Home » Jobs » Banking Jobs In Kenya » DevSecOps Specialist Job I&M Bank
Candidates Experience With Us + Latest Updates

Personalized Support for Your Success
Register Your CV
Interview Coaching
Short Courses
Career Coaching

Upcoming Trainings & Events

DevSecOps Specialist Job I&M Bank

IT Jobs, I&M Bank Jobs.

Key Responsibilities

  • Integrate security controls into CI/CD pipelines (SAST, DAST, SCA, container scans, IaC security).
  • Collaborate with developers to implement the Bank’s secure coding standards and security minimum baseline requirements.
  • Apply security best practices to cloud-native applications and containerized environments.
  • Conduct cloud security posture reviews and integrate automated compliance checks into build pipelines.
  • Ensure secrets management, identity, and zero-trust principles are applied within DevOps pipelines.
  • Support red team and penetration testing activities by fixing identified vulnerabilities and integrating findings into pipelines.
  • Conduct targeted manual application security testing.
  • Provide technical remediation guidance to developers and DevOps teams.
  • Provide training and awareness to developers on secure coding, CI/CD security, and threat modeling.
  • Contribute to cross-team incident response efforts for application-related vulnerabilities.
  • Collaborate with the Group SOC team to translate intelligence into actionable detection and defence improvements.
  • Partner with the SOC, Technology, Risk, and Compliance teams to ensure defensive measures align with regulatory requirements, internal policies, and industry best practices.
  • Ensure pipelines meet compliance requirements i.e., NIST CSF & ISO 27001

Job Specifications

Academic Qualifications

  • Bachelor’s Degree in IT, Technology, Cyber Security, or a related field – mandatory

Professional Qualifications / Membership to professional bodies/ Publication  

  • Microsoft Certified: Azure Security Engineer Associate (AZ-500)
  • Offensive Security Certifications
  • AWS Certified Security – Specialty
  • Certified Red Team Certifications
  • Certified Secure Software Lifecycle Proffessional (CSSLP)
  • Cloud Pentester Certifications
  • Membership in recognised cyber security professional associations
  • ISO/IEC 27001 Lead Implementer/Auditor  

Work Experience Required

  • 5-7 years of progressive experience in cyber security.
  • Proven track record in planning and executing complex red team and penetration testing engagements against advanced threat actors.
  • Hands-on expertise in exploitation techniques, attack path development, and evasion tactics.
  • Strong background in vulnerability assessment, adversarial emulation frameworks (e.g., MITRE ATT&CK, CALDERA, C2 frameworks), and purple teaming.
  • Demonstrated experience in integrating threat intelligence into testing and defence strategies.

How to Apply

Click here to apply

🚨 Before You Apply for This Job

This job will attract 1000+ applicants.
Many qualified professionals miss out on getting shortlisted and interviews — not because they lack experience, but because their CV doesn’t clearly show how they fit this specific job.
🎯 Want to get an interview fast? Customize your CV specifically for this job.
Using the same CV for every application will not get you interviews.
Email your CV today to our Client Service Manager, Rose, using cvwriting@corporatestaffing.co.ke
Subject: CV Review & Upgrade.
Rose and our recruiters will review your CV and show you exactly how to improve it for the job you are targeting. 
Using an A.I-generated CV but not getting interviews? Get it reviewed here by our recruiters today.

Related Posts Bank IT Jobs in Kenya, Cyber Security Jobs In Kenya, I&M Bank Jobs in Kenya, Technology Jobs in Kenya

Career Lessons + Experiences

Labour Laws – Know Your Rights