About this job:

Q-Sourcing Limited trading as Q-Sourcing Servtec is a manpower management solutions firm operating in the East African Region in the countries of Uganda, Kenya, Tanzania, Rwanda, and South Sudan.

On behalf of our client in Uganda in the Banking Sector, we are looking for a competent and experienced IT Security Specialist – Infrastructure to work in Kampala Uganda.

Purpose of the Role:

The IT Security Specialist – Infrastructure is responsible for protecting the organization's critical infrastructure systems—including servers, storage, networks, and cloud platforms—by designing, implementing, and managing robust security controls. This role ensures that all infrastructure components are hardened, monitored, and compliant with security policies, regulatory standards, and industry best practices

Reporting to: Manager cyber defense

KEY ACCOUNTABILITIES:

•          Implement, monitor, and maintain infrastructure security controls across on-premises, cloud, and hybrid environments.

•          Conduct security assessments on servers, network devices, databases, and virtualization platforms to identify vulnerabilities and misconfigurations.

•          Collaborate with Infrastructure and Network teams to ensure secure architecture design, patch management, and hardening of systems.

•          Manage and optimize security tools such as endpoint protection platforms (EPP/EDR), firewalls, intrusion prevention systems (IPS), SIEM, vulnerability scanners, and configuration management tools.

•          Respond to security incidents affecting infrastructure and lead root cause analysis and remediation activities.

•          Develop and maintain infrastructure security baselines, access control standards, and hardening guides in line with frameworks such as ISO 27001, NIST, and CIS Benchmarks.

•          Support business continuity and disaster recovery planning with a focus on infrastructure resilience and secure failover procedures.

•          Ensure infrastructure components meet regulatory and compliance obligations (e.g., PCI DSS, local financial regulations).

•          Assist with internal and external audits, providing evidence and responses related to infrastructure security.

•          Stay updated on emerging threats, vulnerabilities, and technologies that may impact infrastructure environments.

Contribute to planning of the Enterprise IT Security standard and operating standards annual budget.

Requirements

Education&Training

•          Minimum of a bachelor’s degree in computer science, IT, Engineering or other numerical biased field from a reputable university.

•          Information Security certifications e.g. CISSP, CISM, CEH, CCSP. CompTIA Security+, CISSP, CEH, Microsoft Security, AWS/Azure Security.

KNOWLEDGE, SKILLS AND EXPERIENCE REQUIRED:

•   At least 4 years’ experience in systems / network related administration role.

•   Work experience in the banking industry and implementing Information security at an enterprise level will be an added advantage.

•   Experience working with web application firewalls.

•   Knowledge and experience in infrastructure defense techniques and technologies.

•   Experience in Unix and Windows and Python scripting skills.

•   A good understanding of implementation of platform security.

•   A good understanding of implementation of cloud security.

•   Effective Communication

•   Analytical Thinking & Inductive Reasoning

•   Problem Solving.

•   Stakeholder Management