Specialist: Ict Governance, Risk And Compliance Ref: Zr


We are recruiting for an ICT Specialist: Risk, Compliance and Governance with a passion for technology, automation, risk management and security along with a desire to champion best practices in a dynamic and complex environment.Responsibilities would include managing governance, risk and compliance in the ICT Business Unit, by ensuring the IT strategies and policies are implemented by reviewing processes and ensuring that adequate controls are in place.A broad accountability for ICT governance, risk and compliance related functions including ICT policies, standards, risk and financial management. Key contributor to IT Strategy, which includes developing frameworks aligned to the appropriate industry standards, creating the required forums and establishing appropriate monitoring mechanisms to ensure that compliance is effective.Permanent roles, Johannesburg based EXPERIENCE 10 years'' experience of which a minimum of 4 years'' experience in IT Governance, Risk Management and/or IT Compliance,in either HealthcaremAuditing or Financial Services Industry essential QUALIFICATIONS Bachelors degree or equivalent in Computer Sciences, Business Administration/ Commence.COBIT qualificationCISO qualification ROLE ACCOUNTABILITIESCompliance and Risk Management:Legal, statutory and regulatory compliance (public accountability) on all requirements are implemented and maintained for functionStructures and frameworks for risk controls and governance within the function are implementedEnsure function is a key contributor in terms of social awareness and corporate citizenshipContinuous improvement:Design and implement the IT governance framework. The framework includes the objectives for IT, governance principles, policies, IT governance roles and responsibilities, and processesEnsure the governance framework is regularly reviewed in line with the changing business and regulatory landscapeEnsure that IT continually meets any regulatory, statutory, and legal obligations that support the organizations objectives while working within the defined ethical and cultural framework, and follow the IT governance frameworkAssume responsibility for governance of IT across the group by setting the direction for how the relationships and exercise of power within the group should be approached and conductedResponsible for development and coordination of risk management programmes and frameworksResponsible to make accurate risk mitigating recommendations to implement internal controlsCollect and analyses risk information and ensures that the organisation is adequately protected against lossDraft reports including recommendations on proactive management decisions to prevent risk eventsEnsure that any audit findings are addressed by relevant IT functions.Cost containment:Continuously assess whether Business departments are receiving business value from IT and to assess ROI oversight of ITEnsure IT performance is measured to assess compliance to governance and strategic objectivesDivisional Leadership:Accountability for the function''s performance, within the agreed strategic frameworkDevelop and retain skilled, engaged employeesPromote transformationFinancial Management:Accountability for functional budget and overall financial managementOperating Model:Develop business plans to implement the defined integrated functional plans with peer divisions or functionsOptimise the function''s core internal processes and internal supply chain and resolve functional operating conflictsSpecialist support to projects:Ensure contribution to achieving BBBEE targets through implementation of and adherence to Group technology acquisition guidelines, policies, principles and processes.Technology acquisition need to be made for valid reasons, on the basis of appropriate and ongoing analysis, with clear and transparent decision makingEnsure that Suppliers comply with policies, standards and processesStakeholder Management:Ensure appropriate, active and informative relationships with relevant stakeholders are in placeDrive delivery of customer expectations within organizational quality and quantity standardsStrategy Implementation:Remain up to date with macro and micro-economic conditions, legislation, competition, market sentiment and the industry in general, to anticipate and plan for circumstances that may influence the development and implementation of the functional strategic planProvide input into and develop the functional strategic planEnsure strategy is implemented in a manner that supports operational and market imperativesCommunicate strategic context and strategic implementation plans to ensure operational best practice and continuous improvementPosition Specific Outputs-Ensure effective implementation of the IT strategies and policies by means of providing direction, structure, frameworks, models, plans and roadmaps.-Oversee regular reviews of the audit, governance and risk items.-Build strategic partnerships with external and internal parties to develop effective governance solutions.-Ensure vendors and suppliers compliance to IT standards, processes and controls.-Ensure overall IT risk to Business is mitigated.-Provides consultation to internal and external group management regarding IT governance.-Ensure adherence to IT governance policies and processes.ADDITIONAL EXPERIENCEExperience creating technology policies and management/board reporting.Management experience in information technology functions.Experience of having successfully implemented CoBIT 5 (CoBIT certification is a plus) to drive Enterprise GovernanceA strong understanding of technology audit control requirements as outlined by ISAE and SSAE standardsExperience of having successfully implemented CoBIT 5 (CoBIT certification is a plus) to drive Enterprise GovernanceDemonstrated understanding and application of appropriate ICT risk modelsProject management experience advantageous COMPETENCY REQUIREMENTSKNOWLEDGE:Anticipates Customer and Market NeedsKnowledge of Operating Systems, Network, Security, IT Infrastructure.Knowledge of policies and proceduresSKILL:Report writing and presentation skillsComputer Technology SkillsExecutive Business Writing SkillsKnowledge and application of relevant legislationKnowledge and ability to support the enterprise computing infrastructureAwareness of economic trends, government policies and currency fluctuationsWritten and verbal communication skillsKnowledge of Industry, regulatory, and professional standards changes
Posted
05/05/2022
Location
Cape Town, WC, ZA