Information Risk Management Apprentice – ABSA Bank Uganda

• Assist in provisioning system access based on approved requests.
• Support periodic User Access Reviews (UAR) for critical systems.
• Validate access rights with business owners.
• Track and document access review exceptions and remediation actions.
• Maintain audit evidence for recertification exercises.
• Identify segregation of duties (SoD) conflicts.
• Monitor privileged and high-risk accounts.
• Ensure proper authorization for privileged access.
• Support administrator and super-user account reviews.
• Ensure compliance with Absa Group policies and regulatory requirements.
• Assist in identifying control gaps and recommending improvements.
• Support automation and efficiency initiatives in access management.

• Support compliance with the Uganda Data Protection and Privacy Act (2019) and Bank of Uganda guidelines.
• Assist in implementing data privacy frameworks and controls.
• Maintain Records of Processing Activities (RoPA).
• Participate in Data Protection Impact Assessments (DPIAs).
• Support handling of data subject requests (access, correction, deletion).
• Assist in tracking and reporting data breaches and incidents.
• Monitor third-party compliance with data privacy requirements.

• Support implementation of records management policies and procedures.
• Maintain records inventories and classification registers.
• Assist in records retention and disposal processes.
• Ensure secure storage, archival, retrieval, and destruction of records.
• Participate in records audits and compliance reviews.
• Support awareness initiatives on proper records handling.

• Develop knowledge in information security, data privacy, and risk management.
• Stay updated on regulatory and industry changes.
• Contribute to process improvement initiatives within IRM.
• Support efficiency and automation efforts.

• Basic understanding of information security and risk management principles.
• Knowledge of data protection and privacy laws.
• Understanding of IT access controls and identity management.
• Proficiency in Microsoft Office tools (Excel, Word, PowerPoint).
• Familiarity with records and access management systems.
• Strong attention to detail and high integrity.
• Analytical and problem-solving skills.
• Strong communication and interpersonal skills.
• Willingness to learn in a regulated banking environment.

• Accuracy and timeliness of user access management.
• Reduction in unauthorized or excessive access risks.
• Timely handling of data subject requests.
• Completeness of records inventories.
• Compliance with retention and disposal schedules.
• Efficiency in records retrieval and archival processes.
• Reduction in audit findings related to records and access management.

• Bachelor’s degree in:
  • Information Technology
  • Cyber Security
  • Records & Archives Management
  • Related field

• First Class or Second-Class Upper Division.
• O-Level: Credit in Mathematics and English.
• A-Level: At least two principal passes.
• Graduation year: 2024–2026.
• Higher Certificate or Advanced National Certificate in Business, Commerce, or Management is required.

• Basic exposure to software, hardware, and operating systems.
• Understanding of data protection laws in Uganda is an added advantage.

• Submit application via official ABSA Bank Uganda recruitment portal.