Specialist: IT Governance, Risk and Compliance
2 weeks ago
**Job Advert Summary**:
The purpose of the position is to develop and maintain the information technology (IT) risk and compliance frameworks, policies, processes and procedures through implementation of best practices and approved IT governance framework. The incumbent is also responsible to monitor compliance to IT security policies and their alignment with the company business objectives, monitor IT disaster recovery plans and execution and their alignment with company business continuity plans and work with risk management and internal audit units to monitor IT internal control system.
**Minimum Requirements**:
GENERAL REQUIREMENTS
Minimum requirement
This position requires a minimum Degree/diploma (NQF 7) in Information Technology/Information Systems or Computer Science PLUS the following certifications:
CISA, CISM, CRISC, CGEIT or CISSP
COBIT Training
Added advantage:
Any post graduate qualification in IT, compliance or Internal/External Audit or risk management will be an advantage.
Minimum 5 years’ experience in IT auditing or ICT governance, risk and compliance in a medium to large organisation, with 3 years managing IT audit teams and working with COBIT 19 processes.
: TECHNICAL COMPETENCIES
IT governance
Reviews information systems for compliance with legislation and specifies any required changes.
Responsible for ensuring compliance with organisational policies and procedures and overall information management strategy.
Implements the governance framework to enable governance activity to be conducted.
Within a defined area of accountability, determines the requirements for appropriate governance reflecting the organisation’s values, ethics and wider governance frameworks.
Communicates delegated authority, benefits, opportunities, costs, and risks.
Assists in reviews of governance practices with appropriate and sufficient independence from management activity.
IT risk management
The planning and implementation of organisation-wide processes and procedures for the management of IT risk to the success or integrity of the business, especially those arising from the use of information technology, inappropriate disposal of IT materials, hardware or data.
Carries out risk management activities within a specific function, technical area or project of medium complexity.
Identifies risks and vulnerabilities, assesses their impact and probability, develops mitigation strategies and reports to the business.
Involves specialists and domain experts as necessary.
Information assurance
The leadership and oversight of information assurance, setting high level strategy and policy, to ensure stakeholder confidence that risk to the integrity of information in storage and transit is managed pragmatically, appropriately and in a cost-effective manner.
Performs technical assessments and/or accreditation of complex or higher-risk information systems.
Identifies risk mitigation measures required in addition to the standard organisation or domain
measures.
Establishes the requirement for accreditation evidence from delivery partners and communicates accreditation requirements to stakeholders.
Contributes to planning and organisation of information assurance and accreditation activities.
Contributes to development of and implementation of information assurance processes.
Information security governance
The management of, and provision of expert advice on, the selection, design, justification, implementation and operation of information security controls and management strategies to maintain the confidentiality, integrity, availability, accountability and relevant compliance of information systems with legislation, regulation and relevant standards.
Explains the purpose of security controls and performs security risk and business impact analysis for medium complexity information systems.
Identifies risks that arise from potential technical solution architectures.
Designs alternate solutions or countermeasures and ensures they mitigate identified risks.
Investigates suspected attacks and supports security incident management.
**Duties and Responsibilities**:
KEY PERFORMANCE AREAS (KPA’s)
Strategic Function
Contribute to the development of IT Risk and compliance frameworks and strategies for company.
Support the implementation of the centre Balance Score Card (BSC) initiatives.
Product Management
IT governance and risk management:
Provide support to the senior leadership team on the service portfolio and governance requirements.
Assess ICT general controls by conducting reviews on various aspects of information security, data privacy and business continuity.
Develop and implement a mitigation plan for ICT general control gaps identified during periodic assessments.
Interpret ICT policies and contribute to development of procedures, standards and guidelines that comply with these.
Develop and maintain a risk register that includes ICT operational, business and strategic risks.
Assess the impact and lik
-
Specialist: IT Governance, Risk and Compliance
1 month ago
Pretoria, South Africa Professional Sourcing Full time**Job Overview**: **Specialist: IT Governance, Risk and Compliance Specialist (24-Month Fixed-Term Contract)** - The position is limited to previously disadvantaged groups due to BBBEE requirements._ - _ **Location: Pretoria, Gauteng** There is a newly created job opportunity available at a **highly recognised financial institution** for a **Specialist: IT...
-
Specialist: IT Governance, Risk
1 month ago
Pretoria, South Africa Khomeliwa Consulting Full time**SPECIALIST: IT GOVERNANCE, RISK & COMPLIANCE, Pretoria, R857k - R1,2m p/a** Our client, the SA Revenue Service (SARS), seeks to appoint the SPECIALIST: IT GOVERNANCE RISK & COMPLIANCE to be based at their head office in Brooklyn, Pretoria. We are looking for a highly skilled, results driven, self-directed specialist with extensive knowledge and...
-
Senior Specialist: IT Governance, Risk
1 month ago
Pretoria, South Africa Khomeliwa Consulting Full time**SENIOR SPECIALIST: IT GOVERNANCE, RISK & COMPLIANCE, Pta,** **R1,3m - R2,0m per annum** Our client, the SA Revenue Service (SARS), seeks to appoint the SENIOR SPECIALIST: IT GOVERNANCE RISK & COMPLIANCE to be based at their head office in Brooklyn, Pretoria. The incumbent will be a highly skilled, results driven, self-directed senior specialist with...
-
Pretoria, South Africa H & S Labour Brokers Full time**Pretoria** **Negotiable from: R733, 000 CTC** Our client is currently seeking an experienced Specialist: ICT Governance Risk and Compliance based in Pretoria. The main function of this role is to design, develop, implement and maintain ICT Governance, Risk and Compliance strategic frameworks and activities, data privacy compliance reporting and...
-
Specialist: Ict Governance Risk and Compliance
1 month ago
Pretoria, South Africa Kamo Placements Full time**JOB DESCRIPTION** - Provide an ICT Governance, Risk and Compliance (GRC) framework, including data compliance and cybersecurity risk aligning ICT with the overall objectives of company. - Coordinate the development and implementation of ICT policies, standards, processes and procedures and ensure that data compliance standards are adhered to throughout the...
-
Specialist: Ict Governance Risk and Compliance
1 month ago
Pretoria, South Africa Kamo Placement Full timeGauteng, Tshwane (Pretoria) - Annually Cost To Company (Market related, Negotiable) To design, develop, implement and maintain ICT Governance, Risk and Compliance strategic frameworks and activities, data privacy compliance reporting and processes as well as conduct regular governance audits and take corrective action on behalf of the company to support...
-
Specialist: Ict Governance Risk and Compliance
4 weeks ago
Pretoria, South Africa Affirmative Portfolios Full time**Information Technology** **Pretoria** ***: **JOB OUTLINE** **Specialist: ICT Governance Risk and Compliance** **PERMANENT** **PRETORIA** **Department -** Corporate Services **Sub division** - ICT **Reports to -** Head: ICT & Knowledge Management **Overview**: Design, develop, implement and maintain ICT Governance, Risk and Compliance strategic...
-
Specialist: Compliance Risk
1 month ago
Pretoria, South Africa HR Genie Full timeOur Client a leading organization firm is seeking a Specialist: Compliance Risk to join their team in Pretoria. They offer stability, growth, attractive salary along with excellent benefits and a great working environment. About the Position An Exciting opportunity is available for a highly skilled, results driven, self-directed specialist with extensive...
-
Manager - Ict Governance, Risk and Compliance
1 month ago
Pretoria, South Africa Financial Sector Conduct Authority Full time**Purpose of the Job**: To ensure that strategic and operational business problems are accurately framed, understood, in line with established business analysis and process management practices in order to ensure outcomes meet business requirements. The person appointed will report to the Head: ICT Governance, Business Relationship and Risk. **Key...
-
Manager: Ict Governance, Risk and Compliance
4 weeks ago
Pretoria, South Africa Secondments Recruitment Full time**Job Advert Summary**: To provide leadership, plan, and manage a large Information and Communication Technology (ICT) Division with regards to ICT Governance, ICT risks and Compliance risks using best industry practices and standards, identify non-conformance and ensure remediation, mitigation and/or positive acceptance of risk. Ensure compliance of all ICT...
-
Senior Specialist: Compliance Risk
1 month ago
Pretoria, South Africa HR Genie Full timeOur Client a leading organization firm is seeking a Senior Specialist: Compliance Risk to join their team in Pretoria. They offer stability, growth, attractive salary along with excellent benefits and a great working environment. About the Position An exciting opportunity is available for a highly skilled, results driven, self-directed senior specialist...
-
Senior Specialist: Compliance Risk
1 month ago
Pretoria, South Africa Praesignis (Pty) Ltd Full time**Minimum Qualification & Experience Required** Relevant Honours / Postgraduate Diploma (NQF 8) AND 10-12 years' experience in an IT Governance, Risk and Compliance environment, of which 3-4 years ideally at IT specialist level ALTERNATIVE Relevant Bachelor's Degree / Advanced Diploma (NQF 7) AND 12 - 15 years related experience in an IT Governance, Risk...
-
Senior Specialist: Compliance Risk X2
4 weeks ago
Pretoria, South Africa HR Genie Full timeOur Client a Leading Organization is seeking 2 Senior Specialist: Compliance Risk to join their team in Pretoria. They offer stability, growth, attractive salary along with excellent benefits. About the Position Our Client is looking for an experienced and seasoned leader who is a highly skilled, results driven, self-directed individual with extensive...
-
Information Governance Specialist
1 month ago
Pretoria, South Africa Professional Sourcing Full time**Job Overview**: **Information Governance Specialist (Financial Services)** **Location: Pretoria, Gauteng** A **renowned financial services** concern **has an exciting opportunity for an **Information Governance Specialist **to join their team**.** **Position Overview**: The main purpose of this position is to **drive the improvement of data governance...
-
Manager: Governance, Compliance and Ethics
1 month ago
Pretoria, South Africa Fempower Personnel Full time**Purpose of the role**: To lead the Bank’s Compliance function by providing strategic direction and focus and by establishing and promoting a compliance culture within the Bank. To ensure that the Bank complies with all relevant statutory, regulatory and supervisory requirements that pertain to its particular industry as well as professional standards,...
-
Manager: Risk Governance and Reporting
4 weeks ago
Pretoria, South Africa Fempower Personnel Full time**Manager - Risk Governance and Reporting** **_ Key Responsibilities:_** - Formulate the Risk Management Strategy and Risk Management Plan. - Embed risk governance systems throughout the organization. - Provide advisory and reporting support to the Risk Function. - Develop and maintain a client-focused environment with best practice service delivery. -...
-
Ict Risk and Compliance Officer
4 weeks ago
Pretoria, South Africa Nambiti Technologies Full timeWe are recruiting for an ICT Risk and Compliance Officer Provide guidance, feedback, and support across ICT regarding identification of risk, risk mitigation and management. - Create appropriate metrics to quantify, track and report on identified risk across ICT. - Provide analysis and assessments for risks associated with relevant ICT projects...
-
Manager - Ict Governance, Risk and Compliance
1 month ago
Pretoria, South Africa Financial Sector Conduct Authority Full time**Purpose of the Job**: To ensure that strategic and operational business problems are accurately framed, understood, in line with established business analysis and process management practices in order to ensure outcomes meet business requirements. The person appointed will report to the Head: ICT Governance, Business Relationship and Risk. **Key...
-
Specialist: Enterprise Risk Management X2
4 weeks ago
Pretoria, South Africa HR Genie Full timeOur client a leading organization is seeking 2 Specialist: Enterprise Risk Management to join their team in Pretoria. They offer stability, growth, attractive salary along with excellent benefits. Our Client is looking for a highly skilled, results driven, self-directed specialist with extensive enterprise risk management knowledge and experience, who will...
-
Pretoria, South Africa Thusa Batho Labour Solutions Full timeThe NLSA seeks to appoint a Senior Risk and Compliance Officer to conduct risk management functions within NLSA. **Planning and Implementation**: - Participate in developing and implementing the risk management framework consisting of Risk Management Policy; Risk Management Strategy; Risk Management Committee (RMC) Charter; Fraud and Corruption Policy;...
