HOUSING FINANCE BANK
User Access Management Analyst (2)
Department: Information Security
Reports To: Manager Identity and Access Management
Direct Reports:
Direct – None
Indirect – External Cybersecurity Service providers
Interacts/Interfaces with:
Internal – All Bank Staff (Head Office and Branches)
– Business Technology Department
– IT Risk Management
– Compliance Department
External – External Cybersecurity Service providers
– Regulators BOU, NITA, UCC
Job Purpose:
• The role is responsible for managing user identities, access permissions, and security controls to protect the bank’s systems and
data. This role involves provisioning access, conducting access reviews, troubleshooting access issues, and ensuring compliance
with security policies and regulatory standards.
Key Result Areas:
1. Define and manage roles to ensure a clear alignment of access rights with job functions.
2. Grant and manage access rights to ensure employees have appropriate permissions based on their roles.
3. Periodically review and validate user access to comply with policies and regulatory requirements.
4. Enforce user access policies, such as least privilege, need-to-know, and just-in-time access.
5. Oversee the entire lifecycle of user access, from creation to revocation.
6. Implement and manage tools for automated access management workflows.
7. Enforce Multi-Factor Authentication (MFA) and Single Sign-On (SSO) policies.
8. Resolve access-related issues and respond to security incidents promptly. Investigate and mitigate access-related security
incidents, such as unauthorized access or privilege escalations.
9. Monitor access activities to detect and address unauthorized or suspicious behaviour.
10. Monitor privileged accounts and high-risk activities for unauthorized actions.
11. Automate repetitive tasks like provisioning, deprovisioning, and recertifications.
12. Partner with internal stakeholders like HR to align access provisioning with employee status updates (e.g., hires, terminations,
transfers).
13. Support compliance and audit teams by providing necessary data and documentation related to access management during
regulatory inspections.
14. Educate employees and stakeholders on access management policies and best practices.
Financial Responsibility: None
Person Specifications
Education & Training:
1. Bachelor’s Degree in a relevant field such as IT, Computer Science, Cybersecurity or equivalent experience.
2. 2+ years of relevant experience in IAM, IT Security, IRM or Systems Administration.
3. Relevant certifications, such as Certified Identity and Access Manager (CIAM), Certified Information Systems Auditor (CISA), or
CompTIA Security+, are highly desirable.
Skills & Experience:
• Proficiency with IAM tools (e.g., Arcos, CyberArk), knowledge of directory services (LDAP, Active Directory), and authentication
protocols (e.g. SAML, OAuth) and Cloud IAM (AWS IAM, Azure AD).
• Strong ability to analyze access logs and resolve access-related issues.
• Ability to explain access policies to non-technical stakeholders and collaborate across teams.
• Familiarity with compliance frameworks like NIST CSF, ISO27001, COBIT, PCI DSS.
• Effectively resolve access-related challenges while ensuring minimal impact on users.
Business Behaviours:
• Excellent customer service and interpersonal skills
• Proven compliance with audit and regulatory requirements
• Ability to meet deadlines without close supervision
• Ability to explain access policies to non-technical stakeholders and collaborate across teams.
Interested candidates should send a recent CV, copies of all academic transcripts, certificates and testimonials, daytime telephone
contact, postal and email address and three competent referees not later than Tuesday, 22nd April, 2025 by 5:00pm to:
Chief Human Resources Officer
Housing Finance Bank,
Investment House
4 Wampewo Avenue, Kololo
Please take note that all applications should be sent by email to
Recruitment@housingfinance.co.ug
DO NOT HAND DELIVER YOUR APPLICATIONDO NOT HAND DELIVER YOUR APPLICATION
Please take note that ONLY shortlisted candidates will be contacted, and any form of canvassing will lead to automaticPlease take note that ONLY shortlisted candidates will be contacted, and any form of canvassing will lead to automatic
disqualification.disqualification.
Guidelines for submitting Documents.
1.1. Ensure that all your documents are scanned and submitted in 1 single batch using the following order:Ensure that all your documents are scanned and submitted in 1 single batch using the following order:
•• Application letterApplication letter
•• Curriculum Vitae (CV)Curriculum Vitae (CV)
•• Academic Documents and CertificatesAcademic Documents and Certificates
2.2. The maximum document size is 10 MBs.The maximum document size is 10 MBs.
3.3. Please indicate the name of the position you are applying for in the subject.Please indicate the name of the position you are applying for in the su
