top of page
Related Jobs
%20(1).jpg)
.jpg)
.jpeg)
Related Jobs
Related Jobs
Share this Job
Pearl Bank Uganda is the new name for the government-owned PostBank Uganda, which is rebranding to enhance its appeal to partners and customers while strengthening its focus on digital finance and inclusive growth. The name is inspired by the phrase the
Full-time
Manager IT Governance & Controls Job at Pearl Bank Uganda
Pearl Bank Uganda
Job Description
The Manager – IT Governance & Controls is responsible for leading the governance, assurance, control oversight, and regulatory compliance functions of the IT Security & Governance department. The role ensures the Bank maintains an effective and measurable cybersecurity governance framework aligned to business growth, digital transformation, regulatory obligations, and enterprise risk appetite.
Duties, Roles and Responsibilities
Key Duties and Responsibilities:
- Develop, implement, and continuously improve the Bank’s cybersecurity governance framework, ensuring alignment with business strategy, regulatory obligations, and enterprise risk appetite.
- Own and manage the lifecycle of cybersecurity policies, standards, baselines, procedures, and control frameworks, ensuring they remain current and aligned to industry’s best practices.
- Ensure alignment and compliance with applicable regulatory and security frameworks, including ISO/IEC 27001:2022, PCI DSS v4.0, Bank of Uganda Cyber & Technology Risk Guidelines, Data Protection and Privacy laws, SWIFT CSP, NIST Cybersecurity Framework, and other relevant standards.
- Lead the planning, coordination, and management of cybersecurity audits, regulatory inspections, certifications, and assurance reviews, including internal audits, external audits, and supervisory examinations.
- Coordinate evidence collection, control validation, remediation tracking, and closure of audit findings, ensuring timely resolution and reduction of repeat f indings.
- Design, maintain, and monitor the Bank’s cybersecurity control framework, ensuring effective preventive, detective, and corrective controls are implemented across technology environments.
- Conduct governance reviews and control assessments across infrastructure, applications, digital channels, identity platforms, payment systems, cloud services, and third-party integrations.
- Embed security governance and security-by-design principles into technology initiatives, digital products, procurement processes, architecture reviews, and change management processes.
- Review solution architectures, technology designs, and project implementations to ensure security requirements, control standards, and regulatory obligations are incorporated before production deployment.
- Lead the identification, assessment, treatment, monitoring, and reporting of cybersecurity and technology risks, ensuring alignment with the Bank’s enterprise risk management framework.
- Maintain and periodically review the cybersecurity risk register, key risk indicators (KRIs), control effectiveness metrics, and management action plans.
- Monitor emerging cybersecurity threats, regulatory changes, and technology risks, and recommend governance enhancements to strengthen the Bank’s resilience.
- Lead cybersecurity due diligence, risk assessments, and control reviews for thirdparty service providers, fintech partners, cloud providers, and strategic technology vendors.
- Ensure cybersecurity requirements are incorporated into vendor onboarding, outsourcing arrangements, contracts, and ecosystem integrations.
- Produce monthly, quarterly, and annual governance, compliance, and control reports for the CISO, Executive Management, Board Committees, regulators, and auditors.
- Present actionable insights on audit posture, regulatory compliance, control maturity, risk trends, and governance performance to senior stakeholders.
- Drive continuous improvement initiatives to enhance governance maturity, reduce compliance gaps, strengthen control effectiveness, and improve operational efficiency.
- Lead cybersecurity awareness on governance obligations, policy compliance, and control responsibilities across technology and business teams.
- Build and support governance champions across business units to strengthen enterprise-wide ownership of cybersecurity and compliance responsibilities.
- Support strategic initiatives such as digital transformation, open banking, fintech integrations, cloud adoption, data monetization, and emerging technology adoption by providing governance oversight.
- Prepare and manage the Governance & Controls unit budget, annual work plans, and strategic roadmap aligned to departmental and Bank objectives.
- Provide leadership, mentorship, and subject matter expertise in cybersecurity governance, regulatory assurance, and technology control management.
- Perform any other duties assigned by the Chief Information Security Officer in support of the Bank’s cybersecurity, governance, and resilience objectives.
Qualifications, Education and Competencies
See all details of the qualifications, competencies and education for this role under the "How to Apply" section below.
Please send your application and CV to the employer via hr@pearlbank.com.
Find application details and links on the AfriCareers Jobs Portal:
-
Click the Apply button below
-
New users: Select Create Profile and complete the Profile Creation Wizard
-
Existing users: Log in and update your profile if needed
-
Go to the "Jobs" tab
-
Read the detailed job description, Roles and Qualifications.
-
Submit your application via the jobs portal
-
Track progress under "My Applications" tab
Important Note: Some employers now hire directly on the AfriCareers New Jobs Portal — keep your profile updated so employers can easily view your CV and hire you instantly.
SERVICES
COMMERCIAL
SERVICES
INDUSTRIAL
SERVICES
RESIDENTIAL
bottom of page