IT Security Officer Job
Work Hours: Full-time, 08 hours per day
Salary:
Attractive
Job Deadline: 03 February 2025
Number of Jobs: 01
Hiring Entity: BRAC Uganda Bank Ltd
 |
| BRAC Uganda Bank Ltd |
Location: In Uganda
Job Details:
JOB OPPORTUNITY
BRAC Uganda Bank Ltd launched on 25 April 2019 and attained its status as a Tier II Credit Institution following a successful background as the leading Microfinance services provider in Uganda. The Bank operates 32 CI branches and 159 satellite offices covering 84 districts in Uganda targeting Micro, Small, and Medium Entrepreneurs. BRAC Uganda Bank Ltd promotes financial inclusion by extending financial services to unserved and underserved populations, especially women and youth as well as people living in poverty in rural areas. To enable improve the controls of the bank, we are seeking to fill the following vacancy.
PURPOSE OF THE ROLE
To safeguard BRAC Uganda Bank Ltd’s information technology assets and data from security threats which involves implementing and managing security measures to protect the confidentiality, integrity, and availability of information.
MAIN JOB RESPONSIBILITIES
• Implementing information security safeguards and testing their functionality and effectiveness.
• Coordinate system security configurations, patching, and vulnerability assessment. Implement solutions to the identified vulnerabilities.
• Provide security awareness training to employees to enhance their understanding of cyber security trends and best practices.
• Make periodic reports to Management on cyber security posture, breaches, attacks, and feedback from awareness surveys.
• Keep Management up to date with the new cybersecurity trends.
• Implement, maintain, and enforce policies, procedures, measures, and mechanisms to protect the confidentiality, integrity, and availability of information at BUBL.
• Implement and manage perimeter & Web Access firewalls, intrusion detection/prevention systems, and other network security programs.
• Monitor network traffic for suspicious activity, respond, and contain cyber security incidents.
• Implement and manage endpoint protection and mobile device security.
• Ensure that all devices connected to the network comply with security standards.
• Oversee user access controls and permissions.
• Implement and administer identity awareness & access management systems to ensure only authorized least privilege access to sensitive data and systems.
• Develop and maintain an incident response and containment plan.
• Lead efforts to investigate and respond to security incidents, breaches, and other security-related events.
• Collaborate with Risk, Internal and External auditors to address cyber security concerns.
• Participate in systems development life cycle of all new IT systems and identify weaknesses in new systems, guide management of such weaknesses and make recommendations.
• Monitor security alerts and events to identify and respond to potential threats.
• Develop and implement information security and disaster discovery programs in accordance with approved information security standards.
• Monitor access & logging to all systems and maintain access control profiles on computer networks and systems.
REQUIRED QUALIFICATIONS AND SKILLS
• Bachelor’s degree in computer science or related field.
• At least minimum of 2 years of experience in IT security and risk management area.
• Professional qualifications like Certified Ethical Hacker (CEH), Computer Hacking Forensic Investigator (CHFI) Certification, Certified Information System Auditor (CISA), or Certified Information Systems Security Professional (CISSP) will be an advantage.
KNOWLEDGE, SKILLS & COMPETENCES
• IT Risk assessment and mitigation.
• System and Infrastructure Security Architecture Design and integration.
• Ability to communicate security-related concepts to a broad range of technical and non-technical staff.
• Solid experience in cyber security controls and incident handling.
• Strong knowledge of banking regulations/guidelines relating to cyber security and technology risk management.
• Strong self-motivation, an independent thinker, communication, interpersonal, and analytical skills.
• In-depth knowledge and experience in the following information security areas:
o Vulnerability scanning and auditing tools.
o Enterprise-scale network and host-based IDS architectures.
o Enterprise-scale firewall architectures.
o Secure messaging architectures.
Application procedure
Interested candidates should email their application letter, Curriculum Vitae, and copies of relevant academic documents, in PDF file mentioning the job title as the subject matter to recruitment recruitment.bracugandabankltd@brac.net. All applications should be addressed to the Head of Human Resources and Training at BRAC Uganda Bank Limited.
Posting Date: 2025-01-27
