SBM Bank Kenya SBM Bank Kenya is a leading and trusted financial institution with an international footprint, recognised as a top bank in Kenya,
SBM Bank Kenya
SBM Bank Kenya is a leading and trusted financial institution with an international footprint, recognised as a top bank in Kenya, headquartered in Mauritius and positioned to offer an unprecedented banking experience in Kenya to retail, SME and corporate clients. Following approval by the Central Bank of Kenya, the bank started its operations in Kenya in May 2017 and currently has a branch network of 33 branches countrywide complemented by ATMs, mobile banking, online banking, extensive agency banking services and an available contact centre to match our client base of over 100,000. Additionally, SBM Bank Kenya operates as an Authorised Depository and as an Authorised Securities Dealer following a license issuance by the Capital Markets Authority.
Intern, Data Protection
Department: Risk
Band/Level: Intern
Location: Head Office
Contract Terms: FixedTermContract
Expiry Date: Feb 16 2026
Job Purpose:
The Data Protection Intern will support the Data Protection Office in ensuring the organization’s compliance with data protection laws and internal privacy policies. This role involves assisting with data audits, documentation, awareness initiatives, and responding to data protection queries. This is an excellent opportunity for a motivated individual interested in privacy, information security, and regulatory compliance.
Key Responsibilities:
Compliance & Governance:
- Assist in monitoring compliance with data protection laws, including the Data Protection Act, 2019.
- Support the administration and updating of data protection policies, procedures, and records.
- Help in conducting Data Protection Impact Assessments (DPIAs).
Data Mapping & Documentation
- Participate in mapping personal data flows across the organization.
- Maintain records of processing activities (ROPAs).
- Assist in tracking data retention schedules and ensuring proper disposal of records.
Incident Management
- Support the DPO in documenting and tracking data breaches or privacy incidents.
- Participate in initial risk assessments and follow-ups.
Training & Awareness
- Assist in developing privacy awareness materials for staff.
- Coordinate and support internal training sessions on data protection.
Research & Continuous Improvement
- Conduct research on emerging privacy trends, regulatory updates, and best practices.
- Assist in preparing reports, presentations, and compliance dashboards
Knowledge, Skills and Experience required for this Role
Recently completed a degree in Law, KSL Post Graduate Diploma, Information Security, or a related field.
Basic understanding of data protection principles and privacy laws (e.g., Kenya Data Protection Act, GDPR is a plus).
Technical & Soft Skills
- Strong attention to detail and analytical skills.
- Good written and verbal communication.
- Ability to maintain confidentiality and handle sensitive information with discretion.
- Proficiency in Microsoft Office tools (Word, Excel, PowerPoint).
- Interest in compliance, privacy, cybersecurity, or regulatory frameworks.
Personal Attributes
- High integrity and ethical conduct.
- Willingness to learn and adapt quickly.
- Proactive, well-organized, and able to work both independently and in teams.
- Problem-solving mindset with curiosity for emerging data protection issues.
COMMENTS