M-Pesa is a pioneering fintech business and global market leader in mobile money. Starting from 2007 as a convenient means by which the unbanked and underbanked could make digital payments, M-Pesa has now grown to offer over 60 million active customers Financial Services, Enterprise, Merchant and Retail solutions. We are proud of our work in enabling the digital economy in our markets, and in driving financial inclusion. M-Pesa Africa is the largest FinTech providing services to more than 60 million customers and 5 million businesses solutions across Financial Services, Enterprise, Merchant and Retail. We are now well on our way to becoming the preferred digital payment method across the markets that we serve, for both in-store, remote and online payments.

With headquarters in both Nairobi and Johannesburg, we serve markets that include Kenya, Tanzania, DRC, Lesotho, Egypt, Ethiopia, and Mozambique.

We are a united, energetic and passionate team. A place where leaders coach, teams connect, and everyone is empowered to go further, faster. A place where heroes become superheroes; through growth, opportunity, and the chance to work with the best minds in FinTech.

Reporting to Manager Cyber Security Prevent (MPA), as the Senior Specialist – Cloud & Network CyberSecurity, you will be responsible for the overall High/Low Level Design and working configuration for the network security capabilities that support reliable and secure hosted and collaborative services across the whole M-Pesa Africa business.

More specifically you will:
• Drive increased security of our Cloud and network end to end within the M-Pesa processes;
• Support with Cloud Security and Network Architecture to all projects.
• Provide HLDs, LLDs, define templates, modularize and industrialize configuration items and implementation.
• Deploy cloud and network fit for purpose including understanding of how our services/applications layer will run across the network (capacity, capability, utilization)
• Implement automation of Network related controls across the organization on both cloud and on-premises;
• Implement evolved cybersecurity initiatives such as A.I., Zero Trust and others that touch on Network Security.
• Experienced with Azure security services (IAM, Security Groups, VPC, WAF, etc.).
• Experienced with Cloud Security Operations, Cloud Security Posture Management (CSPM) and Cloud
Workload Protection.
• Familiar with shared responsibility models in cloud environments as well as Privileged Access management, Cloud Threat prevention on Azure Cloud
• Responsible to ensure a network documentation for both cloud and on-premises;
• Responsible to ensure network harmonization and standardization across the Region / the local market and cloud environments;
• Being a SPOC in Cyber Security for one African Market and backup SPOC for another, assisting with remediation of vulnerabilities, patching and systems hardening;
• Maintenance and support of various cybersecurity systems including (but not limited to) Firewalls, WAF,
Antivirus, Logging Solutions, Network and Host IDS/IPS.
• Troubleshoot and remediate Level 1/2/3 issues impacting Cybersecurity operations
• Facilitate implementation, management and optimization of Cyber Security policies, standards and procedures;
• Provide support for cyber incident detection and response;
• Drive standards of excellence to achieve the Cyber Security strategy
• Implement actions to close MPA risks, Audit & Reviews (Internal and External)
• Improvement of the Cyber security posture of the company through several initiatives, including but not limited to Cyber Security Baselines

Impact on the business
▪ Coordinate optimization of the Operational & Monitoring cyber security baselines (CSB) controls across all MPA relevant business areas and processes associated to Network Security;
▪ Design and implement network security measures to protect data, software, and hardware.
▪ Monitor network traffic for unusual activity and respond to security breaches.
▪ Conduct regular security audits and vulnerability assessments for perimeter security and Network related vulnerabilities such as unsecure ports.
▪ Develop and enforce security policies and procedures.
▪ Collaborate with IT and other departments to ensure comprehensive security measures.
▪ Stay updated with the latest security trends, threats, and technology solutions.
▪ Provide training/Knowledge share and support to staff on network security practices.
▪ Support all internal and external audits around Technology systems and processes, ensure these systems are free from known Technology audit findings and ensure all audit findings in these systems are closed within agreed timelines

Customers, supplier and third parties
▪ Ensure compliance with Legal, Regulatory and key stakeholders’ requirements across the Technology domains
▪ Responsible for monitoring of compliance of the Cyber security managed services contract, to ensure it is within agreed SLA
▪ Support for validation, timely completion and accuracy of Technology audit checklists and user access rights reviews
▪ Coordination of analytical processes and incident response measures
▪ Ensure proper implementation and change management processes compliance for all planned and emergency changes in Technology systems

Innovation and change
▪ Contribute to the Security and Privacy by Design Assurance (SPDA) processes of the GDPR and business requirements
▪ Continually review and enforce security policies and controls, to support business requirements and changing security landscapes
▪ Set-up of analytics framework and tools
▪ Drive continuous improvement through simplification of key cyber security processes Communication
▪ Drive internal and third-party service review meetings covering performance, service improvements, quality and processes
▪ Make recommendations for Cyber security service Improvement Plans and ensure actions are followed through to completion in a timely manner
▪ Support information security awareness and training to all MPA users and third-party vendors
▪ Driving incident planned and emergency communication processes to both internal and external audience

▪ Degree in Electrical Eng/Computer Science/information Technology or equivalent Technology-related
degree
▪ Proven experience as a Network Security Senior Specialist or similar role.
▪ In-depth knowledge of network protocols, firewalls, VPNs, and security tools.
▪ At least one professional Network Security Qualification: ComptiaSecurity+/CCNA Security
▪ Advanced competencies in Network Security
▪ Minimum of 5 years Network Security experience with Intrusion Prevention Systems, Web Application Firewalls, VPN administration, Content Filters, Security Scanning tools.
▪ Minimum of 2-year focused Network Security Solutions implementation and maintenance.
▪ Good communication skills and team player.
▪ Experience in the use of security tools.
▪ Project management skills, and proven task execution (getting things done).
▪ Proactive approach to staying ahead of potential security threats.
▪ Superior Report writing skills.
▪ Analytical Thinking.