- IT Governance Frameworks
- IT Risk Management Audit
- IT Compliance
- Incident and Response Management
- Documentation and Reporting
- Security Architecture and Implementation
- Ad hoc
- Assist in the implementation of IT Governance, Risk and Compliance solutions in line with the Affinity Life Limited approved policies and frameworks
- Assist in the development and implementation IT Governance, Risk Management and Compliance policies, processes, procedures, and IT controls training materials to keep IT colleagues informed of relevant industry, legislative and regulatory requirements, and changes
- Development and implementation of IT Governance Frameworks, IT Controls, recommendations from various assessments and action plans following an appropriate methodology by managements approval that is aligned with international and financial industry standards (e. g. GOI Standards (PA), Joint Standards (PA & FSCA) COBIT, ITIL, ISO, NIST, PRINCE II, CMM, etc)
- Support the development of policies, processes, and procedures for the IT Division
- Develop, implement, and monitor reporting mechanisms for IT Governance, Risk Management, and Audit, to support compliance and highlight areas of exposure to management
- Assist in the maintenance of IT alignment activities, including report submissions, across various governance committees and structures
- Include control document reviews, meeting coordination, assessment, finding mediation, assisting control owner with remediation plan development, tracking findings through remediation, progress monitoring, reporting, and escalation
- Assess the current adequacy of the business continuity / disaster recovery plans in conjunction with Risk Management, potential threats to the systems, and then calculate the impact of potential adverse events
- Participate in the development, adoption, and compliance of IT governance framework across all areas of business
- Perform design and process analysis for IT business processes that impact IT Governance
- Facilitate adoption and continuous improvement of planning practices and processes within IT and the business as a whole
- Act as a risk and compliance champion for the IT Division
- Maintain and monitor the IT risk framework is aligned to the Affinity Life Limited approved enterprise risk management framework
- Maintain the IT Risk Register in collaboration with enterprise risk management and drive implementation of mitigation controls of risks through Managers and business within defined periods
- Integrate Cyber risk into IT Risk Management practices, processes, procedures, and activities
- Co-ordinate periodical internal risk assessments in various IT functions and tracking of application access reviews, active directory review, security, network and vulnerability assessments and IT Audits
- Facilitate disaster recovery and business continuity initiatives with relevant stakeholders
- Review identified security risks and breaches to ensure the IT assets and information are always appropriately secured
- Visibility, management, and escalation of IT risks impacting the delivery of IT services
- Work closely with the internal clients and third parties to facilitate IT risk analysis and risk management processes and to identify acceptable levels of residual risk
- Conduct IT risk assessments, and analyse the effectiveness of control activities, and report on them with actionable recommendations
- Identify and monitor IT risks continuously
- Keep IT management up to date on the results
- Monitor and review compliance with regulatory requirements and practices to ensure IT-related activities are meeting prescribed standards
- Management of compliance requirements to improve the company's compliance maturity with legal and regulatory requirements such as GOI and Joint Standards, Insurance Act, PAIA,POPIA, ETC act, Cyber bill, FICA, RICA etc.)
- Maintain and facilitate data protection activities to ensure full compliance with POPIA and associated regulations on personal identifiable information and business-related sensitive information
- Act as compliance champion for the IT Division
- Coordinate and support internal and external compliance audits
- Develop and maintain an incident response plan.
- Lead and coordinate responses to cyber security incidents to ensure a timely and effective resolution
- Conduct post-incident reviews to identify lessons learned and areas for improvement
- Assist in the preparation of stakeholder communications in response to cyber security incidents
- Assist in the development of incident response training for employees
- Maintain accurate and up to date documentation related to IT GRC activities
- Generate regular reports on the organisation's security and compliance posture for management and stakeholders
- Work with IT and Development teams to integrate security measures into the overall IT and Development architecture
- Implement and manage security technologies to safeguard the organisation's assets
- Collaborate with system owners to ensure secure configuration and operation of IT systems
- Perform ad-hoc duties as assigned to ensure the smooth functioning of the IT GRC function and maintain a good reputation with Auditors, Compliance and Risk Departments
- Matric
- National Diploma in IT /Bachelor or Relevant equivalent to NQF Level 6
- IT Governance certification or ITIL & COBIT mandatory
- CRISC, CISSP, CISM, CISA or CGEIT certification
- Experience in IT Governance Risk and Compliance related experience
- Experience with GRC methodologies, tools, and enablers
- Hands-on experience with implementation and monitoring of one or more IT Governance frameworks (COBIT, ITIL, ISO, PRINCE II, etc.)
- Clear Criminal Record
- Solid understanding of IT Governance, Risk Management and Compliance Frameworks
- Understanding of security risks and the required preventative controls
- Excellent understanding of IT operational processes and controls including projects
- Knowledge of the IT frameworks and best practices
- Excellent understanding of Regulatory requirements relatively to the IT environment (PCI DSS, POPIA, GDPR)
- The ability to be persuasive and be able to communicate GRC related concepts to staff
- Sound knowledge, understanding and application of the relevant legislation
- Ability to map business needs to technology solutions
- Implementation of the ICT strategy in the insurance
- Must have excellent corporate governance principles
- Thorough understanding of technical elements
- Resilience
- Innovative
- Deadline driven
- Self-starter
- Customer service orientated
- Ability to handle confidential matters
- Professionalism
- Negotiation
- Conflict Resolution
- Fairness
- Conscientious
- Meticulous
- Honest, Hardworking and Humble
-
Compliance Specialist
3 days ago
FirstRand Johannesburg, South AfricaJob Description · Hello Future Compliance Specialist · Welcome to FNB, the home of the #changeables. We design for the shapeshifters and deliver products and services that make us incredibly proud of people that make it happen. · As part of our team in FNB Life Governance Legal a ...
-
Specialist: Compliance
1 day ago
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
Compliance Specialist
1 day ago
Hollard Recruitment Johannesburg, South Africa**Job Advert Summary**: · The Compliance Division within Group Compliance is looking for a Compliance Specialist to join their team. The Compliance Specialist advises and guides teams on the identification of relevant compliance risks and the development of compliance risk manage ...
-
Compliance Specialist
1 week ago
Interviewing Dynamix Johannesburg, South Africa**Compliance Specialist** · **Rosebank** · Our client, a leading multi-national property concern seeks to appoint a Compliance Specialist whose focus will be on ensuring consistent _**formulation and implementation **_of an Ethics and Compliance program. The successful incumbent ...
-
Compliance Specialist
6 days ago
Rand Water Johannesburg, South Africa**Job Advert Summary**: · Rand Water is looking for a Compliance Specialist to provide specialist functional support to the Compliance Division on responsibilities relating to implementation of the compliance risk management. · **Minimum Requirements**: · - Degree in law, audit o ...
-
Compliance Specialist
1 week ago
Nedbank Johannesburg, South AfricaJob Family- Risk, Audit and Compliance · - Career Stream- Regulatory Compliance · - Leadership Pipeline- Manage Self: Professional · **Job Purpose** · - Group Compliance (Shared Services Compliance) is recruiting for a Compliance Specialist. The incumbent will provide advice, gui ...
-
Compliance Specialist
1 day ago
FirstRand Johannesburg, South AfricaJob Description · To assist with the development and implementation of risk management plans and establishing risk-reporting requirements · - Deliver against operational and cost targets · - Prioritise resource allocation to minimise and reduce wastage · - Monitor costs for the f ...
-
Compliance Specialist
1 week ago
FirstRand Johannesburg, South AfricaJob Description · Hello future Compliance Specialist · Ashburton Investments is a new generation investment manager that offers investors access to more sources of return and more ways to manage risk. In the institutional space in South Africa as well as our Global business, we p ...
-
Compliance Specialist
1 day ago
FirstRand Johannesburg, South AfricaJob Description · To provide robust regulatory compliance advice, guidance, and support by monitoring processes and related controls in accordance with compliance methodology and minimum standards · - Deliver against operational and cost targets · - Prioritise resource allocation ...
-
Compliance Specialist
23 hours ago
Nedbank Johannesburg, South Africa**Job Classification** · - **REQ: Refilwe Falatsi**: · - **Division: Nedbank Insurance | Governance**: · - **Closing Date: 6 December 2023**: · - **Employment Equity Statement: Preference will be given to individuals from underrepresented groups.** · - Job Family- Risk, Audit and ...
-
Compliance Monitoring Specialist
5 days ago
FirstRand Johannesburg, South AfricaJob Description · To provide robust regulatory compliance advice, guidance, and support by monitoring processes and related controls in accordance with compliance methodology and minimum standards · Hello Future (Anti-Bribery and Corruption Compliance Monitoring Specialist) · Wel ...
-
Compliance Specialist Ii
1 week ago
FirstRand Johannesburg, South AfricaAbout us, purpose, experience and qualifications · **about us**: · **purpose**: · - To provide robust regulatory compliance advice, guidance, and support by monitoring processes and related controls in accordance with compliance methodology and minimum standards**experience and q ...
-
Compliance Monitoring Specialist
6 days ago
FirstRand Johannesburg, South AfricaJob Description · To monitor processes and related controls in accordance with compliance methodology and minimum standards and provide support to experienced Regulatory Risk and Compliance professionals that require robust regulatory compliance advice and guidance · Hello Future ...
-
Senior Specialist: Compliance
1 day ago
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
Compliance Monitoring Specialist
1 day ago
FirstRand Johannesburg, South AfricaJob Description · To monitor processes and related controls in accordance with compliance methodology and minimum standards and provide support to experienced Regulatory Risk and Compliance professionals that require robust regulatory compliance advice and guidance · Hello Future ...
-
Compliance Monitoring Specialist
1 day ago
FirstRand Johannesburg, South AfricaJob Description · To assist with the development and implementation of risk management plans and establishing risk-reporting requirements · Hello Future Financial Crime Compliance Monitoring Specialist · Welcome to FNB, the home of the #changeables. We design for the shapeshifter ...
-
Junior Specialist: Compliance
1 week ago
Absa Bank Limited Johannesburg, South AfricaEmpowering Africa's tomorrow, together one story at a time. · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to re ...
-
Junior Specialist: Compliance
1 week ago
Absa Bank Limited Johannesburg, South AfricaBring your possibility to life Define your career with us · - With over 100 years of rich history and strongly positioned as a local bank with regional and international expertise, a career with our family offers the opportunity to be part of this exciting growth journey, to rese ...
-
Compliance & Governance Specialist
23 hours ago
Dante Personnel Johannesburg, South AfricaGauteng, Johannesburg CBD · - R ctc per annum - R ctc per annum · Our client based in Braamfontein is looking for an Assistant Company Secretary/Compliance & Governance Specialist · **Minimum requirements**: · - A BCom Law or equivalent is required · - At least 5 years of company ...
-
Compliance Specialist-2
1 day ago
FirstRand Johannesburg, South AfricaJob Description · To provide robust regulatory compliance advice, guidance, and support by monitoring processes and related controls in accordance with compliance methodology and minimum standards · Hello Future Compliance Specialist · Welcome to FNB, the home of the #changeables ...
IT Governance, Risk and Compliance Specialist - Johannesburg, South Africa - National Risk Managers
Description
A Medical Insurance Company based in Benoni, Gauteng is looking for a IT Governance, Risk and Compliance Specialist who will assist in the development and implementation of IT Governance frameworks and IT controls following appropriate methodology approved by management that is aligned with international and financial industry standards (e. g, GOI standards (PA), Joint Standards (PA & FSCA), COBIT, ITIL, ISO, NIST, PRINCE II, CMM, etc.).Advise the company on best business practices and to develop and implement appropriate solutions.
Work closely with cross functional teams to identify, assess, and mitigate risks while ensuring alignment with industry standards and regulatory requirements.
Key Performance Areas
Key Tasks
IT Governance Frameworks
IT Compliance
Incident Response and Management
Documentation and Reporting
Security Architecture and Implementation
Ad hoc
Essential Qualifications
Desirable Qualifications
Essential Experience
Legal or Statutory Requirements
Knowledge and Skills
Attributes