A highly motivated goal-oriented person with enthusiasm in technology, cybersecurity, IT governance, data protection, information security and IT projects. The expertise and know-how gained through experience and trainings has always been a stepping stone in solving challenges in an effective manner. This has been assistive in developing technological and supervisory skills and objectively, use them in the best possible way to achieve the company`s goals. With a strong background in data protection, IT systems management and cybersecurity, I have extensive experience ensuring that the organization meet data privacy regulations while maintaining seamless ICT operations. I lead the development and implementation of data protection policies and procedures, ensuring that personal data integrity and privacy are upheld across all company functions as my role involves conducting data protection impact assessments, advising on data collection and retention practices and guiding the company on legal obligations under the Data Protection Act of 2019. Additionally, I monitor and update policies to ensure continuous compliance and actively train staff to raise awareness on data protection matters.
On the technical side, I am responsible for configuring, maintaining and managing the company’s network infrastructure, including servers, routers, switches, CCTV systems and overall LAN/WAN management at both head office and branch locations where I provide first-hand technical support to employees in a bid to ensure that any incidents are promptly resolved. I also oversee the installation, configuration and troubleshooting of various devices like PCs, printers and IP-PABX systems while maintaining accurate inventories and ensuring the smooth operation of all ICT systems.
Throughout my career, I have led several key projects, including the successful completion of a data protection audit conducted by the Office of the Data Protection Commissioner and the streamlining of our LAN infrastructure and also have implemented VLANs, managed an ISP-hosted firewall and automated critical systems such as backup and disaster recovery processes. Additionally, I have played a key role in the development and management of various applications for meter servicing and pipeline repair, as well as an online water applications system.
I hold memberships in the Computer Society of Kenya and the Institute of Internal Auditors and I have also participated in several specialized training programs, including those focused-on ERP security, data protection and auditing cybersecurity practices.
Experience
Data Protection Officer
Eldoret Water and Sanitation Company
November, 2024 to date
ICT Officer
Eldoret Water and Sanitation Company
February, 2022 to date
ICT Assistant
Eldoret Water and Sanitation Company
June, 2018 to February, 2022
Skills
- Project Management
- VoIP and IP-PBX Management
- Cyber threat Management
- Information Security and risk assessments
- Linux Operating System
- Vulnerability assessment
- Identity and User Access Management
- Database Management
- WAN & LAN networking
- E-mail and Website management
- Data privacy management
- Endpoint Security
Projects
- Reorganization and streamlining of LAN infrastructure
- Design, deployment and management of VLANS and Uni-Fi access points
- Spearheading design, training and implementation of an online water applications system
- Designing, led the implementation and assisting in management of an ISP hosted Firewall for the company.
- Automation of backup of personal computers and laptops to a secure central server and disaster recovery site (DRS)
- Successfully spearheaded a data protection audit for the company done by the Office of the Data Protection Commissioner
- Digitalization of all ICT-related infrastructure inventory and assigning unique identifiers to endpoints for ease of recognition
- Development and administration of Kobo Toolbox application for management of meter servicing and pipeline repair and improvements
- Configured and deployed a lightweight file-sharing system using IIS (Internet Information Services) on Windows Server by setting up a local web server accessible across the internal network for document sharing among employees.
- Effectively configured and deployed Ansible on a Windows 11 environment using WSL (Windows Subsystem for Linux) and Ubuntu to manage network infrastructure for automation of switches configuration, management and backups.
- Designed and implemented a secure, automated files backup and reporting system using PowerShell that includes zip archiving, remote transfer and automatic email reporting with secure SMTP authentication to a secure central server and replication of the same to the disaster recovery site (DRS).
Committees
- DMA implementation committee member
- Request for quotation committee member
- Inspection and acceptance committee member
Trainings
- Data Protection
- Project Management
- ERP Security and Fraud Detection
- Cybersecurity and Data Protection
- Auditing Cyber Security and Crisis management
Professional Body Membership
- Computer Society of Kenya
- Institute of Internal Auditors
Academic Qualifications
- Master of Science in IT Security & Audit (cont...)
- Bachelor’s Degree in Computer Science
- Kenya Certificate of Secondary Education
- Kenya Certificate of Primary Education
Professional Qualifications
- Data Protection Course (cont...)
- Oracle Cloud
- Cyber security
- Windows Server
- SQL Administration
- Fortinet Network Security
- Ethical Hacking Essentials
- Network Support and Security
- Introduction to Cyber security
- Google Analytics Certification
- Microsoft Azure Administrator
- Identity and Access Management
- Cisco Certified Network Associate
- Introduction to Database Forensics
- Microsoft Security Operations Analyst
- Cisco Certified Entry Networking Technician
- Hands-on Penetration Testing with PowerShell
- ISO/IEC 27001:Information Security Management