Cyber Security Manager

Description :

Location : Nairobi Kenya Headquarter

Department : Cybersecurity

Reports to : Director Technology

Job Type : Full-time

Job Summary :

We are seeking an experienced and skilled Cyber Security Manager to lead the design, implementation, and management of advanced security solutions within our Security Operations Center (SOC). The ideal candidate will have 5 years of hands-on experience in building and managing SIEM, SOAR, DAM, and EDR architectures. The Cyber Security Manager will play a pivotal role in developing and executing strategies to enhance our security posture through advanced security operations, threat detection, and incident response capabilities.

Key Responsibilities :

SOC Solution Design & Implementation :

- Lead the design, architecture, and deployment of SOC solutions, ensuring they meet business needs and are aligned with industry best practices.

- Implement and optimize Security Information and Event Management (SIEM) solutions for real-time monitoring, alerting, and forensic analysis of security incidents.

- Design and integrate Security Orchestration, Automation, and Response (SOAR) platforms to streamline incident detection, analysis, and response workflows.

- Oversee the implementation of Data Access Management (DAM) solutions to protect critical data and monitor user activity across systems.

- Design and deploy Endpoint Detection and Response (EDR) solutions to proactively detect, respond to, and mitigate endpoint security threats.

Cybersecurity Architecture & Strategy :

- Design and architect advanced security solutions for both on-premises and cloud environments, ensuring seamless integration with existing security infrastructure.

- Collaborate with stakeholders across IT, risk management, and compliance teams to ensure security architecture is aligned with organizational goals and regulatory requirements.

- Lead the continuous evaluation and improvement of security processes, procedures, and policies related to SOC operations.

Threat Detection, Incident Response & Analysis :

- Oversee the creation and continuous improvement of incident response plans, ensuring timely and effective response to security incidents and breaches.

- Conduct proactive threat hunting to identify security threats before they manifest into full-fledged attacks.

- Lead post-incident reviews, root cause analysis, and continuous improvements to security protocols and tools.

Team Leadership & Collaboration :

- Manage a team of SOC analysts, security engineers, and incident responders, fostering a culture of continuous learning, development, and high performance.

- Mentor and guide team members, providing technical expertise, training, and career growth opportunities.

- Collaborate with internal and external stakeholders (e.g., IT, DevOps, third-party vendors) to strengthen the overall security posture of the organization.

Security Monitoring & Reporting :

- Implement and maintain continuous security monitoring, ensuring that all network and system activity is logged, analyzed, and reported.

- Develop and present security metrics and dashboards for senior leadership to support decision-making and strategic planning.

- Conduct regular security assessments, vulnerability scans, and risk assessments to identify and address potential weaknesses.

Required Qualifications :

- Bachelors degree in Cybersecurity, Information Technology, Computer Science, or a related field.

years of experience in designing, implementing, and managing security solutions, especially within SOC environments.

- Hands-on experience with leading SIEM platforms (e.g., Fortinet ,Splunk, ArcSight, QRadar).

- Strong expertise in SOAR platforms (e.g., Palo Alto Cortex XSOAR, IBM Resilient, Demisto).

- DAM (Database activity monitoring tools ) experience, particularly with tools such as Varonis or Digital Guardian.

- Deep experience with EDR (Endpoint Detection and Response) solutions (e.g., CrowdStrike, Carbon Black, SentinelOne).

- In-depth knowledge of incident response, threat intelligence, vulnerability management, and forensics.

- Experience with cloud security (AWS, Azure, Google Cloud) and integration of SOC tools with cloud-native environments.

Preferred Certifications :

- Certified Information Systems Security Professional (CISSP)

- Certified Ethical Hacker (CEH)

- Certified SOC Analyst (CSA)

- Splunk Certified Admin/Power User

- Palo Alto Networks Cortex XSOAR or IBM Resilient certifications

- CompTIA Security or equivalent

Key Skills :

- Strong knowledge of security frameworks (NIST, ISO 27001, CIS, etc.)

- Excellent leadership, team management, and mentorship skills

- Strong analytical skills with the ability to identify trends, vulnerabilities, and security risks

- Excellent communication skills, both verbal and written

- Experience in cloud security and hybrid infrastructures