Validity period: 22/05/2023 – 03/06/2023
Duty Station: Head office
Position: Information Security and Business Continuity Officer
Department: Risk and Internal Controls department
SUMMARY

The Information Security & Business Continuity Officer is responsible for coordinating information security and business continuity initiatives within the organization and ensuring that the organization is compliant with the laid down requirements as stipulated in governing policies.

Key duties and responsibilities:

  1. Managing Information Security risks and ensuring compliance with Business Continuity Planning, IT Disaster Recovery, and Crisis Management.
  2. Maintaining and continuously improving FINCA Uganda’s cyber security monitoring and control framework, ensuring that effective cyber security threat, vulnerability, and incident management practices are incorporated into IT and business practices
  3. Maintaining and facilitating security logs and incident management, working closely with IT resources to design, test, and monitor adequate cybersecurity controls
  4. Facilitating implementation of Information Security and Business Continuity policies, standards, and procedures within FINCA Uganda and ensuring delivery of assigned tasks/activities
  5. Coordinating and supporting Information Security and Business Continuity Risk and compliance-related activities
  6. Coordinating the delivery of awareness and training programs on information security and business continuity within FINCA Uganda
  7. Coordinating Business and IT Continuity Planning and DR testing across FINCA Uganda Business Units and infrastructure
  8. Coordinating information security incident response and reporting in FINCA Uganda and supporting IT staff to resolve identified cyber security issues/ concerns.
  9. Facilitating implementation and maintenance of IT Security controls within FINCA Uganda and ensuring delivery of assigned IT security tasks/activities
  10. Monitoring security logs and incidents including performing investigations and follow-up on the implementation of remedial actions
  11. Assessing and documenting and providing recommendations for FINCA Uganda security policies.
  12. Developing recommendations for cybersecurity improvements; documenting the cybersecurity posture of 3rd party vendors and their services against FINCA Uganda services.
  13. Monitoring appropriate external and internal sources of newly identified threats and vulnerabilities and assessing existing systems against them.
  14. Communicating and collaborating with internal clients to contribute to internal security direction and providing influence and technical guidance on current and future technical security directions
  15. Acting as a cybersecurity subject matter expert throughout the project’s lifecycle, including functional requirements, design specifications, testing and quality assurance, implementation, and support.
  16. Ensuring that application development, design, and deployment meet FINCA Uganda’s security standards.
  17. Ensure utilization of appropriate tools to evaluate the business environment against security policy and risk posture.

Competencies

To perform the job successfully, an individual should demonstrate the following competencies:

  • Excellent at Analytics and reporting
  • Security acumen
  • Good communication and presentation skills
  • High Integrity/Ethics
  • Virtual team working and keeping good relationships are paramount

Qualifications and Experience

 Bachelor’s Degree in Computer Science, Cybersecurity, Management Information systems, Business Administration, or related field.  A Master’s degree will be an added advantage

 5 years of demonstrated experience in Information Security, Risk Management in a Microfinance or Banking Organization

Working knowledge of national and international security regulatory compliances and frameworks such as ISO 27001, NIST, COBIT, and PCI DSS; Industry Certifications in CISSP, CISM, SANS GIAC, CBCI; and Security Vendor Certifications e.g Cisco, TrendMicro, Splunk, Qualys is a plus.

How to Apply:

All candidates who so wish to take up this role in the aforementioned capacity are encouraged to send their applications with detailed CVs including their present position and copies of relevant professional/academic certificates to: ug_jobs@fincaug.org

 Deadline: 2nd June, 2023

PLEASE SHARE TO