Visit our website

logo

View all jobs

Data Security Engineer

Nairobi, Nairobi
Job Title             Data Security Engineer
Department/ Division Group Information Security
Job Level Specialist
Reports to Senior Manager - GRC & Technical Assurance
Direct Reportees: None
 
The ideal candidate will have a strong background in data protection, security architecture, and threat management. As a Data Security Engineer, you will be responsible for designing, implementing, and maintaining the security infrastructure to safeguard our data assets against unauthorized access, breaches, and other security threats.
Role Deliverables:
  • Security Architecture and Implementation:
  • Design and implement robust security measures, including firewalls, encryption, and intrusion detection/prevention systems.
  • Develop and maintain security policies, procedures, and protocols to protect data assets.
  • Conduct regular security assessments and vulnerability testing to identify and mitigate risks.
  • Data Protection and Compliance:
  • Ensure compliance with data protection regulations, such as GDPR, CCPA, HIPAA, etc.
  • Implement data loss prevention (DLP) strategies and technologies.
  • Monitor and respond to data breaches and security incidents, performing root cause analysis and remediation.
  • Threat Management:
  • Monitor network traffic and system activity for unusual behavior or potential threats.
  • Investigate and respond to security incidents, coordinating with other IT and security teams as necessary.
  • Develop and maintain incident response plans and conduct regular drills to ensure readiness.
  • Security Tools and Technologies:
  • Manage security tools and technologies, including SIEM, antivirus, endpoint protection, and encryption solutions.
  • Evaluate and recommend new security technologies and solutions to enhance the security posture.
  • Collaboration and Training:
  • Work closely with other IT teams, developers, and business units to integrate security into all aspects of the organization.
  • Provide training and awareness programs for employees on data security best practices and policies.
  • Collaborate with external vendors and partners to ensure third-party security measures are in place and effective.
Knowledge and Experience
  • Education and Experience:
  • Bachelor’s degree in Computer Science, Information Security, or a related field (Master’s preferred).
  • 3+ years of experience in data security, cybersecurity, or related roles.
  • Technical Skills:
  • Proficiency in security technologies such as firewalls, IDS/IPS, SIEM, DLP, and encryption.
  • Experience with cloud security platforms (AWS, Azure, Google Cloud) and tools.
  • Strong understanding of network protocols, operating systems, and database security.
  • Certifications:
  • Relevant certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable.
  • Soft Skills:
  • Excellent problem-solving and analytical skills.
  • Strong communication and interpersonal skills.
  • Ability to work independently and as part of a team.
  • Detail-oriented with a commitment to maintaining high standards of data security.

Key Critical Competencies
  • Technical Proficiency: Expertise in security technologies (firewalls, IDS/IPS, SIEM, DLP, encryption) and cloud security platforms (AWS, Azure, Google Cloud).
  • Analytical Thinking and Problem-Solving: Strong skills in analyzing security issues, identifying threats, and designing effective mitigation strategies.
  • Regulatory and Compliance Knowledge: Deep understanding of data protection regulations (e.g., GDPR, CCPA, HIPAA) and ensuring organizational compliance.
  • Incident Response and Management: Proficiency in monitoring, detecting, responding to, and managing security incidents, including conducting root cause analysis and remediation.
  • Communication and Collaboration: Effective verbal and written communication skills to convey security information to non-technical stakeholders and collaborate with cross-functional teams.
  • Continuous Learning and Adaptability: Commitment to staying updated with security trends and technologies, and the flexibility to adapt to changing security landscapes.
Role Complexity: 
The role of a Data Security Engineer is highly complex, requiring advanced technical expertise, analytical skills, and strategic thinking. This position demands deep knowledge of security technologies and cloud security platforms, along with the ability to stay current with evolving cyber threats and regulatory requirements. The engineer must ensure compliance with data protection laws, implement robust defenses, and manage incident response and risk. Strong communication and collaboration skills are essential for conveying technical information to non-technical stakeholders and working with various departments to protect the organization's data assets.
Budgets/ Financial Input
  • Contribute to ensuring the budgets are adhered to and cost savings on various initiatives.  

Share This Job

Powered by