Supervisor Cyber Security Assurance

2025-11-07T14:09:46+00:00

FULL_TIME

Banking

Computer & IT, Management

2025-11-13T17:00:00+00:00

 

Uganda

8

Role Profile: Provide best in class information Security assurance support in line with business needs by offering specialized technical security knowledge to ensure that both new and existing ICT systems, services, and products comply with security regulations.
Continuously assess the effectiveness of security controls, identifying deviations from approved configurations, policies, or standards, and providing guidance on managing risks and meeting compliance requirements for internal and external evaluations.

Key Result Areas:

• Lead the implementation and ongoing maintenance of the Bank’s compliance with industry standards, certifications, and regulatory requirements, ensuring alignment with evolving security best practices.
• Oversee daily Information Security assurance activities, ensuring proactive monitoring, effective implementation of security protocols, and timely reporting for next day reviews on systems.
• Plan and manage the Bank’s annual Information Security awareness initiatives, driving education, training, and staff engagement to strengthen security culture.
• Supervise comprehensive compliance audits and assessments, ensuring strict adherence to ICT, Information Security policies, and industry regulations, while delivering actionable assurance reports.
• Evaluate the effectiveness of Information Security controls across all divisions, providing insights into the maturity of the control environment and highlighting critical risks to senior stakeholders.
• Leverage data from assurance activities to provide expert recommendations on enhancing Information Security measures, improving risk management, and driving continuous improvement.
• Any other work-related duties as may be assigned by the Line Manager

Qualifications and Experience

• Bachelor’s degree in Computer Science, Cyber Security, or a related field.
• Technical certifications in Information System Audit, Security Risk and Governance e.g., CISA, CISSP, CEH, CISM are required
• Advanced degree in Computer Science, Cyber Security, or a related field, and other technical certifications like ISO 27001 Lead Implementor/ Auditor, OSCP, CRISC, ECSA is an added advantage.
• Four (4) years’ experience in a role related to Information Security monitoring and vulnerability management in a large financial institution or a reputable organization
• Knowledge of Information Security frameworks, standards, and best practices
• Proven experience with security risk assessment methodologies and tools
• Excellent analytical and critical thinking skills
• Strong leadership and team management skills
• Effective communication skills, with the ability to explain complex security issues to non-technical stakeholders
• Ability to work under pressure and manage multiple priorities simultaneously.
• Proficient in security technologies such as firewalls, IDS/IPS, SIEM, DLP, and vulnerability management tools.

Lead the implementation and ongoing maintenance of the Bank’s compliance with industry standards, certifications, and regulatory requirements, ensuring alignment with evolving security best practices. Oversee daily Information Security assurance activities, ensuring proactive monitoring, effective implementation of security protocols, and timely reporting for next day reviews on systems. Plan and manage the Bank’s annual Information Security awareness initiatives, driving education, training, and staff engagement to strengthen security culture. Supervise comprehensive compliance audits and assessments, ensuring strict adherence to ICT, Information Security policies, and industry regulations, while delivering actionable assurance reports. Evaluate the effectiveness of Information Security controls across all divisions, providing insights into the maturity of the control environment and highlighting critical risks to senior stakeholders. Leverage data from assurance activities to provide expert recommendations on enhancing Information Security measures, improving risk management, and driving continuous improvement. Any other work-related duties as may be assigned by the Line Manager

• Knowledge of Information Security frameworks, standards, and best practices
• Proven experience with security risk assessment methodologies and tools
• Excellent analytical and critical thinking skills
• Strong leadership and team management skills
• Effective communication skills
• Proficient in security technologies such as firewalls, IDS/IPS, SIEM, DLP, and vulnerability management tools

• Bachelor’s degree in Computer Science, Cyber Security, or a related field
• Technical certifications in Information System Audit, Security Risk and Governance e.g., CISA, CISSP, CEH, CISM are required
• Advanced degree in Computer Science, Cyber Security, or a related field, and other technical certifications like ISO 27001 Lead Implementor/ Auditor, OSCP, CRISC, ECSA is an added advantage
• Four (4) years’ experience in a role related to Information Security monitoring and vulnerability management in a large financial institution or a reputable organization

JOB-690dfdaacb805