Co-operative Bank

2 job(s) at Co-operative Bank

Co-operative Bank Nairobi, Nairobi County, Kenya
Oct 16, 2017
Full time
THE ROLE Specifically, the successful jobholder will be required to: Provide legal advisory services to all departments within the Bank including providing independent legal advice and judgment to mitigate any legal risks.  Manage litigation against the Bank including external lawyers involved in litigation as well as review, analyzing and interpreting laws, regulations and judicial decisions.  Provide support in contract negotiations and management including review of contractual agreements for the bank and providing recourse options for non-performing contractors as well as preparing, reviewing and modifying contractual instruments to assist and support various business activities. Advice the relevant departments on the perfection of securities and documentation as well as managing the annual securities audits and advise on the remedial process. Offer cost effective and timely legal advisory services and support to the credit recovery function of the Bank in order to foster effective management of regulatory and litigation risk in the recovery of Non-Performing loans. Prepare and facilitate staff training on specific legal matters affecting the bank including dissemination of appropriate legal requirements to various departments. Participating in risk management sessions that have a bearing on legal matters, review risk reports for purposes of managing key risks  efficiently in the risk management process and undertake research on current legal developments and prepare briefs to the Head of Legal. Support the Board Secretariat in carrying out secretarial duties.  SKILLS, COMPETENCIES AND EXPERIENCE The successful candidate will be required to have the following skills and competencies: Must have a Bachelor of Laws (LL.B) Degree from a recognized University with a minimum of five years legal experience ideally in a leading organization, with a proven track record in litigation management and conveyance. Must be an advocate of the High Court with a current practicing certificate. CPS will be an added advantage. Working knowledge of the legal environment for Banking and general business/commerce in Kenya will be added advantage. Strong conceptual, analytical, documentation and presentation skills with ability to influence and negotiate at different levels.  
Co-operative Bank Nairobi, Nairobi County, Kenya
Oct 16, 2017
Full time
Here is an exciting opportunity for you to join our ICT Risk & Control team. Are you able to identify and assess threats, put plans in place ‘if things go wrong’ and advise how to avoid, reduce or transfer risks in an IT environment? Co-operative Bank has a perfect career opportunity for you. Reporting to the Head – ICT Risk & Control, the role holder will provide continuous ICT Project assurance in relation to confidentiality, integrity and availability of the IT infrastructure, processing systems and related resources in line with the Bank Information Security Policy. SPECIFICALLY, THE SUCCESSFUL JOBHOLDER WILL. Be actively involved and provide risk & security guidance during technology projects, systems deployment, upgrades and changes. Proactively provide ICT security & risk requirements for incorporation in Business Requirements Documents, Functional Specifications Documents & RFPs of new ICT systems. Proactively participate in technical solution design for new systems, ensuring that security requirements are well defined. Perform vulnerability assessments & penetration tests on new Bank systems, applications and technology, identifying vulnerabilities and recommendations on closure of these vulnerabilities, prior to new systems go-live. Perform a fraud risk assessment on new systems and processes within the project scope and provide recommendations on countermeasures. Ensure interfaces for new systems are secured from intrusion, and user activities in new systems are detailed, traceable and logged. Pro-actively provide guidance on security tools required to effectively manage and control Bank systems. Pro-actively perform risk assessments for ongoing ICT projects and prepare risk reports for new systems & projects in readiness for Change Approval Board meetings. Proactively develop and constantly review system Minimum Baseline Security Requirements for new ICT systems & projects. Regularly provide recommendations to ICT leadership on areas of improvement towards securing ICT systems. Provide information security training & awareness to ICT systems project teams (Systems development teams, project managers, business analysts) Maintain ICT risk registers for ICT projects and submit periodical and ad-hoc reports as required by HOD and Chief Risk Officer. Ensure strict adherence to all regulations, statutes, standards, practices and all internal processes and procedures as per the relevant manuals and comply with all relevant external legislation and regulations with regard to compliance requirements. SKILLS AND EXPERIENCE REQUIRED. Bachelor’s degree in Information Technology or related fields. 3 years prior experience in information security or systems audit function. Experience in the Banking industry will be a value add. Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM) certification. IT security and risk certifications e.g. CISSP, CRISC, CEH, etc. will be an added advantage. Experience in system propagated forensic investigations will be an added advantage. Good understanding of project management methodology and concepts and a good appreciation of risk, systems security control processes. Detailed knowledge of the Bank’s Operating procedures and good knowledge of the Bank’s products and services. Understanding of Information Systems architecture and operational practices as well as good grasp of Information Security and control objectives with an appreciation of audit methodologies. Experience in performing analytical roles in complex business environments. Advanced computer skills including IT skills, word, excel, power point. Training in IT infrastructure and operating systems. Training in Implementing Information security policies.