IT Risk Manager - Johannesburg, South Africa - FirstRand

FirstRand

Verified Company

Johannesburg, South Africa

1 week ago

Posted by:

Thabo Mthembu

beBee Recruiter

Description

About us, purpose, experience and qualifications

about us:

- make a promise
- be deeply invested
- value our differences
- build trust, not territory
- have courage
- always do the right thing

purpose:

To ensure the business risk management framework is effectively applied to technology and information systems and to oversee business continuity, security and quality. To plan, execute, and manage multifaceted projects related to risk management, mitigation and response, compliance, control assurance, and user awareness. To oversee security strategies, policies/standards, ensuring the effectiveness of solutions, and providing securityfocused consultative services to the business.

experience and qualifications:

Minimum Qualification: Relevant Diploma/Degree in Information Technology, Computer Science and/or IT Risk Management
Preferred Qualification: Certification in any of the following will be an advantage: CRISC, CISA, CISSP, CISM, CIA, PECB (ISO)
COBIT 5 certified (Foundation and Assessor)
ITIL (Foundation) certification
57 years' experience with relevant IT, risk, auditing, governance and compliance experience and/or management experience
Requires indepth knowledge of security issues, techniques and implications across all existing computer platforms
Experience in the financial services industry
additional requirements:

responsibilities:

Manage expenditure planning and reporting within approved budget parameters
Anticipate and meet the needs of clients and commit to continuous development and entrenchment of a customer service culture
Establish mutually beneficial relationships with stakeholders that support thought leadership, innovative and integrated practice solutions
Management of risk including identification, analysis and evaluation of risks across the business and oversee implementation of appropriate control measures to modify the risk.
Oversee the monitoring and reviewing of risk performance
Recommend and ensure implementation of required changes to IT risk and security policies and procedures
Provide tactical direction and consultation on IT risk and compliance, contribute to IT risk reports, and review and assess quality and accuracy of IT reports
Provide guidance on IT continuity and disaster recovery design and implementation for business disaster recovery management programs
Provide input into the development and maintenance of the risk framework (a single view of the business' risk profiles and tolerance)
Keep abreast of current threats and stay current with IT evolution
Oversee the planning, execution, and management of multifaceted projects related to compliance, control assurance, risk management, security and infrastructure
Monitor IT incident and response management
Drive IT Risk awareness training programs
Monitor implementation and effectiveness of security outputs
Liaise with Audit (Internal and External)
Contract reviews
Collaborate with Operation Risk
Assist with ensuring the accuracy of the IT Asset Register and CMDB
Participate in planned activities that are appropriate for own and employee development
Develop, encourage and nurture collaborative relationships within FNB and/or across the FRG
Manage people by executing management responsibilities and create an environment that encourages employee growth and performance excellence