IT Governance Risk & Compliance Specialist

 

Recruiter:

PC Staffing Solutions Pty Ltd

Job Ref:

PC304

Date posted:

Friday, February 5, 2021

Location:

Johannesburg, South Africa

Salary:

R772,996.00


SUMMARY:
IT Governance Risk & Compliance Specialist

POSITION INFO:

Job summary statement/purpose:


The role will assist with and participate in the planning, design, implementation, operation, and maintenance of IT Governance, Risk & Compliance (GRC) efforts intended to support Business, IT Risk Management and Assurance goals and objectives.
Primary functions will include leading and participating in the assessment of IT risks and control effectiveness for applications, infrastructure, and IT projects. This will involve the collection of appropriate and relevant data for the monitoring and analysis of specific IT control activities, liaising with and providing consultative support to IT control owners and performers, generation of reports for analysis, assessment and presentation to IT and business management, recommendations on and tracking of control remediation, and coordination of efforts with internal and external auditors.

KEY PERFORMANCE AREAS (DUTIES & RESPONSIBILITIES):


1. IT Governance Management:

• Analyse and recommend operational and business workflow changes to management in order to strengthen the control environment/security posture.
• Participates in IT GRC team efforts to plan, design, implement and maintain IT Governance, Risk & Compliance initiatives, and their supporting elements.
• Assist with maturing the IT Governance system to produce measurable results toward achieving IT strategies and ensuring that IT investments support business objectives.


2. IT Risk Management:
• Consultation and assistance to Risk & Control Owners in the planning, design, implementation, operation, maintenance & remediation of control activities and other supporting requirements (e.g. policies, standards, processes, system configurations, etc.) as appropriate.
• Coordination, tracking and reporting of remediation plans and progress for all identified IT Control deficiencies
• Perform ad-hoc duties as assigned to ensure the smooth functioning of the IT GRC function and maintain a good reputation with Auditors, Compliance and Risk Departments.
• Maintain and monitor that the IT risk framework is aligned with the Sasria approved enterprise risk management framework
• Integrate Cyber risk into IT Risk Management practices, processes, procedures, and activities.

Co-ordinate periodical internal risk assessments in various IT functions and ensure vulnerability remediation and tracking.
• Conduct IT risk assessments (including projects risk) and analyse the effectiveness of controls and report on them with actionable recommendations.
• Facilitate disaster recovery and business continuity initiatives with relevant stakeholders.

3. IT Compliance:
• Proactive management of compliance requirements to improve the division’s compliance maturity with legal and regulatory requirements such (POPIA, ETC act, Cyber bill, RICA etc.)
• Monitor and review compliance with regulatory requirements and practices to ensure IT-related activities are meeting prescribed standards.
• Act as compliance champion for the IT Division.
• Maintain and facilitate data protection activities to ensure full compliance with POPIA and associated regulations on personal identifiable information and business-related sensitive information.

4. Adhoc:
Perform any reasonable tasks as and when required by the Line Manager or other seniors.

Qualifications and Experience:

• Grade 12 Senior Certificate.
• National Diploma in IT /Bachelor or Relevant equivalent to NQF Level 6.
• IT Governance certification or ITIL & COBIT mandatory.
• CRISC, CISSP, CISA or CGEIT certification is strongly preferred.
• Minimum 7 years of experience in IT Governance Risk and Compliance field
• Experience with GRC methodologies, tools, and enablers.
• Hands-on experience with implementation and monitoring of one or more IT Governance frameworks (COBIT, ITIL, ISO etc.).

Knowledge:

• Excellent understanding of IT operational processes and controls including projects.
• Excellent understanding of Regulatory requirements facing the IT environment (POPIA, GDPR).
• Must be persuasive and be able to communicate GRC related concepts to a broad rangeof technical and non-technical staff.

• Solid understanding of security risks and preventative controls.

Sound knowledge, understanding and application of the relevant legislation.
• Established knowledge of the IT frameworks, vocabulary, and best practices.
• Experience of delivering excellent user experience.



 

NB! This job is now closed. You can apply for other jobs by uploading your CV.


 

 

 

Similar jobs you might be interested in:

IT Governance Administrator
Location: Pretoria
Salary:
20 days ago


IT Internal Auditor
Location: Johannesburg
Salary:
We are seeking a skilled and experienced it Internal Auditor to join our team. The it Internal Auditor will be responsible for assessing and evaluating the effectiveness of it controls, processes, and systems within the organization. The ideal candidate will have a strong background in it audit methodologies, risk management, and information security, with the ability to identify potential areas o...
8 days ago


General Manager - Software Applications
Location: Johannesburg
Salary:
Our client, a distinguished leader in the financial services industry specializing in motor vehicle products, is looking for a dynamic and experienced General Manager of Software Applications to join their team. In this role, you will lead a significant transformation project focused on software application migration, optimization, and overall management. Reporting directly to the Managing Directo...
22 days ago


Audit Portfolio Manager (6-month contract) - Banking
Location: Johannesburg
Salary:
Today


Product Engineer (Salesforce)
Location: Johannesburg
Salary: Hourly
A contract position has become available for a PRODUCT ENGINEER WitH SALESFORCE to join the technology department of one of our leading clients in the banking sector.
3 days ago


Head of Pricing
Location: Rosebank
Salary:
Head of PricingWe are recruiting for a Head of Pricing to join one of our clients at their offices based in Rosebank, Johannesburg. The company specialises in short-term insurance risk management solutions. The ideal candidate will come with at least 5 years’ experience in a similar role.
3 days ago


Information Security Specialist
Location: Johannesburg
Salary:
We are looking for a Information Security specialist to plan, manage, and administer the network security on a contract role.
7 days ago


Claims Assessor/ Insurance Loss Adjuster
Location: Johannesburg
Salary: R25k - 30k per month
Our client is looking to employ a Claims Consultant in the Johannesburg and Cape Town Area
7 days ago


BI Engineer Analyst - Durban – up to R750k per annum
Location: Johannesburg
Salary: 750 000
BI Engineer Analyst - Durban – up to R750k per annum
8 days ago


Information Security Specialist
Location: Centurion
Salary: Monthly
Purpose of the Role:The purpose of the job is to plan, manage, and administer the organizations network security, Ensure all network components are managed in accordance with approved guidelines and processes to ensure compliance
9 days ago


Create a free job alert for IT Governance Risk & Compliance Specialist in Johannesburg

Enter your email address below and we will email you similar jobs when they become available:

You can cancel at any time. We will not spam you.
By giving us your email address your agree to our Terms and Conditions

 

Jobseekers

Register your CV
Search jobs
Job alerts
CV writing
Blog

Recruiter

Advertise jobs
Search the CV database
How to Write a Job Description

General

Company a-z
Partners
About us
Disclaimer
Terms and conditions
Privacy policy
Cookie policy
POPIA manual
Unsubscribe
Site Map

© Copyright 2024 Executive Placements. All Rights Reserved.