New Post

Friday, July 13, 2018

Nafasi ya M-Pesa security analyst - Vodacom, Tuma Maombi Yako Mapema

M-Pesa security analyst

Role purpose:
• Responsible for coordinating, advising and managing all operations related to M-Pesa risks, Audit & Reviews (Internal and External)
• Execution of the company and Group strategy and deliverables, specifically related to Technology security, within M-Pesa systems
• Overall compliance & governance management of the M-Pesa environment
• To be the central point of contact for M-Pesa and related third-party systems security

Key accountabilities and decision ownership: M-Pesa security
• Continuously monitor Mpesa and related third-party systems for security incidents that may happen and perform investigation
• Monitor implementation of information security and related policies, to ensure compliance of the Mpesa and related third-party systems, with the security policies
• Ensure proper implementation and change management process compliance for all planned and emergency changes in Mpesa and related third-party systems
• Analyze the feasibility and applicability of new security controls that may need to be applied in the Mpesa and third-party systems, and advise Management on the effective way of implementation
• Ensure all M-Pesa and third-party systems’ products, services and projects are compliant to the Vodacom minimum security requirements
• Perform information security awareness and training to all users of the Mpesa and third-party systems, and monitor effectiveness of the awareness and trainings
• Coordinate all internal and external audits around M-Pesa and third-party systems and processes, ensure Mpesa and third–party systems are free from known Technology audit findings and ensure all audit findings in M-Pesa and third-party systems are closed within agreed timelines
• Perform and manage the vulnerability scanning and penetration tests and resolution of vulnerabilities in Mpesa and third-party systems, per the Vodacom Vulnerability management process
• Ensure proper validation, timely completion and accuracy of audit checklists and user access rights review for M-Pesa and third-party systems
• Perform any other task that may be assigned to him/her from Technology Security management
Core competencies, knowledge and experience

Qualifications& Experience
• Bachelor of Science Degree in Telecommunications, Information technology or Computer Science
• Security certifications (CISA, CISM, CGIA, CISSP or equivalent)
• Minimum of three years’ experience in Technology Systems security, with at least two years’ experience obtained in financial systems security, privacy and compliance areas.
• Advanced knowledge of mobile telecommunications network architectures, IT systems, networks and applications.

• Good communication skills
• Excellent interpersonal skills;
• High level negotiation skills;
• Extensive computer user knowledge and skills essential; in Word, Power point and Excel
• Strong analytical skills;
• Excellent planning and organizing skills.
• Good business acumen
• Project Management skills
• Conflict resolution skills
• Ability to work independently and under pressure.

Personal Attributes
• Strategic orientation balanced with operational imperatives
• Ability to deal with issues of a complex nature
• Ability to work under constant and changing pressure.