Cyber Security Analyst (CSA) job at Exim Bank Uganda
Posted by: great-volunteer
Posted date: 2025-Jun-24
Location: kampala, Kampala, Uganda
Cyber Security Analyst (CSA) 2025-06-23T16:01:35+00:00 Exim Bank Uganda https://cdn.ugashare.com/jsjobsdata/data/employer/comp_2675/logo/Exim%20Bank%20Uganda.png https://eximbank-ug.com/ FULL_TIME kampala Kampala 00256 Uganda Banking Computer & IT 2025-07-01T17:00:00+00:00 Uganda 8 JOB PURPOSE.
The Cyber Security Analyst (CSA) will support the Bank’s Information Security program by monitoring, analyzing, and responding to cyber threats across the IT environment. The CSA will collaborate with IT teams to design, deploy, and maintain secure systems, lead vulnerability management, and conduct security assessments to proactively mitigate risks. KEY RESPONSIBILITIES. - Monitor SIEM, IDS/IPS, EDR, and network logs to detect and investigate security events in real-time.
- Lead vulnerability management: conduct regular scans, validate findings, and track remediation.
- Coordinate and support annual cybersecurity assessments, penetration tests, and threat-hunting exercises.
- Analyze security alerts and reports for compliance violations; research emerging threats and recommend mitigations.
- Monitor security tools and platforms (e.g., FortSIEM, Rapid7, Sophos, Varonis, ForeScout) to ensure effective coverage.
- Collaborate with IT operations to implement secure configurations, patch deployments, and change controls.
- Assist in incident response: contain, eradicate, recover, and document lessons learned in runbooks.
- Prepare clear technical reports and dashboards for stakeholders, highlighting trends and risk posture.
- Provide security expertise and training to technical and non-technical staff; contribute to user awareness programs.
KEY ATTRIBUTES - Expert in implementing and maintaining security controls across networks, systems, and cloud environments.
- Strong analytical skills for identifying vulnerabilities, assessing risks, and designing effective mitigations.
- Hands-on experience with security tools and technologies, including firewalls, IDS/IPS, endpoint protection, and SIEM platforms.
- Skilled in security architecture design and compliance with frameworks such as NIST, ISO 27001, and CIS benchmarks.
- Problem-solver with attention to detail, able to detect and respond to security incidents efficiently
- Clear communicator and collaborator, bridging gaps between security, IT, and business units.
- Continuously evolving with threat intelligence and modern attack vectors to stay ahead of adversaries.
- Strong knowledge of network and security infrastructure: firewalls, VPNs, WAFs, Windows, and Linux.
- Skilled in scripting (Python, Bash, PowerShell) for automation, threat detection, and response.
- Experienced with cloud security (Azure, AWS), including IAM, policy enforcement, and key management.
- Solid understanding of regulatory frameworks: ISO 27001, NIST, CIS, COBIT, and BOU guidelines.
- Hands-on with incident response, threat hunting, and log correlation in SOC environments.
REQUIREMENTS - Bachelor's degree in computer science, Information Security, or a related field (or equivalent industry training).
- 3–5+ years of hands-on cybersecurity experience, especially in financial or regulated environments.
Certifications in Ethical Hacking (CEH) or Offensive Security Professional (OSCP), CompTIA Security+ or equivalent foundational security credentials are added advantages Monitor SIEM, IDS/IPS, EDR, and network logs to detect and investigate security events in real-time. Lead vulnerability management: conduct regular scans, validate findings, and track remediation. Coordinate and support annual cybersecurity assessments, penetration tests, and threat-hunting exercises. Analyze security alerts and reports for compliance violations; research emerging threats and recommend mitigations. Monitor security tools and platforms (e.g., FortSIEM, Rapid7, Sophos, Varonis, ForeScout) to ensure effective coverage. Collaborate with IT operations to implement secure configurations, patch deployments, and change controls. Assist in incident response: contain, eradicate, recover, and document lessons learned in runbooks. Prepare clear technical reports and dashboards for stakeholders, highlighting trends and risk posture. Provide security expertise and training to technical and non-technical staff; contribute to user awareness programs. Bachelor's degree in computer science, Information Security, or a related field (or equivalent industry training). 3–5+ years of hands-on cybersecurity experience, especially in financial or regulated environments. JOB-68597a5f01782 Vacancy title:
Cyber Security Analyst (CSA) Jobs at:
Exim Bank Uganda Deadline of this Job:
Tuesday, July 1 2025 Duty Station:
kampala | Kampala | Uganda Summary
Date Posted: Monday, June 23 2025, Base Salary: Not Disclosed JOB DETAILS: JOB PURPOSE.
The Cyber Security Analyst (CSA) will support the Bank’s Information Security program by monitoring, analyzing, and responding to cyber threats across the IT environment. The CSA will collaborate with IT teams to design, deploy, and maintain secure systems, lead vulnerability management, and conduct security assessments to proactively mitigate risks. KEY RESPONSIBILITIES. - Monitor SIEM, IDS/IPS, EDR, and network logs to detect and investigate security events in real-time.
- Lead vulnerability management: conduct regular scans, validate findings, and track remediation.
- Coordinate and support annual cybersecurity assessments, penetration tests, and threat-hunting exercises.
- Analyze security alerts and reports for compliance violations; research emerging threats and recommend mitigations.
- Monitor security tools and platforms (e.g., FortSIEM, Rapid7, Sophos, Varonis, ForeScout) to ensure effective coverage.
- Collaborate with IT operations to implement secure configurations, patch deployments, and change controls.
- Assist in incident response: contain, eradicate, recover, and document lessons learned in runbooks.
- Prepare clear technical reports and dashboards for stakeholders, highlighting trends and risk posture.
- Provide security expertise and training to technical and non-technical staff; contribute to user awareness programs.
KEY ATTRIBUTES - Expert in implementing and maintaining security controls across networks, systems, and cloud environments.
- Strong analytical skills for identifying vulnerabilities, assessing risks, and designing effective mitigations.
- Hands-on experience with security tools and technologies, including firewalls, IDS/IPS, endpoint protection, and SIEM platforms.
- Skilled in security architecture design and compliance with frameworks such as NIST, ISO 27001, and CIS benchmarks.
- Problem-solver with attention to detail, able to detect and respond to security incidents efficiently
- Clear communicator and collaborator, bridging gaps between security, IT, and business units.
- Continuously evolving with threat intelligence and modern attack vectors to stay ahead of adversaries.
- Strong knowledge of network and security infrastructure: firewalls, VPNs, WAFs, Windows, and Linux.
- Skilled in scripting (Python, Bash, PowerShell) for automation, threat detection, and response.
- Experienced with cloud security (Azure, AWS), including IAM, policy enforcement, and key management.
- Solid understanding of regulatory frameworks: ISO 27001, NIST, CIS, COBIT, and BOU guidelines.
- Hands-on with incident response, threat hunting, and log correlation in SOC environments.
REQUIREMENTS - Bachelor's degree in computer science, Information Security, or a related field (or equivalent industry training).
- 3–5+ years of hands-on cybersecurity experience, especially in financial or regulated environments.
Certifications in Ethical Hacking (CEH) or Offensive Security Professional (OSCP), CompTIA Security+ or equivalent foundational security credentials are added advantages Work Hours: 8 Experience in Months: 36 Level of Education: bachelor degree Job application procedure Kindly send your cover letter and up to date CV to hr eximbank-ug.com with the subject: JOB APPLICATION: CYBER SECURITY ANALYST by close of business, Tuesday 1st July 2025.
|