New Post

Wednesday, July 4, 2018

Nafasi ya Kazi M-Pesa security analyst - Vodacom, Tuma Maombi Yako Mapema

M-Pesa security analyst

Role purpose:

- Responsible for coordinating, advising and managing all operations related to M-Pesa risks, Audit & Reviews (Internal and External)
- Execution of the company and Group strategy and deliverables, specifically related to Technology security, within M-Pesa systems
- Overall compliance & governance management of the M-Pesa environment
- To be the central point of contact for M-Pesa and related third-party systems security
- Key accountabilities and decision ownership: M-Pesa security
- Continuously monitor Mpesa and related third-party systems for security incidents that may happen and perform investigation
- Monitor implementation of information security and related policies, to ensure compliance of the Mpesa and related third-party systems, with the security policies
- Ensure proper implementation and change management process compliance for all planned and emergency changes in Mpesa and related third-party systems
- Analyze the feasibility and applicability of new security controls that may need to be applied in the Mpesa and third-party systems, and advise Management on the effective way of implementation
- Ensure all M-Pesa and third-party systems’ products, services and projects are compliant to the Vodacom minimum security requirements
- Perform information security awareness and training to all users of the Mpesa and third-party systems, and monitor effectiveness of the awareness and trainings
- Coordinate all internal and external audits around M-Pesa and third-party systems and processes, ensure Mpesa and third–party systems are free from known Technology audit findings and ensure all audit findings in M-Pesa and third-party systems are closed within agreed timelines
- Perform and manage the vulnerability scanning and penetration tests and resolution of vulnerabilities in Mpesa and third-party systems, per the Vodacom Vulnerability management process
- Ensure proper validation, timely completion and accuracy of audit checklists and user access rights review for M-Pesa and third-party systems
- Perform any other task that may be assigned to him/her from Technology Security management

Core competencies, knowledge and experience

Qualifications& Experience
Bachelor of Science Degree in Telecommunications, Information technology or Computer Science
Security certifications (CISA, CISM, CGIA, CISSP or equivalent)
Minimum of three years’ experience in Technology Systems security, with at least two years’ experience obtained in financial systems security, privacy and compliance areas.
Advanced knowledge of mobile telecommunications network architectures, IT systems, networks and applications.

• Good communication skills
• Excellent interpersonal skills;
• High level negotiation skills;
• Extensive computer user knowledge and skills essential; in Word, Power point and Excel
• Strong analytical skills;
• Excellent planning and organizing skills.
• Good business acumen
• Project Management skills
• Conflict resolution skills
• Ability to work independently and under pressure.

Personal Attributes
• Strategic orientation balanced with operational imperatives
• Ability to deal with issues of a complex nature
• Ability to work under constant and changing pressure.