Vulnerability Analyst at Rwanda Social Security Board (RSSB)
Rwanda Social Security Board (RSSB) |
Type: Job
Published: 2024-05-05 | Deadline: 2024-05-13
Exciting Career Opportunity at the Rwanda Social Security Board (RSSB) - Vulnerability Analyst
Are you ready to embark on a transformational journey? We are seeking a dynamic and forward-thinking leader to join us as the Vulnerability Analyst. If you thrive in dynamic environments and are committed to innovation and transformation, this is the opportunity for you!
This role offers a unique opportunity to be at the forefront of a major transformation that will fortify the security initiatives and you will work closely with the Security Operations Team to ensure the organization's systems, applications, and infrastructure are resilient against cyber threats.
If you have what it takes to work closely with a constructive technical team together with other cross-functional units and you are passionate about being part of a mission-driven organization that prioritizes the well-being of millions of individuals, then we are looking for you.
Reporting to the Head, Infrastructure, the Vulnerability Analyst will be responsible for conducting ethical hacking activities, penetration testing, and vulnerability assessments. This role involves simulating real-world cyber attacks and exploiting vulnerabilities to identify and mitigate potential security risks proactively.
About RSSB
The Rwanda Social Security Board (RSSB) has the mandate to manage and promote social security in Rwanda. RSSB's vision is to provide a comprehensive social security system that caters to the diverse social security needs of the population, RSSB plays an important role in realizing Vision 2050 and the National Strategy for Transformation (NST1). RSSB manages six social security schemes, namely: Pension, Occupational Hazards, Medical scheme, CBHI, Maternity Leave Benefits and EjoHeza (Long-term Term Saving Scheme).
As a leading player in the financial sector, RSSB serves as the largest institutional investor in Rwanda. With assets under management amounting to 2.06 trillion Rwf , which is equivalent to over 15% of the country's GDP, RSSB invests in key sectors of the economy and plays a crucial role in growing the country’s financial sector. With approximately 12 million members in the above six schemes, encompassing over 90% of Rwanda's population, RSSB is at the forefront of securing the health and financial well-being of Rwandans.
To achieve its important mandate, RSSB is embarking on a transformative journey, aiming to become a modern, data-driven, and high-performing institution. As part of this ambitious initiative, we are seeking highly motivated individuals who are results-oriented and uphold the highest standards of professionalism and integrity. By joining RSSB, you will have the opportunity to actively contribute to the advancement of social security and overall transformation of Rwanda.
Key Duties and Responsibilities
-
Plan and execute comprehensive penetration testing and vulnerability assessments on the organization's systems, applications, and infrastructure
-
Conduct simulated attacks, including phishing campaigns, distributed denial-of-service (DDoS) attacks, and other offensive security techniques, to identify potential vulnerabilities and weaknesses
-
Collaborate with the Data Center team to assess the resilience and high availability of the data center infrastructure
-
Document and report identified vulnerabilities, providing detailed technical analysis and recommendations for remediation
-
Simulate disaster recovery scenarios and evaluate the effectiveness of incident response plans
-
Work closely with the Security Operations team to validate and prioritize identified vulnerabilities for remediation
-
Participate in the development and implementation of secure coding practices, secure software development life cycle (SDLC), and secure architecture design
-
Stay up-to-date with the latest cybersecurity trends, vulnerabilities, and attack techniques, and continuously enhance the organization's offensive security capabilities
-
Conduct security awareness training and phishing simulations to educate and test the organization's personnel on cybersecurity best practices
-
Collaborate with third-party security firms or consultants for specialized penetration testing or vulnerability assessments, as needed
-
Readily available to assist with any additional related tasks as assigned by the manager
Key Qualifications and Experience
The successful candidate must have at least:
-
Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field, or equivalent experience.
-
Minimum of 3 years of experience in penetration testing, ethical hacking, or offensive security roles.
Key competencies
Technical Competencies:
-
Strong understanding of network security principles, protocols, and architectures
-
Familiarity with web application security, secure coding practices, and application security testing methodologies
-
Hands-on experience with vulnerability assessment and penetration testing tools.
-
Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for automation and security testing
-
Knowledge of network and system administration concepts (e.g., Active Directory, DNS, firewalls, VPNs)
-
Experience with cloud security principles and cloud penetration testing techniques
-
Understanding of regulatory compliance requirements (e.g., GDPR, HIPAA, PCI-DSS)
Behavioral Competencies:
-
Excellent analytical and problem-solving abilities
-
Strong communication and documentation skills
-
Ability to work collaboratively in a team environment
-
Attention to detail and commitment to continuous learning
-
Strong organizational and time management skills
Additional Information:
The position is based in Kigali, Rwanda and applicants must be willing to relocate outside their countries of domicile.
RSSB reserves the right to appoint or to issue an employment contract to the successful candidate.
Interested candidates are advised to visit the RSSB website for a more detailed job description for the role, and submit your application online by Monday 13, May 2024.
In addition, please attach a curriculum vitae that contains details of your qualifications, experience and positions held relevant to this role. Include your day and evening telephone numbers, email address, names and address of three professional referees. Also, attach copies of your academic and professional qualifications.
Any form of canvassing will lead to automatic disqualification.
Only short-listed applicants will be contacted.
Shortlisted candidates will be required to submit a valid Criminal Clearance Certificate.
RSSB is an Equal Opportunity Employer