Validity period: 06/12/2022 – 23/12/2022
Duty Station: Head office
Position: Information Security and Business Continuity Officer
Department: Risk and Internal Controls department
About FINCA Uganda
FINCA Uganda is a subsidiary of FINCA Impact Finance and part of a network of 21 microfinance institutions and banks that provide socially responsible financial services that enable low – income individuals and communities to invest in the future. FINCA Uganda currently offers loans, savings and money transfer services in Uganda, one of the most competitive and dynamic microfinance markets in the world. FINCA is looking for a dynamic person to join their team of professionals as Information Security & Business Continuity Officer. Details are highlighted as follows:
Job Title: Information Security & Business Continuity Officer
Duty Station: Head Office
- Government vacancies & Recruitment ( May 2024) : Open Jobs/Vacancies
- DPSA Vacancy Circular 17 of 2024 : Open Jobs/Application
- FNB Recruitment ( May 2024) : Open Jobs/ Online Application
- PPC recruitment ( May 2024) : 4 Open Jobs/Online application
- DPSA Vacancy Circulars ( May 2024) : Open Jobs/Application
Reports to: Head of Risk
SUMMARY
The Information Security & Business Continuity Officer is responsible for coordinating information security and business continuity initiatives within the organization and ensuring that the organization is compliant to the laid down requirements as stipulated in governing policies.
Key duties and responsibilities:
- Managing Information Security risks and ensuring compliance with Business Continuity planning, IT Disaster Recovery and Crisis Management.
- Maintaining and continuously improving FINCA Uganda’s cyber security monitoring and control framework, ensuring that effective cyber security threat, vulnerability and incident management practices are incorporated into IT and business practices
- Maintaining and facilitating security logs and incident management, working closely with IT resources to design, test and monitor effective cybersecurity controls
- Facilitating implementation of Information Security and Business Continuity policies, standards and procedures within FINCA Uganda and ensuring delivery of assigned tasks/activities
- Coordinating and supporting Information Security and Business Continuity Risk and compliance related activities
- Coordinating the delivery of awareness and training program on information security and business continuity within FINCA Uganda
- Coordinating Business and IT Continuity Planning and DR testing across FINCA Uganda Business Units and infrastructure
- Coordinating information security incident response and reporting in FINCA Uganda and supporting IT staff to resolve identified cyber security issues/ concerns.
- Facilitating implementation and maintenance of IT Security controls within FINCA Uganda and ensuring delivery of assigned IT security tasks/activities
- Monitoring security logs and incidents including performing investigations and follow-up on implementation of remedial actions
- Assessing and documenting and providing recommendations for FINCA Uganda security policies.
- Developing recommendations for cybersecurity improvements; documenting cybersecurity posture of 3rd party vendors and their services against FINCA Uganda services.
- Monitoring appropriate external and internal sources of newly identified threats a vulnerabilities and assessing existing systems against them.
- Communicating and collaborating with internal clients to contribute to internal security direction and providing influence and technical guidance on current and future technical security directions
- Acting as a cybersecurity subject matter expert throughout the projects lifecycle, including functional requirements, design specifications, testing and quality assurance, implementation and support.
- Ensuring that application development, design and deployment meet FINCA Uganda’s security standards.
- Ensure utilization of appropriate tools to evaluate business environment against security policy and risk posture.
Competencies
To perform the job successfully, an individual should demonstrate the following competencies:
- Excellent at Analytics and reporting
- Security acumen
- Good communication and presentation skills
- High Integrity/Ethics
- Virtual team working and keeping good relationships is paramount
Qualifications and Experience
Bachelor’s Degree in Computer Science, Cybersecurity, Management Information systems, Business Administration or related field. Master’s degree will be an added advantage
5 years of demonstrated experience in Information Security, Risk Management in a Microfinance or Banking Organization
Working knowledge of national and international security regulatory compliances and frameworks such as ISO 27001, NIST, COBIT and PCI DSS; Industry Certifications in CISSP, CISM, SANS GIAC, CBCI; and Security Vendor Certifications e.g Cisco, TrendMicro, Splunk, Qualys is a plus.
How to Apply:
All candidates who so wish to take up this role in the aforementioned capacity are encouraged to send their applications with detailed CVs including present position and copies of relevant professional/academic certificates to: ug_jobs@fincaug.org
Deadline: 22nd December 2022