Manager IT Governance & Controls job at Pearl Bank

Computer & IT
Kampala
June 13, 2026
Full Time
Application ends: June 15, 2026

Job Description

POSITION DESCRIPTION

JOB TITLE: MANAGER IT GOVERNANCE & CONTROLS

REPORTS TO: CHIEF INFORMATION SECURITY OFFICER

JOB PURPOSE

  • The Manager – IT Governance & Controls is responsible for leading the governance, assurance, control oversight, and regulatory compliance functions of the IT Security & Governance department.
  • The role ensures the Bank maintains an effective and measurable cybersecurity governance framework aligned to business growth, digital transformation, regulatory obligations, and enterprise risk appetite.
  • The role acts as the Bank’s focal point for cybersecurity governance, policy management, integrated assurance, control maturity, security architecture governance, and technology risk oversight across internal systems, digital platforms, third-party ecosystems, and strategic technology initiatives.

KEY RESPONSIBILITIES /KEY DELIVERABLES

  • Develop, implement, and continuously improve the Bank’s cybersecurity governance framework, ensuring alignment with business strategy, regulatory obligations, and enterprise risk appetite.
  • Own and manage the lifecycle of cybersecurity policies, standards, baselines, procedures, and control frameworks, ensuring they remain current and aligned to industry’s best practices.
  • Ensure alignment and compliance with applicable regulatory and security frameworks, including ISO/IEC 27001:2022, PCI DSS v4.0, Bank of Uganda Cyber & Technology Risk Guidelines, Data Protection and Privacy laws, SWIFT CSP, NIST Cybersecurity Framework, and other relevant standards.
  • Lead the planning, coordination, and management of cybersecurity audits, regulatory inspections, certifications, and assurance reviews, including internal audits, external audits, and supervisory examinations.
  • Coordinate evidence collection, control validation, remediation tracking, and closure of audit findings, ensuring timely resolution and reduction of repeat findings.
  • Design, maintain, and monitor the Bank’s cybersecurity control framework, ensuring effective preventive, detective, and corrective controls are implemented across technology environments.
  • Conduct governance reviews and control assessments across infrastructure, applications, digital channels, identity platforms, payment systems, cloud services, and third-party integrations.
  • Embed security governance and security-by-design principles into technology initiatives, digital products, procurement processes, architecture reviews, and change management processes.
  • Review solution architectures, technology designs, and project implementations to ensure security requirements, control standards, and regulatory obligations are incorporated before production deployment.
  • Lead the identification, assessment, treatment, monitoring, and reporting of cybersecurity and technology risks, ensuring alignment with the Bank’s enterprise risk management framework.
  • Maintain and periodically review the cybersecurity risk register, key risk indicators (KRIs), control effectiveness metrics, and management action plans.
  • Monitor emerging cybersecurity threats, regulatory changes, and technology risks, and recommend governance enhancements to strengthen the Bank’s resilience.
  • Lead cybersecurity due diligence, risk assessments, and control reviews for third-party service providers, fintech partners, cloud providers, and strategic technology vendors.
  • Ensure cybersecurity requirements are incorporated into vendor onboarding, outsourcing arrangements, contracts, and ecosystem integrations.
  • Produce monthly, quarterly, and annual governance, compliance, and control reports for the CISO, Executive Management, Board Committees, regulators, and auditors.
  • Present actionable insights on audit posture, regulatory compliance, control maturity, risk trends, and governance performance to senior stakeholders.
  • Drive continuous improvement initiatives to enhance governance maturity, reduce compliance gaps, strengthen control effectiveness, and improve operational efficiency.
  • Lead cybersecurity awareness on governance obligations, policy compliance, and control responsibilities across technology and business teams.
  • Build and support governance champions across business units to strengthen enterprise-wide ownership of cybersecurity and compliance responsibilities.
  • Support strategic initiatives such as digital transformation, open banking, fintech integrations, cloud adoption, data monetization, and emerging technology adoption by providing governance oversight.
  • Prepare and manage the Governance & Controls unit budget, annual work plans, and strategic roadmap aligned to departmental and Bank objectives.
  • Provide leadership, mentorship, and subject matter expertise in cybersecurity governance, regulatory assurance, and technology control management.
  • Perform any other duties assigned by the Chief Information Security Officer in support of the Bank’s cybersecurity, governance, and resilience objectives.

BUSINESS BEHAVIOURS

§ Passion: Committed to excellence, delivering outstanding results and making a positive impact on our customers and stakeholders.

§ Teamwork: Collaborates, mutual respect, and diverse perspectives, to achieve shared success and deliver greater value to the Bank.

Discover more

Job alert service

Job market insights

Facebook group access

§ Integrity: Uphold honesty, transparency, and accountability, ensuring ethical practices in every action.

https://syndicatedsearch.goog/afs/ads?sjk=rcPxnxZlT%2FaTi79w2%2B%2BE7Q%3D%3D&psid=5134551505&channel=AutoRsVariant&cx=r-afa23e030f532f7f8&fexp=95390668%2C21404%2C17301437%2C17301438%2C17301442%2C17301266%2C72717107&client=pub-5839100731048282&r=m&sct=ID%3Db592422f4cdb40df%3AT%3D1780851289%3ART%3D1780851289%3AS%3DALNI_MYgtqBQvgCCRG5HGIBaAcSpSLJ42A&sc_status=6&hl=en&rpbu=http%3A%2F%2Fgoogle.com&rpqp=q&type=3&rs_tt=c&oe=UTF-8&ie=UTF-8&format=r5&nocache=1551781403521870&num=0&output=afd_ads&domain_name=www.greatugandajobs.com&v=3&bsl=10&pac=0&u_his=7&u_tz=-240&dt=1781403521871&u_w=1366&u_h=768&biw=1351&bih=641&psw=1351&psh=6779&frm=0&uio=-&cont=autors-container-0&drt=0&jsid=csa&nfp=1&jsv=928547359&rurl=https%3A%2F%2Fwww.greatugandajobs.com%2Fjobs%2Fjob-detail%2Fjob-Manager-IT-Governance-Controls-job-at-Pearl-Bank-101816&referer=https%3A%2F%2Fwww.greatugandajobs.com%2Fjobs%2F&lle=1

§ Innovation: Embrace creativity and forward-thinking, continually seek new solutions to enhance customer experience and drive business growth.

https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-5839100731048282&output=html&h=280&num_ads=1&adk=634395523&adf=1798345652&pi=t.aa~a.3756329464~i.40~rp.4&abgtt=6&w=630&fwrn=4&fwrnh=100&lmt=1781357370&rafmt=1&armr=3&sem=mc&pwprc=9504788990&ad_type=text_image&format=630×280&url=https%3A%2F%2Fwww.greatugandajobs.com%2Fjobs%2Fjob-detail%2Fjob-Manager-IT-Governance-Controls-job-at-Pearl-Bank-101816&fwr=0&pra=3&rh=158&rw=629&rpe=1&resp_fmts=3&asro=0&aimartd=4&aieuf=1&aicrs=1&fa=27&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTQ4LjAuNzc3OC4yMTciLG51bGwsMCxudWxsLCI2NCIsW1siQ2hyb21pdW0iLCIxNDguMC43Nzc4LjIxNyJdLFsiR29vZ2xlIENocm9tZSIsIjE0OC4wLjc3NzguMjE3Il0sWyJOb3QvQSlCcmFuZCIsIjk5LjAuMC4wIl1dLDBd&dt=1781403521152&bpp=7&bdt=2134&idt=8&shv=r20260611&mjsv=m202606090101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D377c5a50a4eaba64%3AT%3D1780851227%3ART%3D1781377774%3AS%3DALNI_MZ7sBQNdZ1JmOtUeQsxQe-A3jfnmw&gpic=UID%3D000013c0858347c2%3AT%3D1780851227%3ART%3D1781377774%3AS%3DALNI_MbX6MWQ8AEZcIChIzD24E9lXjX6Gg&eo_id_str=ID%3D4508010e4c7b6672%3AT%3D1780851227%3ART%3D1781377774%3AS%3DAA-AfjbwgaR2wl7FFowyNlOIQQ1V&prev_fmts=0x0%2C243x600%2C243x600%2C630x280&nras=3&correlator=6329373035958&frm=20&pv=1&u_tz=-240&u_his=7&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=32&u_sd=1&dmc=4&adx=361&ady=3621&biw=1351&bih=641&scr_x=0&scr_y=1091&eid=95390668&oid=2&pvsid=6789268519263467&tmod=701345447&uas=1&nvt=1&ref=https%3A%2F%2Fwww.greatugandajobs.com%2Fjobs%2F&fc=1408&brdim=0%2C0%2C0%2C0%2C1366%2C0%2C1366%2C728%2C1366%2C641&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&pgls=CAg.&ifi=5&uci=a!5&btvi=2&fsb=1&dtd=M

QUALIFICATIONS, EXPERIENCE AND COMPETENCIES REQUIRED

  • Bachelor’s degree in information technology, Computer Science, Cybersecurity, Information Systems, Business Information Technology, or a related discipline.
  • Postgraduate qualification in cybersecurity, information security, technology risk, governance, or business administration will be an added advantage.
  • Professional certifications in cybersecurity, governance, audit, or risk management will be an added advantage, including ISO/IEC 27001 Lead Implementer or Lead Auditor, ISACA CISM, CRISC, CISA, ISC2 CISSP, PCI DSS, Data Protection, Cloud Security, or related certifications
  • Candidates who are actively pursuing relevant professional certifications and demonstrate commitment to continuous professional development will be strongly considered.
  • Minimum 3 years of experience in information security, IT governance, technology risk, audit, compliance, infrastructure, application security, or related technology functions.
  • Experience working within banking, financial services, fintech, telecommunications, or other regulated environments will be an added advantage.
  • Exposure to information security frameworks, regulatory compliance, technology risk management, internal controls, audit processes, or policy management.
  • Foundational understanding of governance and control frameworks such as:
    • ISO 27001, PCI DSS, NIST CSF, COBIT, SWIFT CSP, Data Protection and Privacy requirements.
  • Exposure to technology environments such as: Enterprise infrastructure, Cloud platforms, Digital channels, Identity and access management, Vendor or third-party technology integrations
  • Experience participating in audits, remediation programs, risk assessments, policy reviews, project governance, or technology control reviews.
  • Ability to analyse risks, challenge constructively, and translate technical issues into business-focused recommendations

Work Hours: 8

Experience in Months: 36

Level of Education: bachelor degree

Job application procedure
Interested in applying for this job? Click here to submit your application now.

THE FOLLOWING DOCUMENTS SHOULD ACCOMPANY THE APPLICATION

  • Cover letter, Detailed CV, and Copies of academic documents all as one file.

MODE OF APPLICATION

  • Online applications addressed to Chief People & Strategy Officer, Pearl Bank Uganda.
  • Send application with job title as subject.
  • Closing Date: Monday 15th June 2026 at 5:00pm.
  • Only shortlisted candidates will be contacted.

Pearl Bank Uganda Ltd is an equal opportunity employer

Related Jobs