Related Jobs
%20(1).jpg)
.jpg)
.jpeg)
Related Jobs
.png)
Related Jobs
Share this Job
Manager- Applications Security job at DFCU Bank | Apply Now
Are you looking for Information Technology jobs in Uganda 2025 today? then you might be interested in Manager- Applications Security job at DFCU Bank
About the Organisation
DFCU Bank is a leading financial institution in Uganda dedicated to transforming lives and businesses through innovative financial solutions that drive economic growth and financial inclusion. Established in 1964 as the Development Finance Company of Uganda, the bank has grown from a development finance institution into a full-fledged commercial bank, with a significant milestone being its acquisition of Crane Bank in 2017. Recognized for its strong financial performance, customer service excellence, and digital banking innovations, dfcu Bank has received multiple industry awards and remains a trusted partner for individuals, SMEs, and corporate clients.
The bank fosters a dynamic and inclusive work culture that emphasizes integrity, customer focus, innovation, teamwork, and excellence, offering employees professional growth, career advancement opportunities, and competitive benefits. With a strong presence across Uganda through an extensive network of branches, ATMs, and digital banking services, dfcu Bank continuously invests in technology to enhance accessibility and efficiency.
Committed to corporate social responsibility, the bank actively supports financial literacy programs, women empowerment initiatives, environmental sustainability efforts, and youth entrepreneurship. Headquartered at 26 Kyadondo Road, Kampala, Uganda, dfcu Bank remains a key driver of financial empowerment and economic development in the country. For more information
Kampala, Uganda
Full Time
Job Title
Manager- Applications Security job at DFCU Bank
DFCU Bank
Job Description
Job Title: Manager- Applications Security
Organisation: DFCU Bank
Duty Station: Kampala, Uganda
Job Summary:
Reporting to the Senior Manager- Cyber Security Assurance, the Manager- Applications Security is responsible for providing governance and oversight for application security across the enterprise by establishing standards, embedding standards within the development process, prioritizing assessments, reviewing results, and ensuring timely remediation and reporting of security risks to senior management.
Duties, Roles and Responsibilities
Implement and enforce application security baseline standards across all systems.
Define and maintain application security assessment priorities based on business criticality, risk exposure, and compliance needs.
Integrate security into the software development lifecycle and product design.
Establish secure coding practices and ensure continuous security testing within CI/CD pipelines.
Oversee execution of application security assessments, including static (SAST), dynamic (DAST), interactive (IAST), and manual reviews.
Review assessment outputs, validate findings, and ensure risk-based remediation recommendations are tracked to closure.
Oversee vulnerability assessments, penetration testing, and red team simulations.
Ensure timely remediation of identified risks and communicate critical findings to stakeholders.
Support internal and external audits by providing evidence of control effectiveness related to application security.
Ensure compliance with applicable standards and frameworks (e.g., OWASP ASVS, ISO 27001, PCI DSS, NIST).
Serve as the primary liaison between security, development, and business units to ensure security is embedded into development processes.
Facilitate risk discussions with application owners, architects, and product managers to balance security and delivery objectives.
Provide security advisory support during project design, development, and change management stages.
Lead vulnerability identification, prioritization, and recommendation on resolution.
Report on key metrics and ensure compliance with risk appetite thresholds.
Ensure no overdue findings , no failed validations and no repeat findings.
Lead and mentor a high-performing cybersecurity team.
Foster a culture of accountability, continuous improvement, and innovation.
SERVICES
COMMERCIAL
SERVICES
INDUSTRIAL
SERVICES
RESIDENTIAL
Qualifications, Education and Competencies
Bachelor’s Degree in Information Technology, Computer Science, or related field (Master’s preferred).
Professional certifications such as CISSP, CISM, CEH, CASE,
5+ years of experience in cybersecurity, with at least 2 years in a leadership role.
Strong knowledge of ISO27001 ISMS, PCI DSS, and regulatory compliance requirements.
Experience in DevSecOps, vulnerability management, and penetration testing.
Strong leadership and people management skills.
Excellent understanding of cybersecurity frameworks and risk management.
Exceptional communication and executive reporting skills.
Ability to balance strategic planning with hands-on technical oversight.
How to Apply
ONLINE APPLICATION ONLY!
Interested candidates are advised that applications for this position must be submitted online. To apply, please click on the "Apply" button below.
