Job Title: Business Intelligence Analytics Executive Organisation: True North Consult Ltd…
IT Risk Officer Jobs – Bank of Africa
Job Title: IT Risk Officer
Organisation: Bank of Africa
Duty Station: Kampala, Uganda
About US:
Bank of Africa – Uganda Ltd. is part of GROUPE BANK OF AFRICA (BOA) comprising 16 Commercial Banks, 3 Leasing Companies, 2 Investment Companies, a Stock Brokerage Company, an Asset Management Company and a Mortgage Bank. It spans 15 African countries and France, employing over 5,000 people.
Job Summary: The IT Risk Officer will provide technical expertise with regards to Information Security and other ICT-related business processes, and oversee the ongoing management of information security policies, procedures, and technical systems in order to maintain the confidentiality, integrity, and availability of all of the Bank’s information systems at all times.
Key Duties and Responsibilities:
- Prepare, implement and review the Bank’s ICT security policy, procedures, controls and standards for both existing and new applications
- Ensure reviews are conducted to ensure that all systems have effective, quality ICT security documentation in place, including: qualitative risk assessments; current and effective ICT security plans; annual system self-assessments; current and tested contingency plans; and current certification and accreditation
- Conduct regular Business Impact Assessment, and derive Business Continuity Plans and a standing Disaster Recovery Plan for the Bank
- Conduct self-assessments of the Bank’s ICT Security Program to ensure the Bank’s effective implementation of and compliance with established policies and procedures and best practices
- Address/correct any weakness identified during assessments and audit exercises
- Monitor business systems through adequate audit logging, scanning, and monitoring processes
- Establish and implement a process to ensure that all users receive periodic ICT security awareness briefings and communicate rules of behavior, train staff to fulfill their ICT security responsibilities, and understand the consequences of non-compliance
- Monitor, document and ensure resolution of all incidents, implement incident handling and escalation procedures, and report all incidents to the Head of Risk
- Ensure that ICT security is addressed in the development and acquisition process of all Information Systems and Security Related products and services
- Monitor and enforce internal risk policies related to ICT
- Monitor and report any violations of ICT risk policy and proposal of appropriate response measures
- Assist the business/support units to manage and implement ICT risk management mechanisms
- Monitor developments in ICT risk management approaches in the industry, assess viability and recommend actions for implementation and improvement
- Perform any other duties that may be assigned from time to time by the Head of Risk
Qualifications, Skills and Experience:
- Bachelor’s degree in ICT, Computer Science or a related field
- ICT related qualifications is a must (including a University Degree and International Professional Certification) like CISM, CISA, CRISC, CISSP, ISO/ IEC 27001
- Three or more years of working experience of which 2 years’ experience in a complex organization preferably in the Financial Services Industry
- Relevant areas of expertise IT security
- Ready to work overtime
- Keen interest in IT and developments in the financial sector
- Attention to detail, analytical abilities and the ability to recognize trends in data
- Creativity and patience
- Logic and objectivity
- Report writing skills
- An inquisitive nature
- A proactive approach with the confidence to make decisions
- A methodical and well-organised approach to work
- The ability to work under pressure and meet deadlines
- Communication skills and the ability to interact effectively with a range of people
- Understanding of confidentiality issues, and the law relating to them
- Experience in risk management processes related to Business Impact Analysis, Business Continuity Planning, Disaster Recovery Planning, Change Management etc.
- Experience and / or qualifications in Oracle databases, networks and systems management and ICT projects and Operations in general
- Policy formulation and implementation
- Project management experience (Quality Assurance and Risk Management)
Competencies
- Business acumen
- Planning and project management skills
- ICT change management skills
- Analytical skills
- Initiative/self-drive
- Strong communication and presentation skills
- Interpersonal skills with ability to influence people across the Bank
- Teamwork skills
- Monitoring and follow-up skills
- Able to work in a fast-paced and results-oriented environment
How to Apply:
All candidates should apply online at the link below.
Deadline: 27th May 2024
For more of the latest jobs, please visit https://www.theugandanjobline.com or find us on our facebook page https://www.facebook.com/UgandanJobline