Assistant Director, ICT, Information Systems Security & Data Protection at HELB

Ref. No. HELB/009 - Grade 4
Please use adictissdp@helb.co.ke to apply for this position

Job Profile
The job holder is responsible for developing and implementing an information security program, which includes procedures and policies designed to protect enterprise communications, systems and assets from both internal/external threats and assurance of Business recovery strategies through an elaborate Business Continuity Plan (BCP)/Disaster Recovery Site(DRS) Governance Framework.

(a) Job Specifications
Information Systems Security & Data Protection
I. Implementing the ICT strategy to ensure that the long- and short-term ICT plans are aligned to the overall business
strategy;
II. Implementing and monitoring ICT Work Plans, Policies, standard operating procedures and best practices to provide
guidance to users;
III. Coordinating maintenance of computerized prosecution processes, case management system, network Infrastructure administration and upgrading of network systems and desktop environment;
IV. Supervising compliance with all regulations, procedures, policies and quality standards in the delivery of services;
V. Implementing the Divisional budget and Procurement Plans;
VI. Implementing the ICT disaster management strategies to ensure the network systems, physical environment, data
and users are protected against cybercrime, risk exposure, unauthorized access and data loss in line with Kenya
Information and Communication Act and Kenya Cyber Security and Protection Bill;
VII. Implementing the ICT risk management framework that supports the management of ICT related risks for the
integrity and confidentiality of information;
VIII. Preparing ICT user training programs and materials in liaison with Human Resource Management & development as well as other relevant Authorities;
IX. Implementing the ICT security infrastructure that is responsive to the requirements and that upholds best practices;
X. Implementing the disaster recovery systems and business continuity plans;
XI. Preparing quarterly and annual divisional reports and share with the management for informed decision making;
XII. Ensuring organization’s handling and collection of personal data of its staff, customers, providers or any other data
subjects in compliance with the applicable data protection rules; and
XIII. Supervising performance management in the Division

b) Person Specification
For appointment to this grade an officer must have: -
I. Served for a cumulative period of twelve (12) years relevant work experience three (3) of which must have been at
the grade of Principal Information Communication Technology Officer or in a comparable position;
II. Bachelor’s degree in information technology, Computer Science, Business IT, Software Engineering, ICT Project
Management, Computer Engineering or any other equivalent qualification from a recognized Institution;
III. Master’s Degree in any of the following disciplines: - Information Technology, Computer Science, Business Information Technology, Software Engineering, Project Management, Business Administration, Data Science, Computer Engineering or any other equivalent qualification from a recognized Institution;
IV. Leadership Course lasting not less than four (4) weeks from a recognized institution.
V. Professional qualification in any two of the following: CISA/CISM/CRISM/ CEH/ CISSP/ MCSE/MCITP/CCNA/Project Management Certification; SSCP; CompTIA Security+; OSCP/ VOIP;
VI. Membership of a relevant professional body and in good standing where applicable.
VII. A valid practicing certificate where applicable; and
VIII. Shown merit and ability as reflected in work performance and results.

c) Key Skills and Competencies
I. Communication;
II. Experience in Configurations of top tier ERP solutions;
III. Proficiency in programming;
IV. Data Base Querying;
V. Data Analytics;
VI. Demonstrate appetite for Innovation & Disruptive Technologies;
VII. Team player;
VIII. Interpersonal skills;
IX. Emotional intelligence;
X. Data Integration, Data Warehousing, Business Intelligence, OLAP, and Data mining as well as familiarity with
ICT standards such as ITIL, COBIT;
XI. Risk management and Reporting;
XII. Information and network security;
XIII. Experience with Unix/Linux/Windows Operating systems;
XIV. Experience with Contact Center Technologies;
XV. Management course lasting not less than Four (4) weeks;
The Officer shall be engaged on contract of up to three (3) years renewable subject to performance and retirement age.

HOW TO APPLY:
Qualified and interested applicants who meet the above requirements are required to submit their job application letters, curriculum vitae, certified copies of academic and professional certificates and relevant testimonials quoting the Title and Reference Number of the position on the cover letter and envelope on or before 16th February 2026 addressed to:

The Chief Executive Officer
Higher Education Loans Board
Anniversary Towers, 19th Floor
P.O. Box 69489 - 00400
NAIROBI, KENYA

Soft copies to be sent to the specific email addresses provided (Please use adictissdp@helb.co.ke to apply for this position) for each position. This information is available on https://www.helb.co.ke/career/ Shortlisted candidates will be required to present their Valid Chapter Six Requirements.
HELB is an equal opportunity employer. HELB encourages applications