Samuel Keter
Cyber Security
Nairobi,Nairobi
Summary
Forward-thinking Senior Manager adept at managing teams of 10 employees with direct reports to accomplish challenging objectives. Imparts clear vision to guide cohesive, high-performing teams.
Overview
8
8
years of professional experience
3
3
years of post-secondary education
6
6
Certifications
Work History
Senior Manager - Cyber Defense
Equity Bank Limited
Nairobi
12.2023
- Develop, implement, and continuously improve group cybersecurity policies in accordance with the NIST Cybersecurity Framework and implement technology controls to support group data privacy policies
- Operate, monitor, and verify that vulnerability management is at an acceptable level and ensure that web applications, API endpoints, servers, and network devices are protected and robust in accordance with industry best practices
- Work with IT leadership, risk, audit, and business stakeholders to define the metrics and reporting mechanisms that best reflect the success and progress of the security program
- Develop and implement cybersecurity policies, procedures and practices to ensure effective implementation and support
- Work to ensure ongoing alignment with risk audit needs identified by leadership and assist in the development and ongoing management of IT budgets and measure the ROI of existing security initiatives.
Manager - Cyber Security
KPMG East Africa
Nairobi
05.2021 - 11.2022
- Implemented industry leading cybersecurity practices: Adopted ISO 27001, NIST 800-53, PCI, GDPR, and risk management policies
- Mechanisms were developed to ensure compliance with professional standards to mitigate risks
- Mentored cybersecurity team members in key areas such as vulnerability assessment, penetration testing, cyber maturity assessment, incident response, and security system analysis
- Managed customer relationships and identified opportunities to improve value
- Maintained strong customer relationships, managed expectations and delivered high quality work
- Identified customer pain points and offered solutions to deliver value
- Demonstrated effective project management skills and effective communication by leading multiple projects, serving as primary client contact, empowering teamwork and accountability within the cyber security team and promoted use of custom scripts and automated technical tools to optimize delivery.
Manager - Cyber Security Assurance
Equity Bank Limited
Nairobi
06.2020 - 04.2021
- Conducted periodic Red Teaming exercises, vulnerability assessments & penetration tests across all the Bank's systems and cloud infrastructure
- Ensured all services and systems comply with the Bank's security policies & standards and other industry best practices such as NIST, ISO27001, PCI and GDPR
- Provided timely and quality security assurance reports and advice to the business when required
- Did regular follow ups with issue owners to ensure any security risks identified are addressed within the agreed timelines and defined Cyber Security metrics scorecard and report periodically on security compliance across all systems
- Researched on new threats, technologies, vulnerabilities, security design principles etc
- Performed cyber security governance assessment reviews as well as performed social engineering to test the human susceptibility in disclosing sensitive information.
Senior Associate - Risk Assurance (Cyber Security)
PwC Kenya Limited
Nairobi
07.2018 - 05.2020
- Conducted comprehensive IT Audits to ensure information system security by reviewing client enterprise architecture, security control frameworks and information systems of various organizations
- Verified the presence of proper controls to safeguard systems and users through regular cyber security audits
- Planned, performed, and documented comprehensive cyber security reviews by conducting vulnerability assessments, penetration testing, Red Team simulations, social engineering, and pre- and post-implementation reviews to identify system weaknesses
- Managed client relationships and exceeded expectations by ensuring high-quality work was delivered and managed client expectations regarding cyber security services offered
- Led client discussions to uncover pain points and identified new opportunities for value-added engagements
- Acted as Subject Matter Expert (SME) in information/cyber security controls and ensured client satisfaction and project success.
Associate - Risk Assurance (Cyber Security)
PwC Kenya Limited
Nairobi
10.2017 - 06.2018
- Advised PwC clients on their cyber security issues by providing guidance on the technical details to help reduce their overall attack surface
- Performed vulnerability assessments on various audit clients to aid in identifying the different types of vulnerabilities present as well as penetration tests to aid in assessing organizations' susceptibility to intrusion, through various methods that can be used to bypass security controls
- Reviewed information system controls put in place by organizations to ensure effectiveness in compliance with the industry best practices
- Reviewed network architectures and infrastructure to ensure that efficient topologies and configurations are to be used and to ensure that proper controls are in place to safeguard the information systems in use and its users.
Information Security Officer
Sidian Bank Limited
Nairobi
01.2016 - 09.2017
- Reviewed activities and logs from all the firewalls (Checkpoint, Imperva WAF& DBF, Big -IP F5, FireEye, McAfee EPO, Trend Micro Deep Security and Office Scan, Cisco ASA & Sourcefire)
- Proactively monitored all the Bank's traffic network two and from, updated and verified the policies used on the firewalls, monitored and reported on system, database, and application logs for predefined exceptions, monitored and reported on remote access/remote access attempts to the bank's IT resources
- Performed the role of system administrators for security applications including SIEM/Log Monitoring application and continually reviewed of information access within the bank's network
- Ensured availability and easy access to Information Security Policies and Procedures and provided guidance and assistance to staff in interpretation/clarification of information security policy requirements
- Participated in the User Acceptance Testing exercise for projects with Technology/Technology related components.
IT Assistant
K-Rep Bank Limited
Nairobi
03.2015 - 12.2015
- Reviewed activities and logs from all the firewalls (Checkpoint, Imperva WAF& DBF, Big -IP F5, FireEye, McAfee EPO, Trend Micro Deep Security and Office Scan, Cisco ASA & Sourcefire)
- Managed network monitoring systems and maintained network drawings and related documentation
- Ensured the availability and provide support for servers, PCs and other network infrastructure devices that provide connectivity for the bank' users
- Developed and provided support for electronic mail systems, internet, remote access, and other electronic communication devices such as PDAs and Laptop Computers that require access to the network
- Found security gaps by performing routine audits of hardware and software entities on the network and closing those gaps.
Education
Bachelor of Science in Computer Scence - undefined
Kabarak University
05.2011 - 05.2014
Skills
Network SecurityRed TeamingPenetration TestingVulnerability ManagementApplication SecurityISO 27001SWIFT CSP AttestationCloud SecurityCyber Security Audits
Incident Response Management
PCI Compliance
Incident Response Management
Data security
Designing security controls
Implementing security programs
Developing security plans
Certification
Prince 2 Agile, 01/01/22, 01/01/22
Details
Nairobi, Kenya, +254710631913, samuelkbt7@gmail.com
Timeline
Senior Manager - Cyber Defense
Equity Bank Limited
12.2023
Manager - Cyber Security
KPMG East Africa
05.2021 - 11.2022
Manager - Cyber Security Assurance
Equity Bank Limited
06.2020 - 04.2021
Senior Associate - Risk Assurance (Cyber Security)
PwC Kenya Limited
07.2018 - 05.2020
Associate - Risk Assurance (Cyber Security)
PwC Kenya Limited
10.2017 - 06.2018
Information Security Officer
Sidian Bank Limited
01.2016 - 09.2017
IT Assistant
K-Rep Bank Limited
03.2015 - 12.2015
Bachelor of Science in Computer Scence - undefined
Kabarak University
05.2011 - 05.2014