EMPLOYMENT TERMS
As a responsible and equal-opportunity employer, NITA-U is committed to
providing competitive employment terms to successful candidates with the right
qualifications, skills, competencies, and experiences. The job specifications,
descriptions, and other details are found on the NITA-U official website
(www.nita.go.ug)
4. APPLICATION PROCESS
Interested applicants who meet the job requirements/specifications and with the
right personal attributes are invited to complete and submit their application form
(which can be downloaded from the NITA-U official website
https://www.nita.go.ug/job-applications/job-application-form ), with a cover
letter, supported by curriculum vitae, copies of certificates and testimonials, and
must specify day time telephone contact, postal and email addresses of both the
applicant and three referees, to the address below.
Primary purpose:
The Data Protection Officer will be responsible for providing assurance that data controllers and
processors subject to the Data Protection and Privacy Act, Cap 97, and its Regulations have
implemented effective technical and organizational measures to safeguard personal data.
Key Accountabilities
a) Carry out activities to monitor compliance and report on the observance of the right to
privacy of a person and of personal data.
b) Guide audited entities on closing gaps and embedding privacy-by-design principles.
c) Contribute to compliance clinics, awareness, and capacity-building sessions.
d) Participate in investigations, on‑site inspections, and evidence‑gathering activities to
ensure proportionate regulatory action.
e) Represent PDPO at sector working groups, and standard-setting forums, and
gather input to refine PDPO’s audit and inspection manual.
f) Perform any other responsibilities as may be assigned.
Qualifications and Experience
Education
a) A Bachelor of Information Technology, Computer Science degree, or related area
from a recognized university is required
CISA or CISM is a requirement;
c) An internationally recognized Data Protection and Privacy certification is an added
advantage.
Experience
A minimum of four (4) years of working experience in a compliance, risk, or auditing role in a
reputable public or private organization.
Technical Expertise
a) Knowledgeable about Cyber and Data Protection and Privacy laws;
b) Familiarity with audit management tools and data analytics techniques; and
c) Working understanding of Information Security controls
