IT Governance, Risk and Compliance/Risk Analyst
2 months ago
IT GRC Analyst is a multifaceted role that encompasses responsibilities across IT governance, risk management, compliance, cybersecurity, business and systems requirements and analysis. This position ensures the organisations IT infrastructure is secure, compliant, and aligned with business objectives, while also supporting system improvements, process optimisation, and technology integration within the Numata Managed Services business model and associated IT GRC framework.
The analyst will lead the design and enforcement of security and compliance policies, manage business and system requirements, and provide strategic insights for enhancing overall IT and business operations.
IT GRC specialist /Risk Analyst (Manager) Key Responsibilities:
IT Governance, Risk, and Compliance (GRC) Responsibilities:
- Policy Development and Compliance: Design and enforce IT governance frameworks and standards such as CIS, ISO 27001, NIST, and COBIT etc., amongst others.
- Ensure compliance with regulatory requirements, privacy and other such as POPIA GDPR, HIPAA, and PCI-DSS as and where applicable.
- Conduct internal audits and prepare for external compliance assessments, ensuring that all controls and processes meet regulatory obligations.
Risk Management and Reporting:
- Identify, assess, and mitigate IT and cybersecurity risks, maintaining an up-to-date risk register.
- Generate risk management reports, perform gap analyses, and recommend risk treatment plans.
- Collaborate with internal & Client stakeholders to align risk management practices with business objectives.
Cybersecurity Analysis Responsibilities:
- Risk and control assessments and recommendations for improvement (risk mitigation, control strength and maturity roadmaps) for: Threat and Vulnerability Management; Cybersecurity risk and controls such as firewalls, intrusion detection, and endpoint protection.
- Incident Response and Continuous Monitoring: Develop and maintain incident response plans, ensuring timely detection, investigation, and resolution of security incidents. Risk and control assessments and recommendations for improvement (risk mitigation, control strength and maturity roadmaps). Conduct post-incident reviews and root cause analyses to strengthen future incident response capabilities.
Business and Systems Analysis Responsibilities: Requirements Gathering and Documentation:
- Work with business stakeholders to understand and document business requirements, translating them into technical solutions and system specifications. Perform gap analyses between current systems and desired outcomes, recommending enhancements to meet business needs. Develop detailed process flows, use cases, and technical specifications for system upgrades or new implementations. Integrate IT GRC controls as part of new project and Client onboarding.
- System Implementation and Optimisation: Collaborate with IT and development teams to ensure that systems are aligned with both security requirements and business objectives. Participate in system testing, validation, and troubleshooting during development and implementation phases, ensuring controls are existing and or sufficient. Monitor the performance and effectiveness of business systems, recommending optimisations and enhancements based on data-driven insights.
Collaboration and Engagement: Cross-Functional Coordination: Act as the liaison between IT, business units, compliance, and development teams, ensuring alignment in project goals and objectives. Lead or participate in strategic planning sessions to integrate IT GRC, cybersecurity, and system improvements into overall business strategy. Support vendor risk management efforts by evaluating third-party compliance and security practices.
Project and Change Management participation: Lead IT and business system projects from inception through delivery, including risk management, timeline tracking, and stakeholder communication. Implement change management processes to facilitate smooth transitions during system upgrades, migrations, or the introduction of new controls.
Qualification, Certification & Skills
- Advantage : Bachelors degree in Information Technology, Computer Science, Business Administration, or related field. Certifications (An advantage): CISM, CISSP, CISA, CRISC, CBAP, or similar.
- Technical Skills: Strong knowledge of GRC frameworks (CIS, ISO, NIST, COBIT), security tools (SIEM, IDS/IPS), and business process modelling techniques (BPMN, UML).
- Analytical Skills: Proficient in conducting risk assessments, vulnerability analysis, and translating business needs into technical requirements.
- Communication: Excellent ability to articulate complex technical information to non-technical stakeholders, alongside clear and precise documentation skills.
- Project Management: Proven experience in managing cross-functional projects involving IT governance, cybersecurity, and business process improvements.
Key Competencies:
- Strong ethical judgment, integrity, and commitment to best practices in compliance and risk management.
- Problem-solving, analytical mindset with a focus on problem-solving and continuous improvement.
- Effective communication and interpersonal skills, including conflict-management, working across multiple teams and with diverse stakeholders.
- Quality management.
Experience:
- 3+ years of combined experience in IT GRC, cybersecurity, and business systems analysis.
-
IT Governance, Risk and Compliance Specialist
5 months ago
Johannesburg, South Africa National Risk Managers (Pty) Ltd Full timeA Medical Insurance Company based in Benoni, Gauteng is looking for a **IT Governance, Risk and Compliance Specialist** who will assist in the development and implementation of IT Governance frameworks and IT controls following appropriate methodology approved by management that is aligned with international and financial industry standards (e. g, GOI...
-
IT Governance, Risk and Compliance Specialist
5 months ago
Johannesburg, South Africa National Risk Managers (Pty) Ltd Full timeA Compliance Company based in Benoni is looking for a IT Governance, Risk and Compliance Specialist who will Assist in the development and implementation of IT Governance frameworks and IT controls following appropriate methodology approved by management that is aligned with international and financial industry standards. And advise the company on best...
-
IT Governance, Risk and Compliance/Risk Analyst
3 weeks ago
Johannesburg, Gauteng, South Africa Numata Full timeJob Title: IT Governance, Risk and Compliance/Risk AnalystNumata is seeking a highly skilled IT Governance, Risk and Compliance/Risk Analyst to join our team. As a key member of our IT department, you will be responsible for ensuring the organization's IT infrastructure is secure, compliant, and aligned with business objectives.Key Responsibilities:Develop...
-
IT Governance, Risk and Compliance Specialist
2 weeks ago
Johannesburg, Gauteng, South Africa Numata Full timeJob Title: IT Governance, Risk and Compliance/Risk AnalystJob Summary:We are seeking an experienced IT Governance, Risk and Compliance/Risk Analyst to join our team at Numata. The successful candidate will be responsible for ensuring the organization's IT infrastructure is secure, compliant, and aligned with business objectives.Key Responsibilities:IT...
-
Account Manager- Renewals
3 weeks ago
Johannesburg, South Africa LexisNexis Risk Solutions Full timeAccount Manager- Renewals (Governance, Risk and Compliance) Do you enjoy building solid relationships resulting in revenue and growth? Join us in shaping a more just world. About Us LexisNexis, a part of RELX, is a leading global provider of legal, regulatory, and business information. We help customers increase productivity and improve decision-making...
-
Account Manager- Renewals
4 days ago
Johannesburg, South Africa LexisNexis Risk Solutions Full timeAccount Manager- Renewals (Governance, Risk and Compliance) Do you enjoy building solid relationships resulting in revenue and growth? Join us in shaping a more just world. About Us LexisNexis, a part of RELX, is a leading global provider of legal, regulatory, and business information. We help customers increase productivity and improve decision-making...
-
Chief Specialist: IT Governance, Risk and Compliance
2 months ago
Johannesburg, Gauteng, South Africa IT Ridge Technologies Full timeAbout IT Ridge TechnologiesWe are a leading provider of innovative IT solutions, dedicated to helping our clients achieve their business goals through effective IT governance, risk management, and compliance.Job SummaryWe are seeking a highly skilled and experienced Chief Specialist: IT Governance, Risk and Compliance to join our team. The successful...
-
Chief Specialist: IT Governance, Risk and Compliance
5 months ago
Johannesburg, South Africa IT Ridge Technologies Full timeThis role will have broad accountability for ICT governance, risk and compliance related functions including ICT policies, standards, risk, and controls management. This role is a key contributor to IT Strategy, which includes developing frameworks aligned to the appropriate industry standards, creating the required forums, and establishing appropriate...
-
Risk and Compliance Analyst
5 months ago
Johannesburg, South Africa Hollard Recruitment Full time**Job Advert Summary**: Hello there....., an exciting new opportunity has just become available at our Hollard Group Risk within our Risk and Compliance area. We are looking to recruit a Risk and Compliance Analyst **Hollard Group Risk (HGR) is a specialist group risk underwriter and focuses on the provision of group covers in South Africa.** The Risk and...
-
IT Governance, Risk and Compliance Specialist
5 months ago
Johannesburg, South Africa Scitech Placements Full timeWe are looking for a IT Governance, Risk and Compliance Specialist, East Rand **Overview**: As an IT Governance, Risk and Compliance Specialist, you will be responsible for assisting in the development and implementation of IT Governance frameworks and IT controls. This will involve working closely with cross-functional teams to identify, assess, and...
-
IT Governance Risk and Compliance Specialist
4 months ago
Johannesburg, South Africa The Recruitment Agency South Africa (TRASA) Full time**IT Governance, Risk and Compliance Specialist** **1. Job Summary** Assist in the development and implementation of IT Governance frameworks and IT controls following appropriate methodology approved by management that is aligned with international and financial industry standards (e. g, GOI standards (PA), Joint Standards (PA & FSCA), COBIT, ITIL, ISO,...
-
IT Governance Risk and Compliance Specialist
5 months ago
Johannesburg, South Africa Affirmative Portfolios Full time**Information Technology** **JHB North** ***: **IT Governance Risk and Compliance Specialist (GRC)** **R771 300p/a - Sandton - Permanent** **Job Summary** - The specialist will identify, classify, and document control issues environment by documenting assessment results, recommending corrective action, tracking remediation, evaluating policy and control...
-
IT Governance Risk And Compliance Specialist yst
1 month ago
Johannesburg, South Africa Numata Full timeIT GRC Analyst is a multifaceted role that encompasses responsibilities across IT governance risk management compliance cybersecurity business and systems requirements and analysis. This position ensures the organisations IT infrastructure is secure compliant and aligned with business objectives while also supporting system improvements process optimisation...
-
Governance, Risk and Compliance Specialist
5 months ago
Johannesburg, South Africa FROGG Recruitment Full time**Governance, Risk and Compliance Specialist Sandton** Our well-established client is looking for a **Governance, Risk and Compliance (“GRC”) Specialist** with 5+ years of experience with relevant Risk and Compliance experience. **Salary**: Market-Related CTC **Minimum Requirements**: - Matric with Bachelor of Commerce (B Com) Degree (Finance /...
-
Compliance Risk Analyst
1 month ago
Johannesburg, Gauteng, South Africa 11113 Citibank, N.A. South Africa Full timeJob Title: Compliance Risk AnalystCiti is seeking a highly skilled Compliance Risk Analyst to join our team in South Africa. As a Compliance Risk Analyst, you will play a critical role in ensuring that our organization maintains a strong compliance culture and adheres to regulatory requirements.Key Responsibilities:Design, develop, and maintain best-in-class...
-
IT Governance Risk and Compliance Specialist
2 weeks ago
Johannesburg, Gauteng, South Africa Numata Full timeJob Title: IT Governance Risk and Compliance SpecialistNumata is seeking a highly skilled IT Governance Risk and Compliance Specialist to join our team. As a key member of our IT department, you will be responsible for ensuring the organization's IT infrastructure is secure, compliant, and aligned with business objectives.Key Responsibilities:Policy...
-
IT Governance Risk and Compliance Specialist
1 month ago
Johannesburg, Gauteng, South Africa Numata Full timeJob Title: IT Governance Risk and Compliance SpecialistNumata is seeking a highly skilled IT Governance Risk and Compliance Specialist to join our team. As a key member of our organization, you will be responsible for ensuring the security, compliance, and alignment of our IT infrastructure with business objectives.Key Responsibilities:Design and enforce IT...
-
IT Governance Risk and Compliance Specialist
1 month ago
Johannesburg, Gauteng, South Africa Numata Full timeJob Title: IT Governance Risk and Compliance SpecialistNumata is seeking a highly skilled IT Governance Risk and Compliance Specialist to join our team. As a key member of our organization, you will be responsible for ensuring the security, compliance, and alignment of our IT infrastructure with business objectives.Key Responsibilities:Policy Development and...
-
IT Governance Risk and Compliance Specialist
3 weeks ago
Johannesburg, Gauteng, South Africa Numata Full timeJob Title: IT Governance Risk and Compliance SpecialistNumata is seeking a highly skilled IT Governance Risk and Compliance Specialist to join our team. As a key member of our organization, you will be responsible for ensuring the security, compliance, and alignment of our IT infrastructure with business objectives.Key Responsibilities:Design and enforce IT...
-
Chief Governance Risk and Compliance Officer
7 months ago
Johannesburg, South Africa LENOHLAHLA CONSULTING Full time**KEY PERFORMANCE AREAS** **Strategy & Leadership** - Lead conceptualisation, design and implementation of the overall Governance, Risk & Compliance strategy aligned to the business needs, Companys vision and business strategy. Provide the Governance, Risk & Compliance input into the long-term Companys strategy. Set clear targets for the Governance, Risk &...
