IT Risk Manager C - Johannesburg, South Africa - FirstRand

FirstRand
FirstRand
Verified Company
Johannesburg, South Africa

2 weeks ago

Thabo Mthembu

Posted by:

Thabo Mthembu

beBee Recruiter
Description
About us, purpose, experience and qualifications


about us:

- make a promise
- be deeply invested
- value our differences
- build trust, not territory
- have courage
- always do the right thing


purpose:


  • To ensure the business risk management framework is effectively applied to technology and information systems and to oversee business continuity, security and quality. To plan, execute, and manage multifaceted projects related to risk management, mitigation and response, compliance, control assurance, and user awareness. To oversee security strategies, policies/standards, ensuring the effectiveness of solutions, and providing securityfocused consultative services to the business.

experience and qualifications:


  • Minimum Qualification: Relevant Diploma/Degree in Information Technology, Computer Science and/or IT Risk Management
  • Preferred Qualification: Certification in any of the following will be an advantage: CRISC, CISA, CISSP, CISM, CIA, PECB (ISO)
  • COBIT 5 certified (Foundation and Assessor)
  • ITIL (Foundation) certification
  • 57 years' experience with relevant IT, risk, auditing, governance and compliance experience and/or management experience
  • Requires indepth knowledge of security issues, techniques and implications across all existing computer platforms
  • Experience in the financial services industry
    additional requirements:
  • Experience in executing on and managing the requirements of the ORMF and its supporting framework & policies
  • Solid experience in Management of risk including identification, analysis and evaluation of risks across the business and oversee implementation of appropriate control measures to manage the risk
  • Experience in playing an advisory role on IT risk and compliance, contribution to IT risk reports, and reviewing and assessing quality and accuracy of IT reports
  • Experience in facilitating and managing engagements with Audit (Internal and External)
  • Experience in proactively managing the remediation of audit findings and exceptions (logging and renewal)
  • Monitoring IT incident and response management experience
  • Experience in driving IT Risk awareness training programs
  • Participation in risk scenario development, risk appetite definition & KRI identification
  • Monitor implementation and effectiveness of security outputs experience
  • Experience in performing risk analysis and assessments for BU projects and Vendor/3rd party engagements.
  • Experience in recommending and ensuring implementation of required changes to IT risk and Security policies and procedures.
  • No Referral plan is assigned to this job
More jobs from FirstRand
See all jobs of FirstRand