Senior ICT Officer – Cyber Security (1 Position) - Job Grade 5 (Permanent &Pensionable;) REF: VA/2/11/2025

ABOUT THE COMPANY

JKUAT Enterprises Limited (JKUATES), a state corporation and a subsidiary of JKUAT,
is a leading consulting and recruitment services provider. Our primary focus is creating
and commercializing high-quality solutions and products through cutting-edge research,
training, and innovation to transform individuals and institutions in Africa and beyond.
JKUAT Enterprises nurtures a culture of innovation, empowering aspiring entrepreneurs
and businesses through our comprehensive and practical solutions. They actively
bridge the gap between the University and industry, government, and other
stakeholders, fostering accelerated development in all sectors. With a dedication to
excellence, we offer a diverse range of services, including business solutions, HR,
talent acquisition, research and development, and technology transfer.

JOB SUMMARY

This role is responsible for safeguarding the organization’s ICT assets by implementing and monitoring cybersecurity controls, conducting vulnerability assessments, and responding to security incidents. It involves developing user awareness programs, performing security audits, testing ICT systems for risks, and ensuring compliance with security standards. The position also supports cybersecurity architecture design, incident response planning, and contributes to the operation of the Sector Cyber Security Operations Centre.

RESPONSIBILITIES

1. Implement security controls and technologies to protect the ICT assets in line with existing security policies.2. Develop and deliver information security training and awareness programs to the end users.3. Monitor the security systems and logs for suspicious activity.4. Carry out ICT assets vulnerability assessment and implement security measures to close any identifies gaps to ensure resilience in the ICT assets.5. Investigates and responds to security incidents.6. Conduct security audits and ensure compliance with policies and standards.7. Monitor and evaluate the effectiveness of the information and cybersecurity controls put in place and take necessarily interventions to closes any identified gaps.8. Prepare and test the computer incident response plans in collaboration with other ICT team members.9. Undertake cybersecurity testing of ICT products and ensure risks are managed and coordinate signoff done before go-live.10. Carry out and provide technical support to resolve cyber defense incidents and identify cyber capabilities strategies for custom hardware and software development requirements.11. Document and address Authority’s information security, cybersecurity architecture, and systems security engineering requirements throughout the acquisition life cycle.12. Perform integration of cybersecurity designs for systems and networks with multilevel security requirements.13. Examine network topologies to understand data flows through the network, reconstruct a malicious attack or activity based off network traffic and Identify network mapping and operating system (OS) fingerprinting activities, determine tactics, techniques, and procedures (TTPs) for intrusion sets.14. Participate in the implementation and monitoring of Sector Cyber Security Operation Centre.Qualifications1. At least four (4) years relevant work experience.2. Bachelors degree in Computer Science, Information Communication Technology, Electronics Engineering or any other ICT related disciplines with a bias in computer science from a recognized institution. 3. Masters degree in Computer Science, Information Communication Technology, Electronics Engineering or any other ICT related disciplines with a bias in computer science from a recognized institution, will be an added advantage.4. Certifications in information and cyber Security.5. Attended Supervisory course lasting not less than two (2) weeks, from a recognized institution.6. Demonstrated results in work performance.7. Fulfilled the requirement of Chapter Six of the Constitution of Kenya.

REQUIRED SKILLS

Cyber security, Information security, System and network security, Safety systems

REQUIRED EDUCATION

Post-graduate education