IT Security Specialist -Applications
2025-03-31T05:07:05+00:00
dfcu Bank
https://www.greatugandajobs.com/jsjobsdata/data/employer/comp_1087/logo/dfcu.jpg
https://www.www.dfcugroup.com/
FULL_TIME
kampala
Kampala
00256
Uganda
Information Technology
Computer & IT
2025-04-09T17:00:00+00:00
Uganda
8
Reporting to the Manager IT Security Governance, the role holder will be responsible for ensuring the security and integrity of software applications by implementing, monitoring, and managing security measures to protect against vulnerabilities, threats, and unauthorized access.
KEY ACCOUNTABILITIES:
- Conduct vulnerability assessments and penetration testing on applications.
- Identify and remediate security weaknesses in application designs, code, and configurations. This is for both new implementations and also for those undergoing changes.
- Collaborate with developers to integrate security into the Software Development Life Cycle (SDLC).
- Investigate and respond to application security incidents, such as breaches or malware infections.
- Perform root cause analysis and recommend preventative measures.
- Ensure applications comply with security standards (e.g., OWASP Top 10, ISO 27001, or PCI-DSS).
- Develop and enforce application security policies and guidelines.
- Deploy and manage tools like Web Application Firewalls (WAFs), Static and Dynamic Application Security Testing (SAST/DAST) tools, and runtime protection tools.
- Continuously monitor application activity for anomalies or suspicious behaviour.
- Educate developers and stakeholders on application security risks and best practices.
- Work with cross-functional teams, including developers, DevOps, and BT teams, to address security issues.
- Communicate risks and solutions to both technical and non-technical stakeholders.
- Stay updated on emerging application security threats and technologies.
- Recommend and implement improvements to enhance application security posture
KNOWLEDGE, SKILLS, AND EXPERIENCE REQUIRED:
- Minimum: Bachelor’s degree in computer science, Information Technology, or a related numerical sciences field.
- Preferred: Master’s degree specializing in Digital Security.
- Certifications: At least one information security certification (e.g., CISSP, CISM, CEH, CCSP).
- At least 5 years in systems/network administration or cybersecurity.
- Banking/financial industry experience is a plus.
- Application security assessment. Collaborate with developers to integrate security into the Software Development Life Cycle (SDLC).
- Ensure applications comply with security standards (e.g., OWASP Top 10, ISO 27001, or PCI-DSS).
- Attack and Penetration testing.
- Analytical & Problem-Solving
- Communication & Reporting: Ability to write technical and management reports; strong oral and written communication skills.
- Self-Development: Pursues growth and drives personal development plans.
Conduct vulnerability assessments and penetration testing on applications. Identify and remediate security weaknesses in application designs, code, and configurations. This is for both new implementations and also for those undergoing changes. Collaborate with developers to integrate security into the Software Development Life Cycle (SDLC). Investigate and respond to application security incidents, such as breaches or malware infections. Perform root cause analysis and recommend preventative measures. Ensure applications comply with security standards (e.g., OWASP Top 10, ISO 27001, or PCI-DSS). Develop and enforce application security policies and guidelines. Deploy and manage tools like Web Application Firewalls (WAFs), Static and Dynamic Application Security Testing (SAST/DAST) tools, and runtime protection tools. Continuously monitor application activity for anomalies or suspicious behaviour. Educate developers and stakeholders on application security risks and best practices. Work with cross-functional teams, including developers, DevOps, and BT teams, to address security issues. Communicate risks and solutions to both technical and non-technical stakeholders. Stay updated on emerging application security threats and technologies. Recommend and implement improvements to enhance application security posture
Minimum: Bachelor’s degree in computer science, Information Technology, or a related numerical sciences field. Preferred: Master’s degree specializing in Digital Security. Certifications: At least one information security certification (e.g., CISSP, CISM, CEH, CCSP). At least 5 years in systems/network administration or cybersecurity. Banking/financial industry experience is a plus. Application security assessment. Collaborate with developers to integrate security into the Software Development Life Cycle (SDLC). Ensure applications comply with security standards (e.g., OWASP Top 10, ISO 27001, or PCI-DSS). Attack and Penetration testing. Analytical & Problem-Solving Communication & Reporting: Ability to write technical and management reports; strong oral and written communication skills. Self-Development: Pursues growth and drives personal development plans.
JOB-67ea22f9e0e54
Vacancy title:
IT Security Specialist -Applications
[Type: FULL_TIME, Industry: Information Technology, Category: Computer & IT]
Jobs at:
dfcu Bank
Deadline of this Job:
Wednesday, April 9 2025
Duty Station:
kampala | Kampala | Uganda
Summary
Date Posted: Monday, March 31 2025, Base Salary: Not Disclosed
Similar Jobs in Uganda
Learn more about dfcu Bank
dfcu Bank jobs in Uganda
JOB DETAILS:
Reporting to the Manager IT Security Governance, the role holder will be responsible for ensuring the security and integrity of software applications by implementing, monitoring, and managing security measures to protect against vulnerabilities, threats, and unauthorized access.
KEY ACCOUNTABILITIES:
- Conduct vulnerability assessments and penetration testing on applications.
- Identify and remediate security weaknesses in application designs, code, and configurations. This is for both new implementations and also for those undergoing changes.
- Collaborate with developers to integrate security into the Software Development Life Cycle (SDLC).
- Investigate and respond to application security incidents, such as breaches or malware infections.
- Perform root cause analysis and recommend preventative measures.
- Ensure applications comply with security standards (e.g., OWASP Top 10, ISO 27001, or PCI-DSS).
- Develop and enforce application security policies and guidelines.
- Deploy and manage tools like Web Application Firewalls (WAFs), Static and Dynamic Application Security Testing (SAST/DAST) tools, and runtime protection tools.
- Continuously monitor application activity for anomalies or suspicious behaviour.
- Educate developers and stakeholders on application security risks and best practices.
- Work with cross-functional teams, including developers, DevOps, and BT teams, to address security issues.
- Communicate risks and solutions to both technical and non-technical stakeholders.
- Stay updated on emerging application security threats and technologies.
- Recommend and implement improvements to enhance application security posture
KNOWLEDGE, SKILLS, AND EXPERIENCE REQUIRED:
- Minimum: Bachelor’s degree in computer science, Information Technology, or a related numerical sciences field.
- Preferred: Master’s degree specializing in Digital Security.
- Certifications: At least one information security certification (e.g., CISSP, CISM, CEH, CCSP).
- At least 5 years in systems/network administration or cybersecurity.
- Banking/financial industry experience is a plus.
- Application security assessment. Collaborate with developers to integrate security into the Software Development Life Cycle (SDLC).
- Ensure applications comply with security standards (e.g., OWASP Top 10, ISO 27001, or PCI-DSS).
- Attack and Penetration testing.
- Analytical & Problem-Solving
- Communication & Reporting: Ability to write technical and management reports; strong oral and written communication skills.
- Self-Development: Pursues growth and drives personal development plans.
Work Hours: 8
Experience in Months: 60
Level of Education: bachelor degree
Job application procedure
Interested in applying for this job? Click here to submit your application now.
All Jobs | QUICK ALERT SUBSCRIPTION