Job Title: ICT Risk Analyst
Organisation: UGAFODE Microfinance Limited (MDI)
Duty Station: Kampala, Uganda
Ref: HR/STAFF/VAC – 08/05/2025/1
About Organisation:
UGAFODE Microfinance Limited (MDI) is a registered financial institution in Uganda and is adherent to the Central Bank’s regulations and guidelines and was founded in 1994 to provide quality microfinance services.
Job Summary: Responsible for the management of the institution’s ICT risks in line with the institution’s policies and procedures and; applicable regulations.
Key Duties and Responsibilities:
- Draft /develop/review of the risk matrix for the institution: In conjunction with Head of Risk, initiate and draft ICT areas of focus for risks by identifying, reviewing and profiling company’s new and existing ICT systems.
- Using different risk identification/profiling methods like; observations, reported lapses in business and Audit findings, conduct risk identification and assessment.
- Conduct trainings and awareness sessions to staff highlighting potential ICT risks and mitigants to operations, strategy and people processes so as to embed an ICT risk management culture in the company.
- Support with risk awareness in institutional projects: Participate in the identification, assessment and management of potential risks in all institution ICT projects, investments, processes and policies by highlighting potential risks and due mitigations to avert financial or non-financial losses.
- Reports: Develop and submit reports as required arising out of IT risk identification, assessment and mitigation to support business efficiencies and further management decision making in the institution.
- Risk benchmarking: Carry out benchmarking on best practices and procedures in ICT risk identification, planning, controls to support the institution to effectively manage ICT risks.
- Monitor ICT activities to ensure adherence to set internal and external ICT policies, procedures and other guidelines governing risk identification, assessment, control and overall Risk management processes in the institution.
Qualifications, Skills and Experience:
- BA or BS in Information Systems Technology, Computer Science, or Engineering, or any other related qualification.
- Possesses one or more of the following certifications: Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), or other related certification.
- Minimum of 2 years’ experience in IT, IT Risk Management or IT Audit/Compliance in a banking institution.
- Demonstrates domain knowledge of IT infrastructure, application development / Software Development Lifecycle (SDLC) and / or information security.
- Abreast with knowledge on emerging ICT risks.
- Analytical skills and agility.
How to Apply:
If you believe you meet the requirements as stated, submit an application letter together with an up-to-date CV to our email: recruitment@ugafode.co.ug. Save the Documents as Your Full Name & indicate the job title you are applying for in the Email Subject Line. Your applications should be addressed to the Head of Human Resources
Deadline: 13th May 2025.
Note: UGAFODE provides equal opportunity in employment to all people without regard to their gender. Therefore, women are also encouraged to apply.