Skip to main content

Cyber Security Engineer

KT Rwanda Networks Ltd

Incorporated in September 2013, KTRN is the 4G LTE Infrastructure Company in Rwanda jointly established by Government of Rwanda(GoR) and Korea Telecom (KT) in a Public Private Partnership, with the main mission to achieve GoR’s connectivity and coverage goals for broadband network and service.

Since its commercial launch in November 2014, KTRN has made commendable milestones both in network rollout as well as 4G service penetration.

Currently, KTRN boasts of the largest 4G Network coverage in Rwanda with more

than 98% of the national population coverage.

Besides 4G Services, the company operates the biggest fiber network spanning over 4000 km of fiber around the country covering all districts and borders of Rwanda and it is leased to all operators for their business operations & expansion.

KTRN’s network is the only network in Rwanda providing technology convergence, facilitating value creation to Businesses.

Rate this employer
Average: 4.1 (32 votes)

Position: Cyber Security Engineer

Reports to: Information Security Manager

Type of Employment: Full-time

Job announcement Date: 9th July 2026

Job Summary:

The Cybersecurity Engineer keeps the organization secure by thinking like an attacker and defending like a professional. You spend most of your time on hands-on Red Team (offensive) and Blue Team (defensive) activities: finding weaknesses before adversaries do, and detecting, investigating, and responding to threats when they appear

Roles & Responsibilities:

  • Conduct internal and external vulnerability assessments and penetration tests across servers, endpoints, applications, perimeter/internet-facing assets, and telecom platforms.
  • Simulate real-world attacks (phishing, social engineering, exploitation) to test defenses and response readiness.
  • Exploit and document findings, then work with owners to get them fixed.
  • Track remediation and re-test to confirm issues are closed.
  • Lead the annual independent VAPT engagement and internal assessments required.
  • Monitor environment using SIEM, EDR, firewalls and Anti-DDoS; triage alerts and hunt for threats.
  • Detect, investigate, and respond to security incidents; contain, eradicate, and recover.
  • Perform root-cause analysis and write clear incident reports.
  • Perform basic malware analysis on suspicious files and indicators of compromise.
  • Harden systems: baseline configurations, patching, and detection rules.
  • Tune and maintain security tooling and detection content.
  • Develop security automation scripts and playbooks for faster detection and response.
  • Develop, test, and update incident response playbooks and run tabletop exercises; share findings and lessons learned.
  • Support security awareness and phishing-simulation programmes.
  • Secure, monitor, and harden network and telecom infrastructure (routers, switches, firewalls, and core telecom systems).
  • Coordinate vulnerability and patch management across systems and network devices.
  • Review the security of new systems, applications, and network changes before go-live.
  • Use threat intelligence to anticipate emerging threats and keep detection content up to date.
  • Produce weekly and monthly reports on incidents, attempts and threats with clear metrics & trends.
  • Prepare management-ready vulnerability reports with clear risk levels and remediation priorities.
  • Perform digital forensics and preserve evidence during investigations.
  • Review identity and access controls, including privileged accounts.
  • Collaborate across offensive and defensive activities to strengthen detection and response.

Required Qualifications:

  • Having Bachelor’s Degree in Information Technology (IT), Computer Science, or a related field (or equivalent experience) (Mandatory).
  • Hands-on penetration testing certification such as CEH Practical or equivalent (Mandatory).
  • Security certifications covering offensive (e.g. OSCP) and defensive (e.g. GCIH, GCIA, BTL1, CySA+, Blue Team), and skills foundational certs such as Security+ (Added advantage)

Required Experience:

  • 3+ years in VAPT, SOC, or security operations (telecom environment preferred).
  • Strong knowledge of networks, telecommunications, and operating systems (Windows/Linux), with deep understanding of attack and defence techniques (e.g. MITRE ATT&CK).
  • Understanding of local telecom and cybersecurity regulations and how they apply to security operations (e.g. regulations issued by regulators such as RURA and the NCSA, among others).
  • Hands-on with VAPT tools (Burp Suite, Nessus, Nipper, Metasploit), SIEM (e.g. ELK, Splunk, QRadar, Sentinel), EDR/XDR, and Anti-DDoS solutions.
  • Scripting / automation skills (Python, Bash, or PowerShell).
  • Familiarity with threat intelligence and detection engineering
  • Strong analytical skills and clear written and verbal communication.

Application procedure:

Interested candidates are required to submit the following documents:

  • A signed application letter addressed to the Chief Executive Officer (CEO) of KTRN.
  • A copy of notarized required academic degree
  • A copy of a valid National Identity Card (ID);
  • A criminal Record
  • An updated Curriculum Vitae (CV) including at least three (3) professional referees and their contact details;
  • Supporting documents demonstrating the required work experience.
  • All application documents must be combined into a single PDF file and submitted via email to recruits@ktrn.rw no later than 16th July 2026 at 5:00 PM.
  • Only shortlisted candidates shall be contacted

KTRN Management

Click on the APPLY button to send your application documents:
  • Your application will be sent to the employer immediately (Allowed formats: .doc .pdf .txt .docx)
  • A confirmation email will be sent to you few minutes afterwards
  • You can request any documents archived from our website (ex: a job description, a CV, a cover letter...)