Job Title: ICT
Security & Compliance Officer
Security & Compliance Officer
Organization: PostBank Uganda Ltd
Reports to: Manager Compliance
Duty Station: Kampala, Uganda
Reports to: Manager Compliance
Duty Station: Kampala, Uganda
About PostBank:
PostBank Uganda Ltd is a government owned bank regulated by Bank of
Uganda under the Financial Institutions Act, 2004. The bank focuses on the mass
market with operations spread across the country.
Uganda under the Financial Institutions Act, 2004. The bank focuses on the mass
market with operations spread across the country.
Job Summary: The PostBank ICT Security & Compliance
Officer will primarily be responsible for the development and delivery of a
comprehensive information security and privacy program / policy for the Bank.
As the ICT Security & Compliance Officer, you are required to protect the
bank’s information and it’s infrastructure from external or internal threats
and to ensure that the bank complies with statutory and regulatory requirements
regarding information access, security and privacy.
Officer will primarily be responsible for the development and delivery of a
comprehensive information security and privacy program / policy for the Bank.
As the ICT Security & Compliance Officer, you are required to protect the
bank’s information and it’s infrastructure from external or internal threats
and to ensure that the bank complies with statutory and regulatory requirements
regarding information access, security and privacy.
Key Duties and Responsibilities:
1. Risk Assessment and Incident Prevention:
- Develop and implement
an ongoing risk assessment program targeting information security and
privacy matters; - Recommend methods for
vulnerability detection and remediation, and oversee vulnerability
testing.
2. Policy:
- Coordinate the
development and bank information security policies, standards and
procedures. - Work with key ICT and
E-Banking personnel, data custodians and bank leadership in the
development of such policies. - Ensure that bank
policies support compliance with external requirements. - Manage the
dissemination of policies, standards and procedures to the bank community
3. Education and training:
- Coordinate the
development and delivery of an education and training program on
information security and privacy matters for employees, and all authorized
users. - He/ she should ensure
that all employees are fully educated about their information security and
privacy protection responsibilities.
4. Compliance and Enforcement:
- Serve as the bank
compliance officer with respect to bank information security policies and
regulations while protecting the bank’s information and information
processing assets. - He / She should
coordinate information security efforts with the Internal Audit
department.
5. Incident Response:
- Develop and implement
an incident reporting and response system to address bank Information
security incidents (breaches), respond to alleged policy violations or
complaints from external parties. - Serve as the official
bank contact point for information security, privacy and copyright
infringement incidents, including relationships with law enforcement
entities.
6. Maintain Knowledgebase: Stay abreast with the latest
Information security and privacy legislation, regulations, advisories, alerts
and vulnerabilities pertaining to the bank and its mission.
Information security and privacy legislation, regulations, advisories, alerts
and vulnerabilities pertaining to the bank and its mission.
7. Emergency Preparedness: She / He should take part in bank
disaster recovery and emergency operating on a regular basis.
disaster recovery and emergency operating on a regular basis.
- Perform any other
duties as required.
Qualifications, Skills and Experience:
- The candidate should
hold a bachelor’s degree in Computer science or Information Technology or
related discipline required - Professional
certification in any of the following; CISSP, MCSA, CISA, CIA is desirable - Two or more years’
experience in Information security. - Possess the ability to
collaborate and build consensus across departments and among stakeholders
who rely on information and information systems for bank operations. - Performing ongoing
risk assessments, evaluation of information security controls, and
proactively maintaining compliance with industry regulations related to
information security - Past exposure and
experience with a wide range of relevant systems, and security monitoring
and detection tools. - Possess the ability to
plan, design, develop, test, implement and monitor IT security systems - Highly proactive and
accountable. - Excellent interpersonal
and people management skills. - Possess a high degree
of personal integrity, a hard worker and ability to manage change. Strong
written and verbal communication ability.
How to Apply:
All interested candidates should send a curriculum vitae, certified
copies of academic documents, applicants address , email and day time telephone
contacts , Postal/email address and daytime telephone contact of three referees
of good standing in society to;
Head of Human Resource
Post Bank Uganda Ltd
Plot 4/6 Nkrumah Road,
P.O. Box 7189 Kampala, Uganda
copies of academic documents, applicants address , email and day time telephone
contacts , Postal/email address and daytime telephone contact of three referees
of good standing in society to;
Head of Human Resource
Post Bank Uganda Ltd
Plot 4/6 Nkrumah Road,
P.O. Box 7189 Kampala, Uganda
Deadline: 2nd May, 2014
For
More Ugandan Jobs, Please Visit https://www.theugandanjobline.com or
find us on our facebook page https://www.facebook.com/UgandanJobline