IT Security Officer Job Careers – FINCA Uganda
Job Title: IT Security Officer
Organisation: FINCA Uganda
Duty Station: Kampala, Uganda
About US:
FINCA Uganda is a subsidiary of FINCA Microfinance Holding Company LLC (FMH) and part of a network of 20 microfinance institutions and banks that provide socially responsible financial services that enable low – income individuals and communities to invest in the future. FINCA Uganda currently offers loans, savings and money transfer services in Uganda – one of the most competitive and dynamic microfinance markets in the world. FINCA Uganda is looking for dynamic persons to join our team of professionals to help better serve our clients.
Job Summary: The IT Security Officer role is responsible for protecting FINCA Uganda information assets such as IT infrastructure, edge devices, networks, and data. More granularity against internal and external attacks. S/he will be responsible for preventing unauthorized access and attacks on IT assets.
Information Technology security officer will help to protect FINCA Uganda information assets by employing a range of technologies and processes to prevent, detect and manage cyber threats. The IT security officer will further protect IT infrastructure (including networks, hardware and software) from a range of criminal activity. S/He will monitor networks and systems, detect security threats (‘events’), analyze and report on threats, intrusion attempt, either resolving them or escalating them, depending on the severity.
Key Duties and Responsibilities:
- Analyzing and assessing vulnerabilities in the infrastructure (software, hardware, and networks), investigating available tools and countermeasures to remedy the detected vulnerabilities.
- Performing regular audits to ensure security practices are compliant.
- Deploying endpoint detection and prevention tools to thwart malicious hacks.
- Setting up patch management systems to update applications automatically.
- Implementing comprehensive vulnerability management systems across all assets on-premises and in the cloud.
- Designing new security systems or upgrading existing ones.
- Identifying IT security weaknesses and implementing solutions.
- Working hand in hand with the IS security personnel in planning for disaster recovery in the event of any security breaches.
- Monitoring for attacks, intrusions and unusual, unauthorized or illegal activity.
- Testing and evaluate security products.
- Using advanced analytic tools to determine emerging threat patterns and vulnerabilities.
- Engaging in ‘ethical hacking’, for example, simulating security breaches.
- Identifying potential weaknesses and implement measures, such as firewalls and encryption.
- Monitoring identity and access management, including monitoring for abuse of permissions by authorized system users.
- Liaising with stakeholders in relation to IT security issues and provide future recommendations.
- Generating reports for both technical and non-technical staff and stakeholders.
- Maintaining an IT risk register and assist with internal and external audits relating to IT security.
- Monitoring and responding to ‘phishing’ emails and ‘pharming’ activity.
- Assisting with the creation, maintenance and delivery of cyber security awareness training for colleagues.
- Ensuring regular DR tests are done and results properly documented.
- Driving own Performance Development, collating relevant documentation, preparing for and arranging reviews and 1:1’s.
Qualifications, Skills and Experience:
- The ideal candidate must hold a Bachelor’s Degree in Information Technology/Computer Science or related field and those with a professional Certification (SANS, CISSP, CISA, CISM, CCNA/P, Security+) is an added advantage.
- Three years of working experience in an IT environment.
- Proven IT Disaster Recovery experience
- Proven experience supporting IT security and implementing IT security technologies
- Technical writing experience
- Strong IT skills and knowledge including hardware, software and networks.
- Meticulous attention to detail.
- Ability to use logic and reasoning to identify the strengths and weaknesses of IT systems.
- A forensic approach to challenges.
- A deep understanding of how hackers work and ability to keep up with the fast pace of change in the criminal cyber-underworld.
- Ability to seek out vulnerabilities in IT infrastructure.
How to Apply:
All interested and qualified candidates are required to apply be email to ug_jobs@fincaug.org
Missed This Job? or Interested in more?. See List of Current Job Vacancies / Opportunities in Uganda