ICT Risk Officer Job at BRAC Uganda Bank Limited - Kampala

BRAC Uganda Bank Limited is seeking a qualified ICT Risk Officer to join our dynamic team in Kampala. This is an exciting opportunity for an IT security professional to play a critical role in protecting our digital infrastructure and ensuring the security of our banking operations across Uganda.

As an ICT Risk Officer, you will be responsible for safeguarding the bank's digital assets while maintaining the confidentiality, integrity, and availability of information. You will work at the forefront of cybersecurity in Uganda's banking sector, implementing robust risk management strategies that align with local regulatory requirements and international best practices.

Key Responsibilities:
• Conduct comprehensive assessments of ICT systems, applications, and processes to identify vulnerabilities and potential risks
• Regularly review user access rights and develop updated user right matrices for banking applications
• Maintain assessment criteria to measure compliance with company policies, procedures, and security standards
• Analyse existing ICT risk management processes and recommend improvements for better operational efficiency
• Collaborate with IT teams to evaluate new technologies, systems, and vendor solutions for potential risks
• Monitor database activities and user actions to detect and investigate suspicious activities
• Review and enhance security controls and hardening measures for database systems
• Conduct staff training sessions on ICT risks and mitigation measures relevant to Ugandan banking operations
• Develop and implement ICT risk management policies aligned with Bank of Uganda regulations
• Prepare detailed risk assessment reports for senior management and stakeholders

Required Qualifications & Skills:
• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field
• Minimum 1 year experience in ICT security within Uganda's banking environment
• Professional certifications such as CISSP, CISM, CISA, or CRISC are highly desirable
• Strong understanding of information technology systems and network infrastructure
• Proficiency in cybersecurity principles and threat mitigation strategies
• Knowledge of compliance requirements and regulatory standards in Uganda's banking sector
• Excellent analytical, communication, and reporting skills

We Offer:
• Competitive banking sector salary package
• Professional development opportunities in cybersecurity
• Comprehensive benefits package
• Opportunity to work with one of Uganda's leading financial institutions
• Supportive work environment with career growth prospects