Descriptions

The Manager – Cyber Security is responsible for end-to-end protection of the Bank’s information assets, covering preventive, detective, and responsive cybersecurity controls, and full ownership of the Security Operations Center (SOC).

The role ensures the Bank maintains a strong cyber-resilience posture, supports 24/7 secure banking operations, and complies with regulatory, audit, and international security standards while enabling digital growth and innovation.

Requirements

Education

• Bachelor’s degree in computer science, Information Security, ICT, or related field.
• Professional certifications in cybersecurity are highly preferred

Experience

• 3–5 years in cybersecurity or information security.
• Banking or financial services experience is strongly preferred
• Proven experience in incident handling and regulatory audits.

Core Competencies

• SIEM & SOC platforms
• Incident response & digital forensics
• Network, endpoint, and application security
• IAM & PAM
• Vulnerability management tools
• Cloud & hybrid security concepts
• Secure API & digital channel security.

Behavioral & Leadership Competencies

• Strong crisis and decision-making skills
• High integrity and confidentiality
• Analytical and investigative mindset
• Stakeholder communication and reporting
• Ability to operate under pressure

• Develop and implement the Bank’s Cybersecurity Strategy, policies, and standards aligned with ICT, Operations, and Risk strategies.
• Establish and maintain a Cybersecurity Governance Framework, including roles, responsibilities, and escalation structures.
• Ensure alignment with: Bank of Tanzania (BOT) ICT & Cybersecurity guidelines, ISO/IEC 27001 & 27002, PCI DSS (cards & payments), Data protection and privacy laws
• Provide cybersecurity risk assessments and reports to management and governance committees.
• Own and manage the 24/7 SOC function (in-house, outsourced, or hybrid).
• Define SOC operating procedures, SLAs, shift models, and escalation paths.
• Oversee real-time monitoring of: Network and infrastructure, Core Banking System (CBS), Digital channels (mobile, internet, USSD, APIs), ATMs, POS, and agency banking
• Ensure timely detection, investigation, and response to security incidents
• Lead cyber incident response, containment, eradication, and recovery.
• Maintain and test Incident Response Plans and playbooks.
• Coordinate with: ICT Infrastructure, Digital & AI teams, Risk, Compliance, and Internal Audit, External vendors, regulators, and law enforcement (when required)
• Conduct post-incident reviews and root-cause analysis
• Establish a Threat Intelligence function to identify emerging cyber threats.
• Oversee vulnerability assessments, penetration testing, and remediation tracking.
• Ensure regular security testing of: Applications, Infrastructure, Digital channels, APIs and integrations
• Prioritize remediation based on risk and business impact
• Enforce Identity & Access Management (IAM) principles: Least privilege, Segregation of duties, Privileged Access Management (PAM)
• Oversee deployment and maintenance of security tools including but not limited to: SIEM, SOAR, Endpoint protection, DLP, Network security tools (firewalls, IDS/IPS)
• Ensure secure configurations across systems and platforms
• Maintain full audit readiness for cybersecurity domains.
• Support internal, external, and regulatory audits.
• Track and close all cybersecurity audit findings within agreed timelines.
• Maintain evidence repositories and compliance documentation
• Work with ICT, Risk, and Operations teams to: Embed cyber risk controls into business processes, Support Business Continuity Planning (BCP) and Disaster Recovery (DR)
• Participate in DR drills and cyber-resilience testing.
• Develop and execute a Cybersecurity Awareness Program for staff and third parties.
• Conduct phishing simulations and targeted training.
• Promote a strong security culture across the Bank.
• Govern and coordinate the Change Advisory Board (CAB)
• Review and approve security impact assessments for all ICT changes
• Define change classification (standard, normal, emergency)
• Approve or reject changes based on risk severity and readiness.
• Ensure emergency changes are reviewed post-implementation.
• Maintain audit trails and evidence for all security-approved changes
• Assess and monitor cybersecurity risks of vendors and partners.
• Ensure third-party security requirements are embedded in contracts.
• Support onboarding of fintech, APIs, and integrations securely.

• SIEM & SOC platforms
• Incident response & digital forensics
• Network, endpoint, and application security
• IAM & PAM
• Vulnerability management tools
• Cloud & hybrid security concepts
• Secure API & digital channel security.
• intergrity
• Communication Skills
• decision making

• Bachelor’s degree in computer science, Information Security, ICT, or related field.
• Professional certifications in cybersecurity are highly preferred
• 3–5 years in cybersecurity or information security.
• Banking or financial services experience is strongly preferred
• Proven experience in incident handling and regulatory audits.