, nothing to paste.

Tailor My CV to This Job ✍️

Join Our Kenya Channels

Get free job alerts on your phone

MJC
ECHO
Your MJC Assistant

I'm ECHO, your MJC career assistant. I can help you find jobs, explore career tools, and connect with opportunities across Africa.

How was your experience with ECHO?