Cybersecurity Specialist, Identity & Access Management at KCB Bank Kenya

KEY RESPONSIBILITIES


Lead the Bank's development of IAM strategy, architecture and Zero Trust Principles for Identity and acess for all users (internal, external and customers)
Architect and oversee implementation of MFA, SSO, federation, and password less authentication across the Group.
Design and support implementation of solutions for the Bank's privileged access management program in line with the Bank's privileged access management policies and ensure the principle of least privilege.
Collaborate with business, compliance, and audit stakeholders to align IAM practices with regulatory and operational requirements. Design and enforce RBAC/ABAC models, ensuring segregation of duties, least-privilege enforcement and secure privilege access management.in projects from inception through to successful implementationin a bid to ensure compliance to set identity/privileged access management standards
Assess the sufficiency of policies, standards and procedures relative to identity and privileged access management best practices.
Define and maintain identity lifecycle management processes covering joiner, mover, and leaver scenarios, with automated provisioning and de-provisioning. Provide input into technology security risk control self-assessments by leveraging specialized knowledge in identity/privileged access management.
Conduct research and development on new areas in identity/privileged access management and perform knowledge sharing with Technology team across the group.
Lead training and awareness programs to improve identity hygiene across staff and vendors.


DAILY RESPONSIBILITIES


Lead the development of IAM strategy and architecture.
Align IAM initiatives with business and compliance goals.
Design scalable, secure, and user-friendly IAM systems.
Collaborate across departments to ensure integration and adoption.
Monitor IAM maturity and drive continuous improvement.


MINIMUM POSITION QUALIFICATION REQUIREMENTS

Academic & Professional


Education Bachelors Degree BSc. IT or equivalent RQ


Professional Qualifications


At least one: CISA or CISM or CISSP
Security+, CCSP, IAM certification from Microsoft, Oracle, Okta, Azure, AWS or Google RQ AA
Masters Degree MBA/MSc AA


Experience

Total Minimum No of Years' Experience Required 5

Detail Minimum No of Years Need Type[5]


Experience in Information Security 3 ES
Experience in Identity and Access Management 2 ES
Experience in Banking Operations 1 DE
Experience in Project Implementation and user training 1 DE
Experience in large busy technology environment 3 ES