About the Company
Equity Group Holdings Plc is a Pan-African financial services powerhouse listed on the Nairobi Securities Exchange, Uganda Securities Exchange, and Rwanda Stock Exchange. As Kenya’s first trillion-shilling balance sheet bank, the Group operates across Kenya, DRC, Rwanda, Uganda, Tanzania, South Sudan, and a Commercial Representative Office in Ethiopia. In addition to banking, Equity Group has subsidiaries in investment banking, insurance, telecom, fintech, and social impact investments, making it a leader in driving innovation and financial inclusion across Africa.
About the Job
Position: Infrastructure & Platform Security Architect
Equity Group Holdings Plc is seeking a seasoned Infrastructure & Platform Security Architect to design, implement, and maintain security strategies for their infrastructure and platform services. This role involves ensuring that all infrastructure components, both on-premise and in the cloud, are safeguarded against evolving cyber threats and comply with industry standards. The successful candidate will work closely with IT, security, and DevOps teams to embed robust security measures across the enterprise.
Key Responsibilities
Security Architecture and Strategy
- Develop and maintain security architectures for on-premise, cloud, and hybrid environments, ensuring scalability, resilience, and secure operations.
- Define and implement security standards for platforms such as AWS, Azure, GCP, and containerized environments (e.g., Docker, Kubernetes).
- Create and maintain security blueprints, standards, and guidelines for enterprise infrastructure.
Infrastructure Security
- Harden network infrastructure, servers, storage, databases, and virtual environments using access control, encryption, logging, and vulnerability management best practices.
- Conduct security assessments of existing and new platforms, providing mitigation strategies for identified risks.
- Design and implement IAM solutions with strong authentication, authorization, and role-based access control (RBAC) policies.
Incident Response and Compliance
- Work with the SOC and incident response teams to identify and address security incidents.
- Establish compliance with industry regulations such as GDPR, PCI-DSS, ISO 27001, and corporate security policies.
- Implement and maintain security tools such as firewalls, IDS/IPS, VPNs, and endpoint protection solutions.
DevSecOps and Collaboration
- Collaborate with DevOps, IT operations, and cloud engineering teams to embed security controls in CI/CD pipelines and Infrastructure as Code (IaC) practices.
- Partner with application development teams to implement security standards within software and platform development processes.
Performance Monitoring and Governance
- Oversee performance and governance of security policies across the enterprise.
- Regularly update and enforce standards for compliance and best practices in network security.
Qualifications
Education
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- A Master’s degree is an added advantage.
Experience
- 4–7 years of experience in IT, with at least 2 years in practical security engineering for infrastructure and platforms.
- Hands-on expertise in securing cloud platforms (AWS, Azure, GCP) and virtualization technologies (VMware, Hyper-V).
- Experience designing secure architectures for cloud platforms, data centers, and containerized environments.
- Strong knowledge of network security principles, protocols, and standards (e.g., TCP/IP, DNS, BGP, SSL/TLS, VPNs).
- Familiarity with DevSecOps principles and network segmentation/micro-segmentation techniques.
Certifications (Preferred)
- CompTIA Security+
- CompTIA Advanced Security Professional
- Certified Information Systems Security Professional (CISSP)
- Certified Ethical Hacker (CEH)
- Cloud-specific certifications (e.g., AWS Certified Security Specialty, Azure Security Engineer Associate).
Why Join Equity Group?
- Work with a Pan-African leader in financial services, driving innovation and inclusion across diverse markets.
- Collaborate with talented professionals in a dynamic, purpose-driven environment.
- Leverage cutting-edge technologies to address security challenges in an enterprise setting.
Location: Kenya (Nairobi HQ preferred)