Job Title: IT Security Officer (Fresher Jobs)
Organisation: I&M Bank Uganda
Duty Station: Kampala, Uganda
Reports to: Head of Legal
About US:
I&M Bank is a leading banking and insurance group in Eastern Africa with a presence in Kenya, Mauritius, Rwanda, Tanzania and Uganda. I&M Bank Uganda is a commercial bank headquartered at Kampala Road plot 6/6A with a growing regional presence. The Bank offers a wide range of commercial banking and financial products and services, and prides itself on introducing innovative products and services based on the needs of its customers.
Job Summary: The IT Security Officer is accountable for ensuring appropriate controls are in place for the security of information assets. The ITSO safeguards information by seeing that security risks are identified, assessed, and accurately reported.
Key Duties and Responsibilities:
- Implementation of Security enhancement projects efficiently within the timelines.
- Maintain the Bank’s Information Security Framework and underlying policies, procedures, standards, and guidelines.
- Actively ensure appropriate administrative, physical, and technical safeguards are in place to protect the Bank’s information assets from internal and external threats.
- Thoroughly conduct and complete regular IT system reviews and audits as required engaging both internal business partners across the Bank and external resources.
- Ensure that disaster recovery and emergency operating procedures are in place and tested on a regular basis.
- Manage and assist in performing on-going security monitoring of information systems including assessing information security risk through qualitative risk analysis on a regular basis, conducting functional and gap analyses to determine the extent to which key business areas and infrastructure comply with statutory and regulatory requirements.
- Ensure effective staff training programs are in place to increase security awareness.
- Ensure that all IT assets have been installed with the Bank’s recommended antivirus solution and have been joined to the Bank’s active directory domain.
Key performance indicators:
- Ensure Data Restoration exercises are carried out on a regular basis (At least twice a Year).
- Carrying out of regular security assessment on the Bank’s IT infrastructure (Satisfactory penetration testing results, system assessment reports)
- Performance of IT system vulnerability tests (A Satisfactory vulnerability testing result, Health check reports)
- Update and patch management of all systems Bank wide (100 % compliance to the latest patches)
- Reviewing of all critical system logs on a regular basis (File with critical system logs)
- Ensure that all critical system logs are be sent to the central repository (100 % compliance of systems tagged to centralized logs server, Centralized Logs server health check reports)
- Provide security reports on a regular basis (Weekly IT security assessments)
- Ensure that all Bank’s IT infrastructure is configured to the standards that are recommended by the IT Policy and Manuals (Satisfactory IT Audit/Compliance ratings)
- Carry out Bank wide security awareness program (Trainings, regular communication to I&M UG staff)
- Attain a satisfactory IT infrastructure Vulnerability assessment.
Qualifications, Skills and Experience:
- The applicant must hold a B.Sc. in Computer Science / Information Technology or degree bin electronics/ Communication
- Two to three years of experience in an IT-security related role.
- Possess problem solving skills.
- Demonstrate an in-depth knowledge of Information Security risk and industry best practices.
- Ability to troubleshoot the common network problems.
- Knowledge of the required tools to work on the networks.
- Knowledge of the different hardware used on the network and how it works.
- Understanding of the different system configurations.
- Understanding of the different hardware equipment models.
- Ability to solve common computer user problems.
- Organization and coordination
How to Apply:
All suitably qualified and interested applicants should apply online at the link below.
Deadline: 1st November 2023