Related Jobs
%20(1).jpg)
.jpg)
.jpeg)
Related Jobs
.png)
.jpg)
Related Jobs
Share this Job
About the Organisation
IT Security Specialist job at National Social Security Fund (NSSF) | Apply Now
Kampala, Uganda
The National Social Security Fund (NSSF) is Uganda’s premier social security provider, committed to ensuring financial security for workers by offering provident fund services that promote long-term savings for retirement, sickness, and other social welfare needs. Established in 1985, NSSF has become a highly respected institution, recognized for its trustworthiness, efficiency, and significant role in the country’s financial ecosystem, with millions of Ugandans relying on its services.
The organization fosters a professional, inclusive, and collaborative work culture, offering its employees opportunities for growth, career development, and work-life balance in an environment that values integrity, innovation, and social responsibility. With a business model based on collecting contributions from employees and employers, NSSF provides a wide range of services including pension plans, medical benefits, and a variety of welfare programs, all underpinned by cutting-edge technology and strong financial management practices.
The Fund operates on a national scale, with its reach expanding to various regions across Uganda, positively impacting the lives of workers, their families, and communities. Core values such as transparency, accountability, professionalism, and service excellence guide NSSF’s operations, while its corporate social responsibility initiatives focus on promoting financial literacy, supporting education, and advancing economic empowerment programs. For more information, visit www.nssfug.org.
Are you looking for Information Technology jobs in Uganda 2025 today? then you might be interested in IT Security Specialist job at National Social Security Fund (NSSF)
Full Time
Deadline:
24 Oct 2025
Job Title
IT Security Specialist job at National Social Security Fund (NSSF)
National Social Security Fund (NSSF)
Job Description
Job Title: IT Security Specialist
Organisation: National Social Security Fund (NSSF)
Duty Station: Kampala, Uganda
Reports to: Manager IT Security
Job Summary:
To implement and maintain our security systems by preventing unauthorized access to our data and responding to privacy breaches.
Duties, Roles and Responsibilities
Qualifications, Education and Competencies
See all details of the qualifications, competencies and education for this role under the "How to Apply" section below.
Interested individuals should click here to fill out the application form, Click Here also send copies of their application letter, curriculum vitae and academic qualifications, addressed to the Chief of People and Culture to recruitment@nssfug.org
Deadline: 24th October 2025
Applications are managed via the AfriCareers Jobs Portal:
-
Click the Apply button below
-
New users: Select Create Profile and complete the Profile Creation Wizard
-
Existing users: Log in and update your profile if needed
-
Go to the "Jobs" tab
-
Read the detailed job description, Roles and Qualifications.
-
Submit your application via the jobs portal
-
Track progress under "My Applications" tab
Important Note: Employers now hire directly on the AfriCareers New Jobs Portal — keep your profile updated so employers can easily view your CV and hire you instantly.
How to Apply
Duties and Responsibilities include:
Conduct compliance assessments by understanding business objectives, structure, policies and procedures, internal controls, and external regulations
Design and implement safety measures and data recovery plans
Document systems, processes and controls using narratives, flow charts, data flow diagrams, etc.
Understand and communicate the downstream impact on the business of control deficiencies.
Advise and collaborate on projects by providing IT controls and risk expertise and considerations
Analyse IT specifications to assess security risks.
Install, configure and upgrade security software/applications.
Secure networks through firewalls, password protection and other systems
Inspect hardware for vulnerable points of access
Monitor network activity to identify issues early and communicate them to IT teams
Act on privacy breaches and malware threats
Serve as a security expert and conduct trainings when needed
Draft security policies and guidelines
Completes audit work papers by documenting audit tests and findings
Collaborate with control owners to implement process changes and track to completion
Implementation of IT security strategy
SERVICES
COMMERCIAL
SERVICES
INDUSTRIAL
SERVICES
RESIDENTIAL
Bachelor’s degree in information security, Computer Science, IT, or a related field; or equivalent professional experience.
Industry-recognized security certifications such as Cisco Security (CCNP Security, CCIE Security), OSCP, SSCP, CEH, CISSP, GIAC certifications, Microsoft Azure Security Engineer Associate, Microsoft Certified: Cybersecurity Architect Expert, or similar.
Work Experience:
4+ years’ experience in cyber security analysis, security engineering, or a similar role.
Hands-on experience with SIEM platforms, endpoint security, and vulnerability and patch management tools
Clear understanding of compliance requirements in financial services or regulated sectors.
2 years in a Supervisory role will be of added advantage.
Key Competences:
Network and System Security: Demonstrated experience in securing enterprise networks, systems, and endpoints, including firewall configuration, network segmentation and monitoring.
Identity and Access Management (IAM): Hands-on experience implementing and managing SSO, MFA, and PAM solutions.
Vulnerability and Patch Management: Proven ability to identify, prioritize, and close vulnerabilities using automated tools, with a strong understanding of patch lifecycle processes.
Security Assessments and Penetration Testing: Experience in conducting or coordinating vulnerability assessments, penetration tests, and remediation tracking to ensure system resilience.
Cloud and Application Security: Experience in securing cloud platforms and applications.
Security Monitoring and Incident Response: Practical experience using NDR and SIEM tools, threat detection, incident investigation, and forensic analysis.
Compliance and Risk Management: Working knowledge of ISO 27001, NIST, GDPR, and related frameworks, with the ability to translate compliance into operational controls.
Analytical and Problem-Solving: Ability to conduct threat intelligence, risk assessments, and provide actionable security insights.
Communication and Collaboration: Strong skills in explaining security concepts, leading awareness sessions, and coordinating across teams.
Automation and Innovation: Experience with scripting (Python, PowerShell) and familiarity with Zero Trust architectures and automation in security processes.
