Job Title: Cyber Security Officer (Fresher Jobs)
Organisation: Yako Bank
Duty Station: Kampala, Uganda
About Organisation:
Yako Bank (U) Limited was incorporated in the Republic of Uganda in 2010 and licensed as a Credit Institution by Bank of Uganda in 2020. In September 2015, Yako got its license to operate as a deposit taking institution and started operations under the name Yako Microfinance (U) Limited. It upgraded to a Credit Institution in 2020 and was licensed to operate as Yako Bank (U) Limited. Yako Bank is owned by different shareholders and has been licensed by Bank of Uganda to provide savings and lending products to different clients.
Job Summary: Responsible for enforcing compliance to all aspects of computer, network, and Information security in Yako Bank. The job entails operationalizing of the Cyber Security Strategy, Policies, Standards, Procedures, Methods, best practices, architecture and systems to protect the Bank’s data and ICT systems from Cyber threats while evaluating the Bank’s ICT environment and data processing to ensure compliance to applicable standards & laws and relevance with industry security norms.
Key Duties and Responsibilities:
- Implement, maintain and monitor Yako Bank’s Cyber Security Strategy and participation in the design and implementation of up-to-date IT standards, policies, guidelines and appropriate architectural principles to ensure the Yako Bank IT Security goals continue to be met
- Manage the Bank’s IT Security systems and tools, e.g. firewalls, data protection controls, log analyzers, end-point-security, patching, encryption, vulnerability scanning and pen testing etc. ensuring that they are used optimally, including, monitoring and enforcing security access procedures to the Bank’s Information Technology Systems and networks.
- Monitor the network and systems for suspicious activity, including attempted unauthorized access, malware, and other cyber threats
- Research, evaluate, design, test, recommend and/or plan technological upgrade improvements and major changes to the IT Security environment, and analyze their impact on the existing environment, while overseeing their proper deployment, configuration, and functioning.
- Identity and Access Management: Develop and implement identity and access management policies and procedures to control user access to sensitive data and systems
- Providing training to IT Security personnel and IT Security Awareness trainings to Yako Bank personnel as per established IT security training programs to promote good security hygiene.
- Serve as the department’s representative to support IT security & operational audits by Yako Bank’s internal assurance functions or third-parties to ensure the Bank maintains a strong security posture including ensuring that service-level agreements with outsourced ICT security services providers are enforced.
- Enforce the Bank’s ICT Change and Incident management activities and processes ensuring that they are in line with the approved IT Policies.
- Work with ICT staffs to ensure that all Audit, Risk, Vulnerability & compliance findings are appreciated and closed in time.
- Enforce the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend and support implementation of treatment plans
- Provide guidance during security incidents and investigations, ensuring root-cause analysis is undertaken and input suggested approaches to deal with lessons identified
- Ensure that systems and the information within them comply with the Data-Protection and-Privacy-Act-2019 of Uganda and other relevant legal and regulatory requirements.
- Work with the IT team to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, Software’s and 3rd party connections before being introduced into the ICT environment in compliance with current Security Policies
- Maintain a knowledgebase comprising a technical reference library, security advisories and alerts, information on security trends and practices, and laws and regulations
- Support the Manager Cyber Security in developing and planning of the IT Security section’s annual Budgets and work plans and execution of the same.
Qualifications, Skills and Experience:
- Bachelor’s degree in Computer Science, Information Technology or other relevant degree from a recognized University and any certification in Systems, Databases or Networks
- Minimum of 2 years’ experience in an organization of at least the same nature preferably a, Financial institution, Government institution, Telecom institution or a consulting firm
- Have well-developed IT skills and experience in related jobs in IT, such as a network engineer/ Administrator, a database administrator, a systems analyst, applications developer, IT auditing, IT risk analyst, etc.
- Professional IT Security Certifications / Trainings e.g. CISSP, CEH, CCSP, MSCE, CISA, CISM, NSE etc. and Network certifications e.g. CCNA, CCNP are an added advantage
- Must have excellent verbal and written communication skills and excellent interpersonal skills with the ability.
- Knowledge and understanding of the Data-Protection-and-Privacy-Act-2019 of Uganda and other relevant legal and regulatory requirements.
- Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans
- Ability to understand and assess technology systems and applications from both a technical and business function perspective
- Understanding of information security principles and best practices (e.g.,
- ISO27001/2, COBIT, NIST, PCI and ISF Standards of Good Practice for Information Security).
- Excellent analytical and problem-solving abilities to analyze security requirements and relate them to appropriate security controls
- Experience in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies
- Knowledge of industry best practices regarding digitalization and automation of banking services.
- Knowledge of UNIX Operating Systems, Microsoft Server Operating Systems, Virtualization technologies, Intrusion Prevention & Detection systems and advanced enterprise networks (LANS & WANs)
How to Apply:
Suitably qualified candidates should address their application to Head, Human Resource, Yako Bank. email it to [email protected] as well as photocopies of academic testimonials, and a CV. The CV should include telephone contacts and email addresses of three referees, one of who should be the most recent employer.
Deadline: 7th July 2025
For more of the latest jobs, please visit https://www.theugandanjobline.com or find us on our facebook page https://www.facebook.com/UgandanJobline
Level of Education: Bachelor Degree
Work Hours: 8
Experience in Months: 24