IT Governance Risk and Compliance Specialist

5 months ago


Johannesburg, South Africa The Recruitment Agency South Africa (TRASA) Full time

**IT Governance, Risk and Compliance Specialist**

**1. Job Summary**
Assist in the development and implementation of IT Governance frameworks and IT controls following appropriate
methodology approved by management that is aligned with international and financial industry standards (e. g, GOI
standards (PA), Joint Standards (PA & FSCA), COBIT, ITIL, ISO, NIST, PRINCE II, CMM, etc.).
Advise the company on best business practices and to develop and implement appropriate solutions.
Work closely with cross functional teams to identify, assess, and mitigate risks while ensuring alignment with industry
standards and regulatory requirements.

**2. Key Performance Areas**
- IT Governance Frameworks
- IT Risk Management Audit
- IT Compliance
- Incident and Response Management
- Documentation and Reporting
- Security Architecture and Implementation
- Ad hoc

**3. Key Tasks (By KPA for clarity)**

IT Governance Frameworks
- Assist in the implementation of IT Governance, Risk and Compliance solutions in line with the Affinity Life
- Limited approved policies and frameworks.
- Assist in the development and implementation IT Governance, Risk Management and Compliance
- policies, processes, procedures, and IT controls training materials to keep IT colleagues informed ofrelevant industry, legislative and regulatory requirements, and changes.
- Development and implementation of IT Governance Frameworks, IT Controls, recommendations from
- various assessments and action plans following an appropriate methodology by managements approvalthat is aligned with international and financial industry standards (e. g. GOI Standards (PA), JointStandards (PA & FSCA) COBIT, ITIL, ISO, NIST, PRINCE II, CMM, etc).
- Support the development of policies, processes, and procedures for the IT Division.
- Develop, implement, and monitor reporting mechanisms for IT Governance, Risk Management, and
- Audit, to support compliance and highlight areas of exposure to management.
- Assist in the maintenance of IT alignment activities, including report submissions, across various
- governance committees and structures.
- Include control document reviews, meeting coordination, assessment, finding mediation, assisting
- control owner with remediation plan development, tracking findings through remediation, progressmonitoring, reporting, and escalation.
- Assess the current adequacy of the business continuity / disaster recovery plans in conjunction with Risk
- Management, potential threats to the systems, and then calculate the impact of potential adverseevents.
- Participate in the development, adoption, and compliance of IT governance framework across all areas of
- business.
- Perform design and process analysis for IT business processes that impact IT Governance.
- Facilitate adoption and continuous improvement of planning practices and processes within IT and the
- business as a whole.IT Risk Management Audit
- Act as a risk and compliance champion for the IT Division.
- Maintain and monitor the IT risk framework is aligned to the Affinity Life Limited approved enterprise risk
- management framework.
- Maintain the IT Risk Register in collaboration with enterprise risk management and drive implementation
- of mitigation controls of risks through Managers and business within defined periods.
- Integrate Cyber risk into IT Risk Management practices, processes, procedures, and activities.
- reviews, active directory review, security, network and vulnerability assessments and IT Audits.
- Facilitate disaster recovery and business continuity initiatives with relevant stakeholders.
- Review identified security risks and breaches to ensure the IT assets and information are always
- appropriately secured.
- Visibility, management, and escalation of IT risks impacting the delivery of IT services.
- Work closely with the internal clients and third parties to facilitate IT risk analysis and risk management
- processes and to identify acceptable levels of residual risk.
- Conduct IT risk assessments, and analyse the effectiveness of control activities, and report on them with
- actionable recommendations.
- Identify and monitor IT risks continuously.
- Keep IT management up to date on the results.
- IT Compliance
- Monitor and review compliance with regulatory requirements and practices to ensure IT-related activities
- are meeting prescribed standards.
- Management of compliance requirements to improve the company’s compliance maturity with legal and
- regulatory requirements such as GOI and Joint Standards, Insurance Act, PAIA,POPIA, ETC act, Cyber bill,FICA, RICA etc.)
- Maintain and facilitate data protection activities to ensure full compliance with POPIA and associated
- regulations on personal identifiable information and business-related sensitive information.
- Act as compliance champion for the IT Division.
- Coordinate and support internal and external compliance audits.
- Incident Response and Management
- Develop and maintain an incident respons



  • Johannesburg, South Africa National Risk Managers (Pty) Ltd Full time

    A Medical Insurance Company based in Benoni, Gauteng is looking for a **IT Governance, Risk and Compliance Specialist** who will assist in the development and implementation of IT Governance frameworks and IT controls following appropriate methodology approved by management that is aligned with international and financial industry standards (e. g, GOI...


  • Johannesburg, South Africa National Risk Managers (Pty) Ltd Full time

    A Compliance Company based in Benoni is looking for a IT Governance, Risk and Compliance Specialist who will Assist in the development and implementation of IT Governance frameworks and IT controls following appropriate methodology approved by management that is aligned with international and financial industry standards. And advise the company on best...


  • Johannesburg, South Africa IT Ridge Technologies Full time

    This role will have broad accountability for ICT governance, risk and compliance related functions including ICT policies, standards, risk, and controls management. This role is a key contributor to IT Strategy, which includes developing frameworks aligned to the appropriate industry standards, creating the required forums, and establishing appropriate...


  • Johannesburg, South Africa Scitech Placements Full time

    We are looking for a IT Governance, Risk and Compliance Specialist, East Rand **Overview**: As an IT Governance, Risk and Compliance Specialist, you will be responsible for assisting in the development and implementation of IT Governance frameworks and IT controls. This will involve working closely with cross-functional teams to identify, assess, and...


  • Johannesburg, South Africa FROGG Recruitment Full time

    **Governance, Risk and Compliance Specialist Sandton** Our well-established client is looking for a **Governance, Risk and Compliance (“GRC”) Specialist** with 5+ years of experience with relevant Risk and Compliance experience. **Salary**: Market-Related CTC **Minimum Requirements**: - Matric with Bachelor of Commerce (B Com) Degree (Finance /...


  • Johannesburg, South Africa Affirmative Portfolios Full time

    **Information Technology** **JHB North** ***: **IT Governance Risk and Compliance Specialist (GRC)** **R771 300p/a - Sandton - Permanent** **Job Summary** - The specialist will identify, classify, and document control issues environment by documenting assessment results, recommending corrective action, tracking remediation, evaluating policy and control...


  • Johannesburg, Gauteng, South Africa Numata Full time

    Job Title: IT Governance Risk and Compliance SpecialistNumata is seeking a highly skilled IT Governance Risk and Compliance Specialist to join our team. As a key member of our IT department, you will be responsible for ensuring the organization's IT infrastructure is secure, compliant, and aligned with business objectives.Key Responsibilities:Policy...


  • Johannesburg, Gauteng, South Africa IT Ridge Technologies Full time

    This key role is responsible for spearheading the development of a comprehensive IT governance framework that encompasses risk management, compliance, and internal controls.Duties and Responsibilities:GovernanceEstablish a robust IT governance operating model, outlining the mandate and inter-relationship between governance structures.Monitor the...


  • Johannesburg, Gauteng, South Africa IT Ridge Technologies Full time

    This role plays a critical part in IT Strategy, overseeing ICT governance, risk, and compliance functions, including policy development, risk management, and control monitoring.Key Responsibilities:GovernanceDevelop and maintain the IT governance operating model, defining the mandate and relationships between governance structures.Monitor and assess the...


  • Johannesburg, Gauteng, South Africa IT Ridge Technologies Full time

    This role will have broad accountability for ICT governance, risk and compliance related functions including ICT policies, standards, risk, and controls management. This role is a key contributor to IT Strategy, which includes developing frameworks aligned to the appropriate industry standards, creating the required forums, and establishing appropriate...


  • Johannesburg, South Africa Six Sense Full time

    Gauteng, JHB - Northern Suburbs - Annually Cost To Company (Market related) A well-established short term insurer is seeking to appoint a IT Governance Risk and Compliance (GRC) Specialist **Qualifications**: - National Diploma in IT /Bachelor or Relevant equivalent to NQF Level 6 - IT Governance certification or ITIL & COBIT mandatory; CRISC, CISSP, CISA...

  • Regulatory Risk

    6 months ago


    Johannesburg, South Africa Sanlam Full time

    **What will you do?** - A position as - **Regulations Specialist** exists in Regulatory Risk & Governance, Santam Specialist Solutions.Provide proactive Regulatory advice, support to, and manage regulatory change in Specialist Solutions. Ensure that products, business solutions and services within Specialist Solutions are provided within the existing...


  • Johannesburg, Gauteng, South Africa Numata Full time

    Job Title: IT Governance, Risk and Compliance/Risk AnalystJob Summary:We are seeking an experienced IT Governance, Risk and Compliance/Risk Analyst to join our team at Numata. The successful candidate will be responsible for ensuring the organization's IT infrastructure is secure, compliant, and aligned with business objectives.Key Responsibilities:IT...


  • Johannesburg, South Africa Numata Full time

    IT GRC Analyst is a multifaceted role that encompasses responsibilities across IT governance, risk management, compliance, cybersecurity, business and systems requirements and analysis. This position ensures the organisations IT infrastructure is secure, compliant, and aligned with business objectives, while also supporting system improvements, process...


  • Johannesburg, Gauteng, South Africa EMPIRE RECRUITMENT Full time

    Job Title: Compliance and Governance SpecialistSalary: R450,000 - R600,000 per annumAbout the Role:We are seeking a highly skilled Compliance and Governance Specialist to join our team at Empire Recruitment. As a key member of our compliance department, you will play a crucial role in ensuring that our business operations remain aligned with regulatory...


  • Johannesburg, Gauteng, South Africa beBee Professionals Full time

    Corporate Governance and Compliance SpecialistWe are seeking a highly skilled Corporate Governance and Compliance Specialist to join our team at beBee Professionals in Johannesburg. The successful candidate will be responsible for providing legal advice and guidance on corporate governance matters, including corporate compliance, corporate structure, and...


  • Johannesburg, South Africa LENOHLAHLA CONSULTING Full time

    **KEY PERFORMANCE AREAS** **Strategy & Leadership** - Lead conceptualisation, design and implementation of the overall Governance, Risk & Compliance strategy aligned to the business needs, Companys vision and business strategy. Provide the Governance, Risk & Compliance input into the long-term Companys strategy. Set clear targets for the Governance, Risk &...


  • Johannesburg, South Africa LexisNexis Risk Solutions Full time

    Account Manager- Renewals (Governance, Risk and Compliance) Do you enjoy building solid relationships resulting in revenue and growth? Join us in shaping a more just world. About Us LexisNexis, a part of RELX, is a leading global provider of legal, regulatory, and business information. We help customers increase productivity and improve decision-making...


  • Johannesburg, Gauteng, South Africa Numata Full time

    About the RoleWe are seeking a highly skilled IT Governance, Risk and Compliance/Risk Expert to join our team at Numata. As an integral part of our organization, you will play a crucial role in ensuring the security, compliance, and alignment of our IT infrastructure with business objectives.Job DescriptionIT Governance: Design and enforce IT governance...


  • Johannesburg, South Africa Numata Full time

    IT GRC Analyst is a multifaceted role that encompasses responsibilities across IT governance, risk management, compliance, cybersecurity, business and systems requirements and analysis. This position ensures the organisations IT infrastructure is secure, compliant, and aligned with business objectives, while also supporting system improvements, process...