Posts
Position Title:INFORMATION SECURITY OFFICER
Organization:The National Social Security Fund (NSSF)
Employment Type:Full Time Permanent
Reports to: The Risk Manager
Application Deadline:Monday, 2nd March 2015
Organizational Profile:
The National Social Security Fund (NSSF) is positioning itself to be the
Social Security Provider of Choice
in Uganda. Our belief at the Fund is that
each employee contributes directly to the growth and success of the business
and each employee is expected to take pride in being a member of the team.
With our shared purpose of being the
Social Security Provider of choice providing exceptional customer service with
a workforce that is well motivated and skilled, we are looking to recruit
people with high integrity, dedication and commitment for the vacant positions.
The Fund is looking for competent people who will work smarter as part of
an exciting team with a vision of becoming better people throughout their
experience.
MAIN PURPOSE:
To monitor the information systems
while identifying risk exposures and making appropriate recommendations for
risk mitigation. Duties and Responsibilities:
·
Review and assess inherent risks wrthin new processes and systems.
·
Monitor system securrty settings,
identify and report breaches with recommendations
·
Review system security control to identify security gaps and recommend
appropriate improvements ~ Coordinate IT Control Self-Assessment (CSA)
·
Undertake sensitization/training of staff on Infonmation security risk
·
Review the infonmation security
policies and procedures to ensure that they are relevant to the current
development in information technology.
·
Monitor compliance with information
security policies and procedures.
·
Monitor developments in the
environment and identify potential risk exposures to the Fund.
·
Develop appropriate tools for
monitoring information security exposures.
Education Requirements:
A Bachelor's degree in Information T echnologyl Computer
Sciencellnfonmation Systems with a professional qualification like CISA, CISSP,
CRISC,CISM
Related Job Experience:
At least three years hands on technical experience in dealing wrth
information security
Key Competences:
·
Excellent analytical skills and
keenness to detail ~ In-depth knowledge of operational risk
·
Creativity and innovation
·
Ability to provide appropriate
advice to control risks
·
Interpersonal skills
Mode of application:
Interested individuals should send their applications (clearly showing
which posinon you are applying for), copies of their academic credentials and
detailed CV with names of three referees addressed to
the Head of Human Resources & Administration not later than Monday, 2nd
March 2015.
All applications should be delivered to the Registry on 13th Floor Workers
House, for registration and onward transmission.
