IT Portfolio Governance

IT Portfolio Governance & Compliance Analyst

Permanent

Midrand

Overview

We are a Supply Chain and Sales & Merchandising partner adding value to your business through a fully integrated, temperature-controlled network in Southern Africa.

But we are also more than that. We are people serving people. While we boast the best in tech and infrastructure, our people are our greatest resource. With our skilled, curious, can-do people at the forefront, our assets become your assets, our service your solutions.

Vector's vehicle fleet includes a food industry first in 'multi-temperature' vehicles enabling the company to service business across frozen, chilled and ambient temperature zones on a single delivery.

Job Purpose

This role offers
the perfect balance of tactical influence and hands-on execution. You will
shape how IT operates by building mature governance and risk management
processes, driving accountability through executive-level reporting, analysis
and portfolio oversight. With clear pathways for growth, you can advance into
leadership roles in GRC, PMO management, or IT Controls.

The IT Portfolio
Governance & Compliance analyst leads the implementation, coordination and
continuous improvement of IT project governance and risk management practices
across Vector IT.  Accountable for
structured portfolio oversight, this role manages the full lifecycle of IT risk
from identification and analysis to mitigation tracking and reporting.

Supporting the
implementation and maintenance of IT General Controls (ITGCs), governance, and
compliance frameworks,  this role will lead
audit readiness, policy documentation, and cross-functional collaboration.  Working closely with the Vector Technology
Executive, the role ensures consistent application of governance frameworks,
risk management practices, and project standards.

Key
responsibilities include coordinating audits, updating compliance registers,
maintaining IT policies, supporting project governance, and tracking contract
and budget alignment.   This role will facilitate
collaboration between IT, Finance, Legal, and Procurement to promote compliance
and enhance operational efficiency.

Key Responsibilities

IT
Governance, Risk, and Compliance (GRC)

Support the implementation of IT Governance frameworks based on COBIT, ISO 27001, ITIL and NIST best practices.Assist in applying IT General Controls (ITGC) across business and technology systems.Prepare documentation and coordinate logistics for ITGC audits and reviews.Take ownership of the IT risk register, ensuring timely updates, tracking of mitigation plans, and alignment with the broader IT risk management strategy.Maintain and update IT policy documents and compliance templates.Support engagements with auditors by providing necessary reports and evidence.Assist in business continuity and disaster recovery (BC/DR) documentation and updates.Contribute to business impact analysis exercises by compiling data and reporting.Assist in preparing IT compliance training material and tracking completion records.Conduct detailed compliance reviews across key IT control areas, including SLA adherence (internal and third-party), operational checks (e.g. Active Directory account lockouts), change control compliance, IT asset registers (hardware and software), patching status, backup and restore validation, license entitlement reviews, and user access (including privileged accounts).Ensure all findings are properly logged, supported with evidence, tracked to resolution, and aligned with internal IT policies, audit requirements, and applicable regulatory standards.

Project
Portfolio Governance and Delivery Oversight

Facilitate the full lifecycle of project portfolio governance — from intake and flight plan creation to weekly executive updates and dashboard reporting.Own the coordination and facilitation of weekly project portfolio meetings, ensuring project leads provide accurate updates and that project health, risks, milestones, and benefits are tracked consistently.Drive portfolio maturity efforts, embedding standardized governance practices, improving adherence to methodology, and increasing delivery accountability across IT teams.Track and report on adherence to IT project governance standards, ensuring consistent methodologies, documentation, and execution across all IT projects.Support the IT Portfolio Management processes, ensuring projects align with strategic objectives, budgets, and compliance requirements.Facilitate and support the project entry, prioritization, and approval processes, ensuring projects support business transformation and operational efficiency.Facilitate the implementation of project risk management frameworks, ensuring risk assessments and mitigation strategies are embedded in all IT projects.Support with the implementation best practices in project lifecycle management, milestone tracking, resource allocation, and project reporting.Assist in documenting and maintaining IT project governance templates and standards.Ensure seamless transition of IT projects into operational support mode, collaborating with service management teams.Track IT project success metrics, ensuring transparency on project performance, financial impact, and business value realization.Reporting on CAPEX spend monthly with support progress reports of project performance to plan.

IT Contracts & Vendor Governance

Own the contract lifecycle tracking process and maintain the IT contracts repository, ensuring records are current and properly filed.Track contract milestones, expiry dates, and SLA reviews.Support the procurement process by gathering documentation and assisting with contract summaries.Assist in monitoring vendor performance metrics and compiling related reports.Help prepare contract renewal documentation and coordinate review sessions.Support the contract renewal process, ensuring alignment with IT strategy and cost-efficiency.

IT Risk
Management & Audit Compliance

Mature and Lead the IT risk management process - Maintain and update the IT Risk Register, ensuring timely risk identification, analysis, mitigation, and reporting.Coordinate and facilitate external ITGC audits, working with IT Leads to remediate findings and implement risk mitigation strategies.Ensure cybersecurity governance alignment, working with security teams to embed best practices in vendor management, system controls, and IT policies.Ensure consistent IT General Controls implementation across all business units and operating entities.Drive IT policy updates in response to audit recommendations, industry standards, and regulatory changes.

IT Financial Oversight (Advisory Role,
Not Direct Management)

Maintain oversight on IT budget planning, expenditure tracking, and cost optimization, working in collaboration with Finance.Ensure financial control of IT spend by reviewing quotes, validating invoices, and ensuring alignment to approved budgets and vendor contractsProvide IT financial governance insights, ensuring IT projects and contracts align with the company's budgetary framework.Support the CIO and IT Executive in IT financial reporting, ensuring transparency on IT investments and cost efficiency.

Data
Analysis, Reporting & Executive Insight

Turn complex datasets into actionable executive insights.Own the weekly reporting cycles for CIO, executive, and management meetings — compiling updates, tracking KPIs, and ensuring stakeholders are informed and aligned.Leverage automation tools (e.g. Excel macros, Power BI, SharePoint) to streamline reporting and reduce manual effort.

Continuous Improvement & Stakeholder Engagement

Take ownership of IT Town Hall coordination and content development, including presentation materials, strategic updates, and programs.Support executive communication with consistent formatting, messaging, and insights for leadership decision-making.Participate in governance process reviews and provide input on process improvement ideas.Act as a point-of-contact for administrative support related to IT Governance, Compliance, and PMO activities.Act as a key liaison between IT and cross-functional teams (Finance, Procurement, Legal) — ensuring effective communication and alignment.Help maintain a knowledge base of governance and compliance material.
Research and report on emerging IT governance trends and regulatory changes.

Key Relationships

Internal

 Senior Managers, Executives, IO, Major
Stakeholders.

External

Contractors, External Vendors, Auditors.

Qualifications, Skills and Experience Required for the Job

Qualifications and Experience

Solid IT grounding across broad IT Technology and Applications landscape.
Min of 5 years' experience obtained through expose to diverse facets of IT.
Min 3 to 5 years' experience in audit of IT General Controls (ITGC).
3 Year relevant degree or diploma.
PMP Certified (PMBOK) advantageous.
Sound knowledge and experience in service management methodologies i.e. ITIL.
Proven track record in structured analytical problem solving.
Good negotiation and influencing skills.
Exposure to Cyber Risk and Governance frameworks (NIST, CIS, CSA. ISO27001).
Demonstrate effective communication, both orally and in writing, with subordinates, colleagues, clients, and customers including producing reports, preparing, organising and delivering presentations using appropriate tools and techniques, and taking a leading role in meetings and discussions.

Skills and Competencies

Initiative and assertiveness.
Tolerance of stress and pressure.
Attention to detail.
Analytical with financial acumen.
Deadline driven.
Able to prioritise.
Organisational awareness.
Ability to interface and demonstrate leadership.
Ability to work independently and in a team-oriented, collaborative environment.
Can conform to shifting priorities, demands, and timelines through analytical and problem-solving capabilities.
Ability to read communication styles of project team leads, team members, and contractors who come from a broad spectrum of disciplines.
Persuasive, encouraging, and motivating.
Ability to defuse tension among and between project teams, should it arise.
Adept at conducting research into project-related issues and products.
Ability to learn, understand, and apply new
technologies / processes.

We look forward to hearing from you

---