Principal Officer, Cyber Secure By Design Job Safaricom

October 21, 2025 •

Posted 4 months ago

Job Description

IT Jobs. Safaricom Kenya jOBS

Job Description

Reporting to the Senior Manager, Cyber Secure by Design, the position holder will lend support in ensuring all new and existing systems/products/services comply with Safaricom’s security policies & standards and other industry best practices e.g. ISO27001, PCI DSS, etc… The officer will also support the Safaricom bug bounty program and take part in driving DevSecOps initiatives in the organization

Key accountabilities and decision ownership

Health and Safety

  • Uphold the company code of conduct, policies and procedures, ensuring integrity and accountability in every aspect of your work.
  • All employees have a responsibility to adhere to safety, health, and wellbeing policies, guidelines and procedures in all actions and decisions

Project Assurance (Waterfall & Agile)

  • Conduct security reviews of all projects before go-live and ensure remediation of critical/high/Medium risk defects before go-live.
  • Timely submission of good quality reports to the project teams and weekly updates to SLT
  • Timely and complete handover of all completed projects to cyber Prevent & Defense
  • update project folder with all updated project documentation

Penetration Testing and Red teaming exercise

  • Scope and conduct a penetration test and red team exercise on existing systems throughout a financial year
  • Timely Submission of good quality reports and presentation of findings to system custodians and blue team
  • Follow up with responsible teams on the remediation of critical/high risk issues within 30 days and medium/low risk issues within 90 days
  • Provide weekly update on status of open issues in the issue tracker for weekly reporting

Core competencies, knowledge and experience:

Customer Obsession

  • Deepen team connection to our customers and communities.
  • Foster authentic relationships with customers and partners that build trust.
  • Explicitly take customer-centric decisions and take personal ownership to achieve results.
  • Simplify processes through digitalisation and promote a digital mindset and digital first customer experience.
  • Stay focused on the big priorities, know when to make meaningful trade-offs and demonstrate brilliant execution.
  • digital adoption, using learnings to drive simplicity, scale and efficiency.

Collaboration

  • Articulate your team s role in making our strategy happen, prioritizing and aligning resources with current and future needs.
  • Actively collaborate to break silos and hold your team accountable to do the same.
  • Develop others to make the most of their talents and coach them to take ownership to get things done.
  • Create an inclusive environment ensuring the safety and wellbeing of others.
  • Live our Purpose and demonstrate the highest Standard of integrity.

Qualifications

Must have technical / professional qualifications:

  • Degree in Information Security/Computer Forensics/Computer Science/Information Technology or other relevant Technical Degree
  • Information security certifications e.g. CEH/CISSP/CISM/CISA/GIAC/CPTP/OSCP
  • Advanced Networking certifications: CCNA/CCNP/CCSP/CCIE preferred
  • Certifications in Microsoft Windows and Linux/Unix Operating Systems
  • Demonstrate competency in the use and administration of ethical hacking tools e.g. KALI Linux, Metasploit, Nexpose, Nessus, Nmap, BurpSuite etc
  • Minimum of 5 years working experience in Information Systems Security e.g. Ethical Hacking, Penetration Testing, Vulnerability Assessments, ICT Audits, Pre-and-Post Implementation System Reviews etc
  • Minimum of 5 years working experience in Networking and Operating Systems e.g. Cisco, Huawei, Windows (All), Unix, Linux etc
  • Minimum of 3 years working experience in Web and Mobile applications technologies e.g. Java, Python, PHP, Javascript, CSS, Apache, Nginx, IIS etc
  • Working knowledge of databases e.g. Oracle, MSSQL, MongoDB, Postgress etc.. will be an added advantage
  • Working knowledge of Virtualization & Microservices technologies e.g. VMware, Open shift, Kubernetes, Docker etc will be an added advantage
  • Working knowledge of Cloud technologies e.g. AWS and Azure will be an added advantage
  • Working knowledge and experience in DevSecOps technologies and practices i.e. AGILE, Jenkins, Jira, Github, Gitlab etc will be an added advantage
  • Working knowledge of Mobile and GSM technologies e.g. Android, IOS, 2G, 3G, LTE, USSD etc will be an added advantage
  • Excellent communication skills and a good team player
  • Excellent time management skills i.e. getting things done in a timely manner
  • Excellent report writing and presentation skills
  • Very analytical and keen on details

How to Apply

Click Here to Apply

The Principal Officer, Cyber Secure By Design Job Safaricom appeared first on Corporate Staffing Services – Jobs In Kenya. Recruitment Agency In Kenya.. Click Corporate Staffing Services – Jobs In Kenya. Recruitment Agency In Kenya. for the original.