Related Jobs
.png)
.jpg)
.jpeg)
Related Jobs
Related Jobs
Share this Job
Chief Information Security Officer (CISO) job at I&M Bank Uganda | Apply Now
Are you looking for Information Technology jobs in Uganda 2025 today? then you might be interested in Chief Information Security Officer (CISO) job at I&M Bank Uganda
About the Organisation
I&M Bank (Uganda) Limited, established in 2021 following the acquisition of a 90% stake in Orient Bank Limited, operates as a subsidiary of I&M Group Plc, a prominent East African financial services conglomerate.
The bank's mission is to empower prosperity by delivering innovative financial solutions, guided by core values of trust, integrity, respect, courage, and innovation. With a growing presence in Uganda, I&M Bank offers a comprehensive suite of banking services, including retail, corporate, and SME banking, supported by a robust digital banking platform to enhance customer convenience.
The bank fosters a dynamic work culture that emphasizes employee development and values diversity, offering various job opportunities that align with its commitment to excellence. I&M Bank actively engages in corporate social responsibility initiatives focused on education, health, and environmental sustainability, aiming to make a positive impact on the communities it serves. For more information, visit their official website at www.imbankgroup.com/ug.
Kampala, Uganda
Full Time
Job Title
Chief Information Security Officer (CISO) job at I&M Bank Uganda
I&M Bank Uganda
Job Description
Job Title: Chief Information Security Officer (CISO)
Company: I&M Bank Uganda
Location: Head Office, I&M Bank Uganda
Reports to: Chief Executive Officer (CEO)
Application Deadline: Friday, July 4, 2025, at 5:00 PM
We are seeking a highly experienced and motivated professional to lead our cybersecurity function in the position of Chief Information Security Officer (CISO).
Job Purpose
The CISO is a senior executive responsible for developing, implementing, and overseeing the Bank’s cybersecurity and information risk management strategy. This role ensures alignment of the Bank’s security initiatives with business goals and regulatory requirements.
Duties, Roles and Responsibilities
Cybersecurity Governance & Strategy
Lead the development and implementation of the Bank’s cybersecurity program and enforce information security policies.
Ensure ICT and information security strategies align with overall business objectives and risk appetite.
Review and approve policy exceptions, assess associated risks, and ensure residual risks remain acceptable.
Risk Management & Mitigation
Conduct annual cybersecurity risk assessments and ensure timely detection and response to threats.
Integrate scenario planning for major cyber threats and address control weaknesses.
Safeguard the confidentiality, integrity, and availability of information systems.
Fraud Risk Oversight
Oversee fraud detection and prevention strategies to reduce incidents and financial losses.
Respond promptly and effectively to fraud-related events.
Business Continuity & Crisis Management
Maintain and regularly update incident response and business continuity plans.
Ensure off-site backups of critical systems and test disaster recovery protocols for resilience and compliance.
Define and communicate cyber risk roles during crisis situations.
Leadership & Organizational Culture
Promote a security-first culture through user-aware cybersecurity controls and awareness training.
Lead cyber education initiatives to enhance employee technical capabilities.
Reporting & Communication
Provide quarterly updates to the CEO covering:
System confidentiality, integrity, and availability
Policy exceptions and residual risk
Effectiveness of the cybersecurity program
Significant cyber incidents
Technology Oversight
Maintain a current enterprise-wide view of systems, users, software, and network architecture.
Support secure innovation and digital transformation initiatives.
SERVICES
COMMERCIAL
SERVICES
INDUSTRIAL
SERVICES
RESIDENTIAL
Qualifications, Education and Competencies
Education
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (Required)
Master’s degree such as an MBA or M.S. in Cybersecurity (Preferred)
Professional Certifications
Preferred certifications include:
CISSP, CISM, CISA, CRISC, CEH
Technical Knowledge
Familiarity with cybersecurity frameworks and standards (e.g., NIST, ISO 27001)
Understanding of regulatory compliance (e.g., GDPR, HIPAA)
Expertise in enterprise risk management and business continuity
Leadership & Behavioral Competencies
Strong leadership and people management skills
Ability to influence at senior levels including Board and Executive teams
Excellent communication and analytical abilities
Strategic thinker with the ability to manage emerging risks
High integrity, resilience under pressure, and adaptability to regulatory changes
How to Apply
Note: Deadline for this job posting is Friday 04 July 2025 at 5:00pm and only shortlisted candidates will be contacted.
