Summary
Overview
Work History
Education
Skills
Certification
References
Additional Information
Watching football and travelling
Accomplishments
Work Availability
Timeline
Generic
Niaba Ndubulah

Niaba Ndubulah

Senior Risk Analyst - Technology
Dar Es Salaam

Summary

Forward-thinking professional with expertise in cybersecurity, risk management, and IT governance. Skilled in safeguarding enterprise systems through security frameworks, audits, and business continuity planning, while ensuring alignment with governance, risk, and compliance (GRC) standards. Hands-on experience with IT systems across global organizations, including CRDB Bank in Tanzania, institutions in Washington DC and Maryland, and technology environments in Tokyo, Japan. This international exposure has built a solid foundation in managing diverse regulatory requirements and strengthening operational resilience. Holding a master’s degree in finance and Investment, combining risk analysis with strategic investment knowledge. This dual capability enables a holistic approach to enterprise risk, bridging technology and finance to support informed decision-making in business environments. Recognized for being self-driven yet collaborative, with communication and stakeholder engagement skills. Dedicated to continuous learning and staying ahead of emerging technologies and industry best practices to deliver secure, efficient, and future-ready solutions.

Overview

12
12
years of professional experience
11
11
Certifications
2
2
Languages

Work History

ICT Risk Senior Analyst

CRDB Bank PLC
12.2022 - Current
  • Provide input to the development and review of ICT risk policies and contribute to the reviews of other policies and procedures to ensure that new and existing information systems and infrastructure are deployed, operated, maintained, and supported in line with industry best practices and statutory requirements.
  • Provide input to the review of assigned policies and procedures of subsidiary companies to ensure that information, communication technology, and digital transformation risks are addressed.
  • Perform risk and control reviews on new and existing ICT systems, as well as operational, maintenance, and supporting processes.
  • Review ICT solution proposals to ensure inherent ICT risks are addressed.
  • Coordinate the identification, monitoring, and mitigation of ICT risks identified during the execution of normal and agile projects, and digital transformation initiatives.
  • Provide input into the development and review of Key Risk Indicators (KRIs) to ensure ICT risks are adequately monitored and reported.
  • Follow up with business units to ensure that responses to ICT-related KRIs are submitted in a timely manner, properly reviewed, and that identified risk and control issues are monitored for closure.
  • Provide input to the development and review of Risk and Control Self-Assessment (RCSA) questions to ensure key ICT risks and controls are identified and assessed by process owners, and that identified gaps are addressed.
  • Provide input during the preparation of ICT risk reports for submission to management and board risk committees.
  • Coordinate risk management processes to ensure that ICT risks are measured and monitored according to regulatory requirements, industry standards, and international best practices.
  • Participate in Change Advisory Board (CAB) meetings in order to review ICT change requests and advise management prior to their approval.
  • Review assigned contracts and agreements between the Bank and third parties to ensure inherent ICT risks are addressed.
  • Track reported ICT risk incidents and follow up with the ICT department on actions to address them.
  • Train staff in ICT risk management principles, and their role as process owners, to ensure that the ICT risk management culture is inculcated among all staff in the Bank.
  • Provide support to other risk management desks as assigned by the supervisor.
  • Provide support to risk management functions under subsidiary companies on matters related to ICT risk management.

Zonal ICT Specialist

CRDB Bank PLC
06.2020 - 11.2022
  • Working as Southern Zonal ICT Specialist supporting Mtwara, Lindi, Songea, Ruangwa, Nachingwea, Liwale, Newala, Masasi, Nanyumbu, Tunduru, Namtumbo, Mbinga, Kilwa and Nyasa CRDB bank branches, below are my responsibilities and tasks;
  • Manage and Maintain all LAN and WAN networks at every branch
  • Provide full technical and non-technical support of all ATMs and BWAC (Bank World ATM Client) software.
  • To identify, analyze and report any system or control risk in time.
  • Plan and execute all technical and non-technical training to users
  • Manage and supervise bank internal projects with support from hq engineers
  • To make sure all controls and procedures are in place and working as required.
  • To perform routine service maintenances of all working tools
  • To manage capacity and capability of all working tools
  • To perform security controls, compliance and procedures assessments on bank systems, data, ATMs and assets
  • To manage and control Bank system access at the branches level.
  • To control and Manage system updates
  • Testing and implementation of new projects
  • To conduct security and technical training sessions to users

Zonal ICT Officer

Jhpiego-an Affiliate of Johns Hopkins University
10.2015 - 04.2020
  • Working as Southern Highland Zonal ICT Officer Servicing Iringa, Njombe, Morogoro, Dodoma, Rukwa and Mbeya in a Zonal IT-Officer capacity, with responsibilities and task below;
  • User Support:
  • Domain Controller (DC) Configuration and Management
  • Remedy all issues relating to malware
  • Verify that Microsoft Windows and Software Updates are installed regularly
  • To Provide User support via LogMeIn or Skype for business or Teams-Application, mails, Phone to attend issues remotely or physically or escalate where needed.
  • Maintain Servers, UPSs, desktops and laptops including the replacement of parts
  • Provide IT support to staff
  • JDR (Digital Mobile Money Registration/Payment System) installation, management and training users
  • Maintaining user accounts in Jhpiego, JEMS (Jhpiego Enterprise Management System), Printing and scanning, emails, updating system data i.e. JEMS –photo and signature, internet connection, mobile phones and office laptops.
  • Network and Internet management
  • Setting up technical specifications and Scope of Work for IT related procurements and contracts.
  • Software and Hardware installation, configuration, management and License Compliance
  • Server administration (Database, DHCP, Print and file server) Compliance
  • Follow Jhpiego IT Service Management processes
  • Maintain and Report inventory and assets of IT hardware and software
  • Maintain JDR inventory
  • Prepare, document, and communicate system status reports with Tanzania and US teams
  • Complying with IT Change Management before doing any system change.
  • Internet
  • Manage the relationship with the internet service provider and ensure high-quality internet connectivity
  • Troubleshoot internet connectivity
  • Manage and Produce weekly report on the Internet usage and consumption if reflects value of money.
  • System Designing, implementation, acquisition and Management
  • Designing, Developing, implementing and managing System changes.
  • Data gathering, system design and development and reporting
  • Data and Asset management and protection
  • Business case development
  • Plan and reports presentation to the Senior Management and technical Committee
  • Tender evaluations with evaluation teams
  • Network, Systems and User security setting and management
  • Network
  • Maintain network equipment including all switches, wireless access points, firewalls, and, Steelhead
  • Monitor and run network diagnostics to ensure that the network is running smoothly
  • Monitor access doors and CCTV camera to ensure that the system is running smoothly
  • Maintain network devices including printers and All-in-One Copiers
  • Configure and maintain servers
  • Maintain and regularly test power backup systems (e.g., generators, UPSs, battery)
  • Backup
  • Institute and maintain rigorous and regular back up system for all computers in the office ensuring that all computers are backed up at all times
  • Preventive Maintenance (PM)
  • Normal Preventive maintenance of servers, Printers, switches, gateways (sonic wall), desktops and laptops in my regions during my monthly support visit
  • Frequently training on security issues and usage of Jhpiego systems

IT-Engineer

Dangote Industries Limited-Tanzania (DIL)
07.2015 - 09.2015
  • Key duties were the following
  • User and system full technical support within a cement plant.
  • Continuous management of network and servers, between DIL offices (Tanzania, Nigeria and India links) and in-house Mtwara DIL weigh bridge networks to servers.
  • Assemble (computers, servers and printers), Installations, configurations, maintenance and management of plant IT-systems.
  • IT-Training to other nontechnical staffs on how to use IT-facilities within a cement plant, DIL-Mtwara.

Systems Technician

Computer Center (T) Limited (CCTZ)
03.2014 - 06.2015
  • Working in the Technical Department and reporting to the Workshop Administrator key responsibilities were to visit business clients for:
  • Systems software (operating systems) installation for both servers and client computers.
  • Performing Preventive and Corrective Maintenance of IT systems and assets at CITI Bank (As CITI Bank outsourced their IT support to CCTZ).
  • Maintenance and Supporting some Point of Sales machines at CITI Bank.
  • User helpdesk support, supporting users on various technical issues such as troubleshooting network connectivity, network printing, CCTV cameras and document scanning.
  • Performing data backup on the server using tapes and network drives
  • Installing, configuring and managing Windows Server domain controller, print server, file server, exchange server and DHCP servers on Windows network.
  • Performing hardware maintenance - computers, printers and servers
  • Installation of Local Area Network (LAN) – putting cable trunks, installing and configuring network switches, laying cables from network switches to network points and making network cables.
  • Performing scheduled monthly preventive maintenance of servers, user computers, printers, scanners, CCTV cameras and UP

Education

Master of Science - Finance and Investment

Institute of Finance Management
Dar Es Salaam, Tanzania
04.2001 -

Bachelor of Science - Computer Science

Institute of Finance Management
Dar Es Salaam, Tanzania
11.2013

Associate of Science - Physics, Chemistry And Mathematics

Tarime Boys High School
Tarime, Tanzania
02.2010

Ordinary Level Secondary Education -

Bariadi Secondary School
Bariadi, Simiyu, Tanzania
10.2007

Skills

Client management

Certification

CISA, (Certified Information Systems Auditor – Certificate Number 19155187) from ISACA

References

References available upon request.

Additional Information

Holding industry-recognized certifications such as CISA, Certified Ethical Hacker (CEH) and ISO/IEC 27001Senior Lead Implementer, along with experience in leading successful cybersecurity risk assessment and mitigation initiatives. My active membership in professional organizations like ISACA further demonstrates my dedication to excellence in ICT risk management.

Watching football and travelling

I like football game especially Premier League and Manchester United

Accomplishments

  • Collaborated with team of mega big Switch(VISA) project

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Timeline

ICT Risk Senior Analyst

CRDB Bank PLC
12.2022 - Current

Zonal ICT Specialist

CRDB Bank PLC
06.2020 - 11.2022

Zonal ICT Officer

Jhpiego-an Affiliate of Johns Hopkins University
10.2015 - 04.2020

IT-Engineer

Dangote Industries Limited-Tanzania (DIL)
07.2015 - 09.2015

Systems Technician

Computer Center (T) Limited (CCTZ)
03.2014 - 06.2015

Master of Science - Finance and Investment

Institute of Finance Management
04.2001 -

Bachelor of Science - Computer Science

Institute of Finance Management

Associate of Science - Physics, Chemistry And Mathematics

Tarime Boys High School

Ordinary Level Secondary Education -

Bariadi Secondary School

Similar Profiles

  • Winifrida ChamiWinifrida Chami

    Field Practical Training at CRDB Bank PLCField Practical Training at CRDB Bank PLC

  • Maria NyabitwanoMaria Nyabitwano

    Supervisor Corporate Service Desk at CRDB Bank PlcSupervisor Corporate Service Desk at CRDB Bank Plc

  • Johnson MalleJohnson Malle

    Security Operations Center Analyst at Computer Information System (Out resource to CRDB BANK PLC)Security Operations Center Analyst at Computer Information System (Out resource to CRDB BANK PLC)

  • JOHN GABRIEL MMBANDOJOHN GABRIEL MMBANDO

    Business Analyst - Grants, Risk & Compliance at Deloitte – USAID Afya Yangu Southern ProgramBusiness Analyst - Grants, Risk & Compliance at Deloitte – USAID Afya Yangu Southern Program

  • Irene ShumaIrene Shuma

    Project lead coordinator at Success Hands Tanzania InitiativeProject lead coordinator at Success Hands Tanzania Initiative

CREATE PROFILE
Niaba NdubulahSenior Risk Analyst - Technology