The Senior Specialist – Cloud & Network Cyber Security is responsible for driving increased security of our Cloud and network end-to-end within the M-Pesa processes. This role supports Cloud Security and Network Architecture across all projects, deploys cloud and network solutions fit for purpose, and implements automation of network-related controls across both cloud and on-premises environments.
Key Responsibilities
Cloud & Network Operations
Drive increased security of our Cloud and network end to end within the M-Pesa processes.
Support with Cloud Security and Network Architecture to all projects.
Provide High-Level Designs (HLDs), Low-Level Designs (LLDs), define templates, modularize and industrialize configuration items and implementation.
Deploy cloud and network solutions fit for purpose, including understanding how our services/applications layer will run across the network (capacity, capability, utilization).
Implement automation of Network related controls across the organization on both cloud and on-premises.
Implement evolved cybersecurity initiatives such as A.I., Zero Trust, and others that touch on Network Security.
Apply shared responsibility models in cloud environments as well as Privileged Access Management and Cloud Threat prevention on Azure Cloud.
Ensure comprehensive network documentation for both cloud and on-premises environments.
Ensure network harmonization and standardization across the region, local market, and cloud environments.
Act as a Single Point of Contact (SPOC) in Cyber Security for one African Market and backup SPOC for another, assisting with remediation of vulnerabilities, patching, and systems hardening.
Maintain and support various cybersecurity systems including Firewalls, WAF, Antivirus, Logging Solutions, Network, and Host IDS/IPS.
Troubleshoot and remediate Level 1/2/3 issues impacting Cybersecurity operations.
Facilitate implementation, management, and optimization of Cyber Security policies, standards, and procedures.
Provide support for cyber incident detection and response.
Drive standards of excellence to achieve the Cyber Security strategy and implement actions to close MPA risks, audits, and reviews (Internal and External).
Business Impact
Coordinate optimization of the Operational & Monitoring cyber security baselines (CSB) controls across all MPA relevant business areas and processes associated with Network Security.
Design and implement network security measures to protect data, software, and hardware.
Monitor network traffic for unusual activity and respond to security breaches.
Conduct regular security audits and vulnerability assessments for perimeter security and Network-related vulnerabilities such as unsecure ports.
Collaborate with IT and other departments to ensure comprehensive security measures.
Stay updated with the latest security trends, threats, and technology solutions.
Support all internal and external audits around Technology systems and processes, ensuring systems are free from known technology audit findings and ensuring all findings are closed within agreed timelines.
Stakeholder & Vendor Management
Ensure compliance with Legal, Regulatory, and key stakeholders’ requirements across the Technology domains.
Monitor compliance of the Cyber security managed services contract to ensure it is within agreed SLA.
Support validation, timely completion, and accuracy of Technology audit checklists and user access rights reviews.
Coordinate analytical processes and incident response measures.
Ensure proper implementation and change management processes compliance for all planned and emergency changes in Technology systems.
Innovation & Change
Contribute to the Security and Privacy by Design Assurance (SPDA) processes of the GDPR and business requirements.
Continually review and enforce security policies and controls to support business requirements and changing security landscapes.
Set up analytics frameworks and tools.
Drive continuous improvement through simplification of key cyber security processes.
Drive internal and third-party service review meetings covering performance, service improvements, quality, and processes.
Support information security awareness and training to all MPA users and third-party vendors.
Requirements and Qualifications
Education: Degree in Electrical Engineering, Computer Science, Information Technology, or an equivalent Technology-related degree.
Experience: Minimum of 5 years of Network Security experience with Intrusion Prevention Systems, Web Application Firewalls, VPN administration, Content Filters, and Security Scanning tools.
At least 2 years of focused Network Security Solutions implementation and maintenance.
In-depth knowledge of network protocols, firewalls, VPNs, and security tools.
Certification: At least one professional Network Security Qualification (e.g., CompTIA Security+, CCNA Security).
Advanced competencies in Network Security.
Strong project management skills and proven task execution capabilities.
Proactive approach to staying ahead of potential security threats.
Analytical thinking and problem-solving mindset.
How to Apply
To apply for this position, please visit the official Safaricom recruitment platform by clicking the following link: Safaricom Application Portal. Ensure your application is submitted before the deadline on May 28, 2026.
