Purpose of the Position:
The IT GRC Analyst will play a pivotal role in supporting the senior GRC manager in maturing the IT GRC processes and practices by assisting with: (i) IT policies, procedures, and processes; (ii) IT Risk Management; (iii) Quality Assurance & Compliance Management: (iv) Testing of Controls; (v) Management Reports.
Main Duties and Responsibilities include:
GRC Projects:
- Assist with the scoping, planning, execution and monitoring of certain GRC-related projects.
IT Governance:
- Assist with the definition and implementation of Key Performance Indicators across the ICTS department;
- Assist with the development of RACI matrices for various IT processes;
- Assist with the development and documentation of IT-related policies and procedures.
IT Risk Management for Operational & Project risks – periodic support of:
- Identification & assessment of IT risks
- Monitoring of the implementation of mitigating controls
- Maintenance of the risk and issues register
IT Quality Assurance & Compliance Management:
- Support of internal audits and assessments against adopted standards (e.g. COBIT, ISO27001 etc.) tassist with compliance management and the improvement of IT / business processes.
- Assist with quality assurance reviews of IT Projects, within the ICTS project office, against project management industry standards adopted.
- Assist with documenting and performing Compliance review and testing procedures.
IT Processes and Controls:
- Support of the design and implementation of IT Processes and Controls within the ICTS department aligned with adopted standards and frameworks.
- Assist with conducting reviews and monitoring compliance with approved business processes and control frameworks within the ICTS department.
Internal / External Audits:
- Co-ordination of activities required tfulfil the requirements of internal and external audits or assessments.
Reporting:
- Assist with the development of GRC-related dashboard reports.
- Assist with the preparation and dissemination of GRC management reports.
GRC Officer Requirements include:
Minimum Requirements:
- An Information Systems or IT-related qualification at a minimum NQF level 6 (National Diploma or Advanced Certificate).
- A minimum of 5 years’ relevant IT GRC experience in an enterprise (complex) environment.
- A thorough understanding of and experience in the use of:
- the COBIT (IT Governance & Management) framework; and
- an industry-recognised Risk Management framework
- Good English verbal and written, business communication skills
- Proficient in the use of the Microsoft Office suite.
Additional / Advantageous Requirements:
- One of the following certifications: M_o_R, CRISC, CGEIT or an IRMSA-endorsed Risk Management certification.
- COBIT Certification (IT Governance & Management Framework)
- Project Management skills and experience in the use of an industry-recognised Project Management methodology.
- Good presentation and facilitation skills.
- Strong planning, organising, and coordinating skills.
- inter-personal and relationship-building skills.
- Strong negotiation and influencing skills.
The all-inclusive remuneration package is negotiable between R427 228 and R671 593 for the 12-month contract term.
To Apply, please e-mail the below documents in a single PDF file to: [email protected]
- Application Form
- Cover letter, and
- Curriculum Vitae (CV)
Gmail
Yahoomail