IT Jobs – Computer Forensic & Incident Management Manager at National Information Technology Authority-Uganda (NITA-U)

Job
Title: Computer Forensic &
Incident Management Manager

Organization: National Information Technology
Authority-Uganda (NITA-U)
Reports to: Director – Information
Security
Salary Scale: N/MA/N3



About
NITA-U:

The National Information Technology Authority-Uganda (NITA-U) was established
as a statutory body under the National Information Technology Authority, Uganda
Act, 2009 as one of the key players in the Information and Communications
Technology Sector. Its mandated is to coordinate, promote and monitor IT
development within the context of national social and economic development,
with a vision as “a facilitator of a knowledge-based, globally competitive
Uganda where social transformation and economic development is supported
through IT enabled services.”


Job Summary: The Computer Forensic
& Incident Management Manager will assist in the development and implementation
of aspects of Computer Forensics and Incident Management.

Key Duties and Responsibilities:

  • Act
    as a Subject Matter Expert (SME) for incident response and forensics
  • Manage
    and perform incident response activities including:
  • Searching
    device and server logs.
  • Locating
    malware on a computer
  • Identifying
    the attack vector
  • Remediating
    infected computer(s)
  • Building
    a timeline showing how the incident unfolded.
  • File
    carving
  • Briefing
    customer on extent of incident and response strategy
  • Perform
    storage forensics and Utilize Company-owned forensic tools (Encase, FTK,
    Helix, Wireshark, etc.) and other incident responses tools in the course
    of investigations
  • Utilize
    other Incident response tools such as nmap, Wireshark and Snort,
  • Perform
    network storage forensics (for example, capturing network traffic for
    analysis)
  • Perform
    file-system analysis and file carving (for example, to extract email,
    documents, and other trace evidence)
  • Establish
    timelines and patterns of activity of individuals and electronic devices
    and software
  • Follow
    forensically sound practices, including preserving chain of custody
  • Consult
    with Company legal team on privacy, policy and compliance concerns
  • Develop
    company-wide remediation plan of actions as a result of investigative
    discovery within company business and IT infrastructure
  • Adequately
    communicate with all key stakeholders to ensure both confidentiality of
    information and expedient evidence collection

 

Qualifications,
Skills and Experience:

  • The
    applicant should hold a Bachelor’s degree in Computer Science, Information
    Technology, Information Science, Information Systems information Security
    or a related field from a recognized university
  • Be
    a Certified Information Systems Security Professional (CISSP) or Certified
    Information Security Manager (CISM) or Certified Information Security
    Auditor (CISA) credential is an added advantage
  • The
    job holder should possess at least 3 years active experience as part of an
    incident response team working as an IR Handler (either in-house or as a
    consultant)
  • A
    post graduate in a relevant field will be an added advantage.
  • Networking
    and Operating Systems certifications / credentials.
  • Possess
    broad information security knowledge and experience
  • Working
    knowledge of forensic tools such as Encase, FTK, Helix, Knoppix, Slax,
    Sleuthkit, SIFT, BlackLight and/or MacForensicsLab
  • Familiarity
    with the following technologies: Active Directory, Virtualization
    platforms, Microsoft Windows, Unix, Linux, Mac OS X, LDAP, Active
    Directory, 802.11 wireless, firewalls, routers, network protocols and
    architecture, databases, VPN/RAS, IDS/IPS
  • Understanding
    of risk-based frameworks
  • Understanding
    of one or more frameworks: PCI-DSS, Sarbanes Oxley, NERC-CIP, HIPAA,
    FISMA, ISO, COBIT, NIST
  • Very
    good understanding of MS Windows architecture and design
  • Strong
    understanding of networking protocols such as RIP, EIGRP, OSPF, network
    tools such as wireshark and nmap and networking principles such as subnet
    masks, CIDR and spanning-tree protocol
  • Ability
    to work on own initiative as well as in a team.
  • Excellent
    business acumen.
  • Analytical
    and problem –solving skills.
  • Excellent
    interpersonal and communication and report writing skills.
  • Capacity
    to establish credibility, trust and partnership.
  • Experience
    managing large and small scale incidents
  • Experience
    leading digital forensic investigations

 

How
to Apply:

All suitably qualified and
interested candidates who meet the job requirements/specifications and with the
right personal attributes are invited to submit their application form (which
can be down loaded from the NITA-U official website www.nita.go.ug), with a
cover letter, curriculum vitae, and must specify day time telephone contact,
postal and email addresses of both the applicant and three referees, copies of
certificates and testimonials to the address below. Applicants must also submit
with their application verifiable evidence supporting previous relevant
appointments such as appointment letters and employment contracts.).

 

NB:
No application will be accepted without a duly signed standard application
form.

 

The Executive Director,
National Information Technology
Authority – UGANDA (NITA-U),
Palm Courts, Plot 7A, Rotary Avenue (former lugogo bypass)
P.O. Box 33151, Kampala-Uganda
Tel: 0417 801 038

Or via email: hr@nita.go.ug This e-mail
address is being protected from spambots. You need JavaScript enabled to view
it



Deadline:
14th October, 2013 by 5 PM

 

For More Ugandan Jobs,
Please Visit https://www.theugandanjobline.com   or
find us on our facebook page https://www.facebook.com/UgandanJobline

Related Jobs