Job Title: IT Security Specialist – Cyber Security
Organisation: NFT Consult Limited
Duty Station: Kampala, Uganda
About the Company:
NFT Consult Limited is a business process outsourcing firm with offices in Uganda, South Africa, Kenya, Botswana Rwanda, Tanzania, Zambia, Burundi and South Sudan.
Job Summary: We are seeking a highly skilled IT Security Specialist to ensure the security, integrity, and resilience of our IT infrastructure that is; Sensitive Data, Networks, Physical & cloud systems. The role involves managing firewalls, monitoring network security, responding to incidents, conducting vulnerability assessments, and implementing security policies. The ideal candidate will have expertise in cybersecurity tools, risk management, and compliance standards to safeguard the organization’s digital assets.
Key Duties and Responsibilities:
- Develop and implement a comprehensive information security strategy aligned with organizational objectives, considering emerging threats and industry best practices.
- Conduct regular risk assessments to identify vulnerabilities and threats to the organization’s information assets. Develop and implement mitigation strategies to minimize risks.
- Create, maintain, and enforce security policies, standards, and procedures to ensure consistent and effective security practices throughout the organization.
- Design and deliver security awareness programs to educate employees about potential risks, security best practices, and the importance of adhering to security policies.
- Lead incident response efforts in the event of security breaches, including investigation, containment, eradication, and recovery. Implement measures to prevent future incidents.
- Evaluate, implement, and manage security technologies such as firewalls, intrusion detection systems, antivirus software, and encryption tools.
- Ensure compliance with relevant security regulations and industry standards, such as GDPR, HIPAA, or PCI DSS.
- Evaluate and manage third-party vendors to ensure they meet the organization’s security standards and requirements.
- Configure, manage, maintain firewalls (Fortinet) and VPNs, Implement and monitor intrusion detection/prevention systems (IDS/IPS) and other network security tools.
- Continuously monitor network traffic, systems, and applications for security breaches and vulnerabilities.
- Develop and execute incident response plans, ensuring timely remediation and reporting.
- Conduct regular security assessments, including penetration testing and risk analysis.
- Develop, implement, and maintain security policies, standards, and best practices.
- Manage user access controls, identity management systems, and multi-factor authentication (MFA) protocols.
- Ensure proper authorization and authentication mechanisms are in place to protect sensitive data.
- Maintain detailed records of security incidents, system vulnerabilities, and remediation measures.
- Generate reports for management on security performance, risk assessment findings, and compliance status.
- Document security configurations, procedures, and policies for internal use and audits.
Qualifications, Skills and Experience:
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
- Proven experience (5+ years) in information security leadership roles, with a strong understanding of security principles, practices, and technologies.
- Strong knowledge of network security protocols, encryption standards, and authentication mechanisms.
- Strong analytical, problem-solving, and communication skills. Ability to lead and motivate teams, effectively communicate complex technical concepts to non-technical stakeholders, and stay abreast of emerging security threats and technologies.
- Knowledge of cloud security architecture, best practices, tools and threat intelligence platforms and analysis techniques.
- Experience in vulnerability assessments, penetration testing, and risk mitigation strategies.
- Familiarity with compliance standards such as ISO 27001, NIST, GDPR, or CIS controls.
- Excellent problem-solving and analytical skills.
- Strong documentation and communication skills.
- Relevant cybersecurity certifications such as CISSP, CISM, CEH, CCSP, or Fortinet NSE.
- Experience with SIEM solutions, endpoint security tools, and forensic analysis.
- Knowledge of scripting and automation for security operations.
How to Apply:
All suitably qualified and interested candidates should apply online through the NFT jobs portal.
Deadline: 30th April 2025
For more of the latest jobs, please visit https://www.theugandanjobline.com or find us on our facebook page https://www.facebook.com/UgandanJobline