- Bachelor's degree in discipline related to functional work or role
- Industry recognized certifications such as CISM, CRISC, CISA, or equivalent
- 7+ years of experience in IT Governance or Security Governance working in either a
- Software Development, FinTech or financial institution.
- Experience working in an IT Governance, Risk and Compliance role
- Strong understanding of compliance frameworks including SOC 2 Type 2, ISO 27001, GDPR, PCI DSS
- Experience leading a company through an audit process for obtaining / maintaining compliance certification such as SOC 2 Type 2, ISO 27001, PCI DSS
- Strong risk assessment framework knowledge and experience performing risk assessments covering key risks and controls.
- Very strong communication (verbal and written) skills and the ability to present with clarity
- Strong project management and organization skills
- Coordinate the development of best practice policies and standards based on various governance frameworks
- Ensure all IT controls are documented and assigned control owners to establish accountability.
- Ensure that risk factors and events are addressed in a cost-effective manner and in line with business objectives
- Assist the IT Governance, Risk & Compliance function in maturing the Information
- Security and Technology Risk Management methodology through improvements in standardized risk assessments
- Update and maintain a robust technology risk and control framework and ensure proper alignment to relevant industry frameworks (e.g., COBIT, SOC 2, ISO 27001, NIST, etc.).
- Monitoring IT controls across the organization
- Assist in the validation of IT control alignment to various industry standards, framework, and requirements (e.g., COBIT, SOC 2, ISO 27001, NIST, etc.)
- Assist in Information Security and Technology Risk Management governance activities including coordinating monthly risk committee meetings with management from IT, Risk and Business Units
- Policy creation, updates, and overall management and organization of shared documentation
- Control Self Assessments and Control Gap Analysis
- Third party risk management and reporting
- Support Security Due-diligence activities with both regulators and business prospects
- Maintaining a Risk Register
- Documenting and evaluating policy exception requests
- Responsible for developing and deriving KPIs from a controls baseline
- Overall analytics of the GRC program and creation and distribution of reporting metrics / dashboarding where appropriate
- Maintenance of the global scope of IT assets, controls, control owners, risks, etc. that make up the IT GRC program
- Creation, documentation and maintenance of governance processes to oversee IT GRC programs
-
IT Governance Risk and Compliance
1 week ago
Six Sense Johannesburg, South AfricaGauteng, JHB - Northern Suburbs · - Annually Cost To Company (Market related) · A well-established short term insurer is seeking to appoint a IT Governance Risk and Compliance (GRC) Specialist · **Qualifications**: · - National Diploma in IT /Bachelor or Relevant equivalent to NQ ...
-
Risk Governance Manager
1 week ago
Nedbank Johannesburg, South AfricaJob Family- Risk, Audit and Compliance · - Career Stream- Enterprise Wide Risk Management · - Leadership Pipeline- Manage Self: Professional · **Job Purpose** · - To provide expertise; advice; assistance; consultancy services and general support required by Nedbank Cluster for al ...
-
Head: Governance, Risk
1 week ago
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
IT Governance Risk and Compliance Specialist
1 week ago
The Recruitment Agency South Africa (TRASA) Johannesburg, South Africa**IT Governance, Risk and Compliance Specialist** · **1. Job Summary** · Assist in the development and implementation of IT Governance frameworks and IT controls following appropriate · methodology approved by management that is aligned with international and financial industry s ...
-
Governance, Risk and Compliance Specialist
1 week ago
FROGG Recruitment Johannesburg, South Africa**Governance, Risk and Compliance Specialist Sandton** · Our well-established client is looking for a **Governance, Risk and Compliance ("GRC") Specialist** with 5+ years of experience with relevant Risk and Compliance experience. · **Salary**: Market-Related CTC · **Minimum Requ ...
-
Head: Risk Governance and Portfolio
2 days ago
Affirmative Portfolios Johannesburg, South Africa**Finance** · **JHB North** · ***: · **OUTLINE** · **Head: Risk Governance and Portfolio Management** · **PERMANENT** · **JOHANNESBURG NORTH** · Group Risk, Risk Governance and Portfolio Management · **Reports to** - Divisional Executive: Group Risk · **Overview about the Positio ...
-
Regulatory Risk and Governance Manager
4 days ago
Santam Johannesburg, South AfricaWhat will you do? · We have an exciting opportunity for a Regulatory Risk and Governance Manager based in Sandton, Johannesburg. · To oversee and manage and provide strategic direction to Specialist Solutions coordinators and administrators to ensure alignment to Group tight prin ...
-
Risk Data Governance Analyst
1 week ago
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
Fssa Risk and Governance Controller
1 week ago
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
Financial Crime Governance, Risk and Control
1 week ago
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
Governance Control and Fraud Risk Manager
1 week ago
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
Energy at Work Projects Johannesburg, South AfricaHead of IT Security and GRC is responsible for overseeing the organisation's information security program and ensuring compliance with governance, risk management, and regulatory requirements. This senior leadership role will develop and implement a comprehensive security strateg ...
-
Bayport Financial Services Johannesburg, South AfricaThe Head of IT Security and GRC is responsible for overseeing the organisation's information security program and ensuring compliance with governance, risk management, and regulatory requirements. This senior leadership role will develop and implement a comprehensive security str ...
-
Model Risk Release, Control and Governance
2 days ago
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
Team Lead: Risk, Governance and Compliance
2 days ago
Sanlam Johannesburg, South AfricaWhat will you do? · To Manage the Risk, Governance and Compliance function within Distribution Operations What will make you successful in this role? · Compliance and Risk Management · Undertake to fully understand the content and impacts of all the relevant Compliance related le ...
-
Data Centrix Johannesburg, South Africa**Qualifications and Requirements** · - Chartered Accountant (CA), MCom degree or equivalent post graduate qualification; · - 10 to 15 years relevant experience in a financial institution · - Working experience of Basel framework, models and principles · - Experience in Portfolio ...
-
Analyst Pts Risk Governance, Risk
4 days ago
Absa Bank Limited Sandton, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
SAP Governance, Risk and Compliance Officer
1 week ago
Adept Advisory (Pty) Ltd Johannesburg, South AfricaOversee a team of SME s in the SAP GRC space. · - Maintain a global SAP security design in roles and user assignments. · - Provide functional advice and assistance to IT delivery teams to support business needs. · - Manage a project plan, timeline, and project team consisting of ...
-
IT Risk and Governance Officer
1 week ago
Absa Bank Limited Randburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
Information Security Governance Risk - Johannesburg, South Africa - Black Pen Recruitment
Description
Empowering seamless transactions and financial stability, our clients fintech company specializes in pioneering solutions for payments and stablecoins. With a deep understanding of the evolving financial landscape, they leverage advanced technology to ensure secure and efficient payment processing. Committed to driving innovation, they strive to simplify transactions and foster trust in the digital economy.
Job Type: Full Time l Remote
Role Overview
Cloud Security Engineer/Governance Specialist is a key team member of our clients security organisation and is responsible for IT Governance and IT Risk activities that both support and provide oversight to IT, Product Engineering, Infrastructure and Security teams as well as their suppliers and customers. The candidate is expected to have strong understanding of compliance frameworks including SOC 2 Type 2, ISO 27001, GDPR, PCI DSS and be responsible for conducting IT Governance Tasks that align and contribute to the overall success of the broader GRC initiatives under the leadership of our clients CISO. Integral to the role is the ability to manage Governance activities to protect our clients business and clients' data. Focus is given to maintaining policy compliance, process and organizational policies, standards documentation, information security governance and risk management functions. Additional focus is applied to implementing and refining policies, standards and procedures that help promote the control framework's adoption and alignment throughout their business.. Furthermore, the position plays a key role in continual process improvements and evolution as it relates to IT Security Risk Assessments, Policy Exceptions and the strategic vision of IT Governance
Requirements
Responsibilities
Information Security Governance Risk professionals in Johannesburg
-
Lazola Kongisa
Software Developer and Engineerer
-
Nomkhosi Dube
Large complex Project Management
-
Chido Mawire
PMO & Product Management
-
Gerald Nyamatcherenga
Communications Specialist
-
Sonette Ellis
Production Manager
-
Tholane Zwane
Junior Cybersecurity Consultant