ASSISTANT DIRECTOR, CYBERSECURITY SUPERVISION

ABOUT THE COMPANY

The Insurance Regulatory Authority is a statutory government agency established under the Insurance Act (Amendment) 2006, CAP 487 of the Laws of Kenya to regulate, supervise and develop the insurance industry. It is governed by a Board of Directors which is vested with the fiduciary responsibility of overseeing operations of the Authority and ensuring that they are consistent with provisions of the Insurance Act.

JOB SUMMARY

DIRECTORATE: Directorate of SupervisionDEPARTMENT: Cybersecurity SupervisionGRADE/LEVEL: IRA 4IMMEDIATE SUPERVISOR: Deputy Director, Cybersecurity SupervisionFor appointment to this grade, an officer must have: Nine (9) years cumulative relevant work experience, three (3) years of which should have been at a level of Principal Cybersecurity Officer or in a comparable and relevant position.Bachelor’s degree in any of the following: Electrical Engineering, information technology, information systems security, software engineering, or equivalent qualification from a recognized institution.Master’s degree in any of the following: Electrical Engineering, information technology, information systems security, software engineering, or equivalent qualification from a recognized institution.

RESPONSIBILITIES

Job SpecificationsThe duties and responsibilities will entail:Supervising implementation, compliance monitoring, and quality assurance of approved cybersecurity policies, strategies, and standards for the insurance industry.Coordinating research and analysis on cybersecurity, related technologies and advising on new trends.Supervising gathering and dissemination of technical information on cyber security incidents, vulnerabilities, security fixes and other security information, as well as issuing alerts and warnings.Coordinating and supervising cybersecurity incident management activities within the insurance industry, including review of response effectiveness.Supervising cybersecurity analysis and forensic investigations.Supervising compliance with approved cybersecurity systems and Critical Infrastructure Protection (CIP) requirements by regulated entities.Providing supervisory oversight and quality assurance of the Insurance Industry Cybersecurity Operations Centre (SOC).Reviewing and disseminating of insurance industry Cybersecurity posture reports.Coordinating cybersecurity advocacy, awareness, and capacity building in the insurance industry.Reviewing effectiveness of cybersecurity systems.Reviewing backup schedules of cybersecurity monitoring and management systems.Liaising with other SOCs, and industry stakeholders on matters of Cybersecurity monitoring and management.Reviewing specifications for acquisition of cybersecurity systems.Supervising implementation of cybersecurity systems.Supervising development, implementation and review of Computer Incident Response (CIR) Manual and Standard Operating Manual.Supervising development, monitoring and implementation of the insurance industry Cybersecurity Policies.Supporting coordination and implementation of approved partnerships and collaborative initiatives with cybersecurity stakeholders.Leadership Course lasting not less than four (4) weeks from a recognized institution.Certificate in at least two (2) of the following:Cisco Certified Network Associate (CCNA);Certified Information Systems Auditor (CISA);Certified Information Security Manager (CISM);Certified Information Systems Security Professional (CISSP);Certified Ethical Hacker (CEH);Any other equivalent qualification from a recognized institution.Membership to a relevant professional body where applicable and in good standing.Competencies and skillsCommunication skillsInterpersonal skillsAnalytical skillsReport writing skillsPresentation skillsConflict management skillsNegotiation skillsLeadership skillsMentorship and coaching skillsHOW TO APPLYThe interested applicants to submit their applications online by filling the form provided on the IRA website.All applications must be received by close of business at 5.00 pm on Monday, 16th February, 2026.COMPLIANCE REQUIREMENTIn accordance with The Employment (Amendment) Act, 2022, the Authority will require candidates it will enter into a written contract of service with to comply with Chapter Six of the Constitution by submitting mandatory compliance and clearance certificates from the relevant entities.Insurance Regulatory Authority is an Equal Opportunity Employer committed to diversity, gender equality and persons with disabilities (PWDs) are encouraged to apply. Any form of canvassing will lead to automatic disqualification and only shortlisted candidates will be contacted for interviews.IRA IS ISO 9001:2015 CERTIFIED

REQUIRED SKILLS

Information security, Risk analysis, System and network security, Fraud risk assessment and management, Risk management, System (IT) auditing, Security operations, System administration, Compliance

REQUIRED EDUCATION

Bachelor's degree