Manager Information Security – Governance and Compliance job at Housing Finance Bank (HFB)

JOB DETAILS:
Job Purpose:
To ensure that the bank’s information systems and processes are secure, compliant with regulations, and aligned with industry standards. The role ensures a strong security posture while adhering to regulatory requirements and supporting the organization’s strategic objectives.

Key Responsibilities
1. Governance and Compliance:
o Develop, implement, and maintain information security policies, standards, and procedures.
o Ensure alignment with business objectives and compliance with regulations such as ISO 27001, PCI DSS, GDPR, and local banking laws.
2. Risk Management:
o Design and implement a risk management framework for information security.
o Conduct regular risk assessments for systems, processes, and third-party relationships.
o Develop and implement risk mitigation plans in collaboration with other departments.
3. Audit and Reporting:
o Act as the liaison for internal and external audits related to information security.
o Resolve audit findings promptly and prepare reports for regulatory bodies and management.
4. Incident Response:
o Establish and maintain the bank’s incident response framework.
o Regularly test and update incident response procedures to ensure effective response to emerging threats.
5. Training and Awareness:
o Design and deliver security training and awareness programs for employees.
o Utilize tools like newsletters, workshops, and e-learning modules to promote awareness.
6. Continuous Improvement:
o Benchmark the bank’s security posture against industry standards and recommend improvements.

o Act as an advisor for security considerations in new projects or technologies.
7. Stakeholder Collaboration:
o Partner with IT, Legal, Risk Management, and other departments to implement security initiatives.
o Liaise with regulatory bodies, auditors, and industry groups on security-related matters.

Key Result Areas
• Develop and monitor Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) for information security.
• Conduct vendor and partner assessments to ensure compliance with security requirements.
• Improve the bank’s security governance framework to address evolving risks.

Education and Training
• Bachelor’s Degree in IT, Computer Science, Cybersecurity, or Business Administration with a focus on Information Systems.
• Certifications in CISA, CISM, CISSP, or ISO 27001 Lead Implementer/Auditor.

Skills and Experience
1. Experience:
o 5–10 years of relevant experience in information security, governance, or risk management.
2. Technical Skills:
o Strong knowledge of information security frameworks such as NIST, ISO 27001, and COBIT.
o Familiarity with security tools like SIEM, DLP, and governance platforms.
3. Soft Skills:
o Analytical and problem-solving skills for risk assessment and mitigation.
o Strong communication and leadership skills for engaging stakeholders effectively.

Work Hours: 8

Experience in Months: 60

Level of Education: Bachelor Degree

Job application procedure
Interested in applying for this job? send all the required documents to recruitment@housingfinance.co.ug
• Submit your application to:
• For More Information:
• Toll-Free: 0800 211 082
• Phone: 0771 888 755
• Note: Housing Finance Bank is regulated by the Bank of Uganda. Customer deposits are protected up to UGX 10 million.