IT Cybersecurity Lead
| Location | Kampala, Uganda |
| Date Posted | March 18, 2026 |
| Category | IT / Information Technology |
| Job Type | Full-time |
| Currency | UGX |
Description
Job title: IT Cybersecurity Lead
Work Location: Hariss International Limited – Kampala, Uganda
Division / Department: IT Department
Reports to: Head of IT
Work Location: Hariss International Limited – Kampala, Uganda
Division / Department: IT Department
Reports to: Head of IT
Job Purpose:
The IT Cybersecurity Lead oversees an organization's security operations, protecting networks, systems, and data from internal/external threats. The lead directs the teams to manage threat detection, incident response, vulnerability assessments, and policy enforcement. This role bridges technical security tasks with strategic compliance.
Key Responsibilities
Security Operations:
- Lead the security team in monitoring, incident response, and implementing defense protocols.
Security Strategy:
- Selection of tools to manage the environments security.
- Decisions on insourced versus outsourced services.
Technical Management:
- Oversee firewall management, Privileged Access Management (PAM), Security Information and Event Management (SIEM), and patch management.
Risk & Compliance:
- Drive risk assessments, security audits, and ensure compliance with frameworks such as ISO 27001 and Data Protection Act, 2012 (Act 843).
- Develop a detailed response procedure to any cybersecurity breach.
Threat Management:
- Identify vulnerabilities, conduct penetration testing, and stay updated on emerging cybercrime tactics.
Leadership & Collaboration:
- Collaborate with IT, legal, and HR to enforce security policies and conduct training. Report security risks to senior leadership.
Documentation:
- Maintain detailed records of security guidelines, procedures, and standards.
Education and/or Work Experience Requirements:
Education:
- Bachelor’s degree in Computer Science or related acceptable qualification.
Experience:
- Proven experience in cybersecurity operations, threat management, or as a security analyst/engineer.
Technical Knowledge:
- Proficiency in network security, endpoint protection, and security tools (e.g., SIEM, PAM).
Certifications:
- Requires certifications such as CISSP, CISM, or GIAC.
Soft Skills:
- Strong leadership, communication, negotiation, and analytical skills.
Key Requirements:
Network Security:
- In-depth knowledge of firewalls, Intrusion Detection/Prevention Systems (IDS/IPS), VPNs, and network protocols (TCP/IP).
Security Tools & Platforms:
- Proficiency with SIEM (Security Information and Event Management), EDR/XDR (Endpoint Detection and Response), NDR (Network Detection and Response), and DLP (Data Leak Prevention) tools.
Incident Response & Forensics:
- Experience in leading threat detection, incident handling, and digital forensics.
Governance, Risk, and Compliance (GRC):
- Knowledge of frameworks such as NIST CSF, ISO 27001.
Scripting and Automation:
- Ability to use Python, PowerShell, or Bash for automating security tasks
Strategic Planning:
- Ability to align security initiatives with overall business objectives.
Communication:
- Strong ability to translate complex technical risks into clear, concise business impacts for non-technical stakeholders and executives.
Team Management:
- Experience building, mentoring, and the Cyber Security team and supporting the other IT team members.
Problem-Solving:
- Creative thinking to resolve complex security challenges and identify root causes.
Crisis Management:
- Capability to maintain calm and direct response team under high-pressure scenarios
Cloud Security Architecture:
- Designing secure hybrid/multi-cloud environments.
AI/ML Integration:
- Utilizing AI for threat detection and behaviour analytics.
DevSecOps:
- Integrating security into the software development & Systems pipeline.
WARNING: Do not to pay any money to get a job. Please report fraudulent jobs to info@everjobs.ug