SECURITY OPERATIONS MANAGER (01) REPORTS TO:
CHIEF INFORMATION SECURITY OFFICER JOB PURPOSE The role holder is responsible for leading and overseeing the 24/7 Security Operations Center at Pearl Bank. The role entails managing threat detection, incident response, and security monitoring processes to ensure the bank’s information assets are protected against cyber threats.
The SOC Manager plays a crucial role in aligning security operations with regulatory frameworks and supporting strategic objectives that promote resilience and operational continuity. KEY RESPONSIBILITIES /KEY DELIVERABLES Security Operations Oversight
• Lead day-to-day operations of the Security Operations Center. Incident Response Management
• Define and manage incident escalation protocols, IR playbooks, and response workflows.
• Conduct root cause analysis and post-incident reviews with recommendations for improvement. Threat Intelligence & Hunting
• Integrate and operationalize threat intelligence feeds into SOC workflows.
• Oversee proactive threat hunting and anomaly detection efforts. Technology & Tooling
• Manage SIEM, SOAR, EDR/XDR, IDS/IPS, threat intelligence, and log management platforms.
• Lead the tuning, integration, and optimization of detection rules and automation workflows.
• Assess and recommend security tools to enhance the SOC’s detection and response capabilities. Process & Policy Development
• Develop and maintain SOC operating procedures and incident response documentation.
• Ensure all operational activities align with ISO/IEC 27001:2022, NIST CSF, SWIFT CSP, BoU Guidelines, and PCI DSS v4 requirements.
• Continuously improve processes to reduce false positives and enhance response times (MTTD/MTTR). Collaboration & Stakeholder Engagement
• Liaise with internal IT, infrastructure, risk, legal, and compliance teams during incidents.
• Collaborate with third-party MSSPs, incident response providers, and national CERT teams as necessary.
• Support internal/external audits and regulatory inspections with evidence and reporting. Strategic Planning & Reporting
• Develop and implement a strategic roadmap for SOC maturity.
• Define, track, and report key performance indicators (KPIs) such as MTTD, MTTR, incidents handled, and SLA compliance.
• Present monthly and quarterly reports to the CISO and executive leadership BUSINESS BEHAVIOURS
Passion: Committed to excellence, delivering outstanding results and making a positive impact on our customers and stakeholders.
Teamwork: Collaborates, mutual respect, and diverse perspectives, to achieve shared success and deliver greater value to the Bank.
Integrity: Uphold honesty, transparency, and accountability, ensuring ethical practices in every action. Innovation: Embrace creativity and forward-thinking, continually seek new solutions to enhance customer experience and drive business growth.
QUALIFICATIONS, EXPERIENCE AND COMPETENCIES REQUIRED
Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field. Professional certifications strongly preferred: CISSP, CISM, GCIA, GCIH, CEH, or equivalent. Minimum 5 years in cybersecurity, with 2+ years in SOC leadership or equivalent roles.
Experience operating a 24/7 SOC in a financial or regulated environment is an added advantage. Proven track record of handling incident response and managing security teams.
Strong understanding of network security, cyber threat landscape, and incident response frameworks. Familiarity with common toolsets: SIEM, EDR/XDR, DLP, etc THE FOLLOWING DOCUMENTS SHOULD ACCOMPANY THE APPLICATION
Cover letter, Detailed CV, and Copies of academic documents all as one file.
MODE OF APPLICATION Online applications addressed to Chief People & Strategy Officer, Pearl Bank Uganda.
Send application to hr@postbank.co.ug with job title as subject. Closing Date: Monday 03rd November 2025 at 5:00pm.
Only shortlisted candidates will be contacted.
