I T security Officer at I& M Bank Uganda , Kampala, Uganda

Urgent
Application deadline closed.

Job Description

The IT Security Officer (ITSO) is accountable for ensuring appropriate controls are in place for the security of information assets. The ITSO safeguards information by seeing that security risks are identified, assessed, and accurately reported.

KEY RESPONSIBILITIES:

Implementation of Security enhancement projects efficiently within the timelines.
Maintain the Bank’s Information Security Framework and underlying policies, procedures, standards, and guidelines.
Actively ensure appropriate administrative, physical, and technical safeguards are in place to protect the Bank’s information assets from internal and external threats.
Thoroughly conduct and complete regular IT system reviews and audits as required engaging both internal business partners across the Bank and external resources.
Ensure that disaster recovery and emergency operating procedures are in place and tested on a regular basis.
Manage and assist in performing on-going security monitoring of information systems including assessing information security risk through qualitative risk analysis on a regular basis, conducting functional and gap analyses to determine the extent to which key business areas and infrastructure comply with statutory and regulatory requirements.
Ensure effective staff training programs are in place to increase security awareness.
Ensure that all IT assets have been installed with the Bank’s recommended antivirus solution and have been joined to the Bank’s active directory domain.

KEY PERFORMANCE INDICATORS:

Ensure Data Restoration exercises are carried out on a regular basis (At least twice a Year).
Carrying out of regular security assessment on the Bank’s IT infrastructure (Satisfactory penetration testing results, system assessment reports)
Performance of IT system vulnerability tests (A Satisfactory vulnerability testing result, Health check reports)
Update and patch management of all systems Bank wide (100 % compliance to the latest patches)
Reviewing of all critical system logs on a regular basis (File with critical system logs)
Ensure that all critical system logs are be sent to the central repository (100 % compliance of systems tagged to centralized logs server, Centralised Logs server health check reports)
Provide security reports on a regular basis (Weekly IT security assessments)
Ensure that all Bank’s IT infrastructure are configured to the standards that are recommended by the IT Policy and Manuals (Satisfactory IT Audit/Compliance ratings)
Carry out Bank wide security awareness program (Trainings, regular communication to I&M UG staff)
Attain a satisfactory IT infrastructure Vulnerability assessment.

Minimum Education Qualification:

B.Sc. in Computer Science / Information Technology or degree in electronics/ Communication

Work Experience:

2-4 years demonstrated in an IT security related role.

Required Competencies (Knowledge, Skills & Abilities):

Possess problem solving skills.
Demonstrate an in-depth knowledge of Information Security risk and industry best practices.
Ability to troubleshoot the common network problems.
Knowledge of the required tools to work on the networks.
Knowledge of the different hardware used on the network and how it works.
Understanding of the different system configurations.
Understanding of the different hardware equipment models.
Ability to solve common computer user problems.
Organization and coordination