IT Risk Security Manager Employment Opportunity – DFCU Bank

Job Title:           IT Risk Security Manager
Organisation: DFCU Bank
Duty Station: Kampala,
Reports to: Head of Risk
& Compliance
About US:
DFCU bank is a fast growing commercial bank offering a variety of
innovative products and services. DFCU Limited was started by the Commonwealth
Development Corporation (CDC) of the United Kingdom and the Government of
Uganda through the Uganda Development Corporation (UDC) under the name of
Development Finance Company of Uganda Limited. Later restructuring brought in
DEG (of Germany) and International Finance Corporation (IFC) as equal partners
with CDC and UDC, each having a 25% stake in the company. Its objective was to
support long-term development projects whose financing needs and risk did not
appeal to the then existing financial commercial lending institutions.
Job Summary: The IT Risk
Security Manager will be mainly responsible for upholding confidentiality,
integrity and availability of the information technology environment in
compliance with industry regulations. The job holder is also responsible for
ongoing risk assessment, evaluation of appropriate security controls,
development and monitoring of policies and standards, security awareness and
proactive compliance with industry regulations related to information security.
Key Duties and
  • Work closely with Information Technology
    professionals responsible for user security and access controls to review
    privileged levels of access and changes to the technology environment for
  • Develop the information security strategy
    in conjunction with the technology group within the Bank.
  • Develop and maintain information security
    risk assessments designed to evaluate inherent risks, controls, and
    residual risks. Effectively advocate within the business for security
    controls that mitigate unacceptable risks.
  • Oversee security awareness activities for
    Bank employees and customers. Ensure that the Bank culture maintains a
    commitment to security.
  • Oversight of the vulnerability management
  • Conduct assessment of security controls
    and evaluate results relative to risk assessment.
  • Work in liaison with IT department to
    develop effective information security policies and standards.
  • Regularly monitor compliance and work with
    management to ensure policies are implemented effectively.
  • Consult with Information Technology and
    other business unit stakeholders during project and product development
    efforts and work as well with IT department to ensure that appropriate
    security controls are considered during vendor selection and development
  • Keenly monitor regulations and technology
    trends that affect financial institutions. Evaluate compliance and develop
    plans for compliance with regards to information security. Educate Bank
    employees and act as a champion for compliance throughout the Bank.
  • Build and maintain successful external
    relationships with security technology and service providers, industry
    experts, local law enforcement, industry consortiums, and regulatory
Qualifications, Skills and
  • The applicant for the DFCU IT Risk
    Security Manager career opportunity should hold a Bachelors or Graduate
    Degree with sufficient background in information security and business
    management disciplines.
  • At least three to five years of
    information security related experience.
  • Previous exposure and experience in
    managing projects and programs to achieve information security objectives.
  • Demonstrated exceptional written and
    verbal communication skills.
  • Broad knowledge and understanding of
    current technology and regulatory trends affecting financial institution
    information security programs.
  • Excellent interpersonal skills and the
    ability to work effectively with people in a wide range of positions and
  • Proven ability to analyze security and
    technology control effectiveness.
  • Knowledge of trends in technology in
    multiple areas.
  • Ability to effectively prioritize and
    execute tasks in a high-pressure environment.
How to Apply:
All candidates who so wish to join the banking sector in the
aforementioned capacity are encouraged to send their applications with detailed
CVs including present position and copies of relevant professional/academic certificates
Deadline: 28th February,
For more of the latest jobs, please visit or
find us on our facebook page

Leave a Reply

Your email address will not be published. Required fields are marked *