Fresher IT Security Risk Officer Jobs – Cairo Bank Uganda

Job Title:   IT Security Risk Officer (Fresher Jobs) 

Organisation: Cairo Bank Uganda

Duty Station: Kampala, Uganda

Reports to: Chief Risk Officer

About Organisation:

Cairo Bank Uganda was incorporated on 11th July, 1994.  The Bank was formerly known as Cairo International Bank owned by the three leading Egyptian Banks namely; Banque Du Caire, Bank Misr and National Bank of Egypt.  In 2019, it became a fully owned subsidiary of Banque Du Caire (BDC). The shareholder consolidation in 2019 was on the back of expanding its presence across Africa whilst providing an entry point into the COMESA market.

Job Summary: The Job holder will lead the implementation and oversight of the Bank’s information security strategy, policies and controls to protect data, systems and infrastructure from cyber threats.

Key Duties and Responsibilities:

• Support the Chief Information Security Officer in designing an effective cybersecurity governance framework for the bank, including cyber testing and exercises, cloud computing, supply chain risk management, and public key infrastructure
• Maintain and enforce information security policies, standards and procedures
• Manage SIEM, IDS, IPS, Endpoint security, DLP and other security tools
• Coordinate red/blue team exercises and security awareness training for staff.
• Develop adequate processes for monitoring IT systems to detect cyber and technology events and incidents in a timely manner.
• Maintain a current enterprise-wide knowledge base of its users, devices, applications, software licenses and their relationships.
• Identify and assess security risks, third party/vendor risks vulnerabilities, and threats, and develop appropriate risk mitigation strategies
• Engage with external partners, vendors, and industry peers to stay abreast of the latest security trends, technologies, and threats.
• Conduct regular security training sessions and workshops to enhance the security awareness and knowledge of employees across the organization.
• Support the Chief Information Security Officer in the implementation, and operation of security controls and technologies to protect the bank’s infrastructure, applications, and data.
• Develop and maintain an incident response plan, ensuring the organization’s readiness to detect, respond, and recover from security incidents.
• Conduct regular security assessments, penetration testing, and vulnerability scanning to identify potential weaknesses and recommend remediation measures.
• Ensure frequent data backups of critical IT systems (e.g. real time back up of changes made to critical data) are carried out to a separate storage location.
• Continuously test disaster recovery and Business Continuity Plans (BCP) arrangements to ensure that the institution can continue to function and meet its regulatory obligations in the event of an unforeseen attack through cyber-crime.
• Safeguarding the confidentiality, integrity and availability of information.
• Mentor and manage a team of security analysts