Department Head: Governance, Risk and Compliance Information and Communication Technology (ICT) at FSCA South Africa

Purpose of the Job:

• To provide leadership and direction of all governance, risk and compliance activities across the ICT Division. The person appointed to this position will report to the Chief Digital Officer.

Key Performance Areas:

• Develop and implement the ICT governance framework, risk and compliance strategy and roadmap in line with enterprise strategic objectives, corporate governance, business continuity management and ICT disaster recovery.
• Oversee the ICT Governance, Risk Management and Compliance function and provide support to ICT management 
• Coordinate development of ICT related strategy; policies and procedures 
• Knowledge of IT Governance Frameworks such COBIT, ITIL; PRINCE II, PMBOK etc. 
• Oversee the development and assessment of the ICT Disaster Management plans and process and ensure alignment to the Business Continuity Plans 
• Provide the appropriate structures to ensure that the business is able to identify, mitigate and manage existing and potential ICT risks to which the Financial Sector Conduct Authority is or could be exposed to and which pose a threat to the achievement of the organization’s strategic objectives.
• Provide reasonable assurance to the CIO and ICT Management that the division is managing enterprise ICT risks within acceptable levels
• Oversee and monitor the implementation of the ICT related strategy 
• Provide ICT governance related advice and support to FSCA.
• Lead and monitor the internal control self-assessments / audits in order to ensure compliance at all times with approved policies and procedures
• Identify, assess and monitor both strategic and operational risks related to ICT.
• Ensure governance programs are in compliance with relevant laws, regulations and policies to minimize or eliminate risk and audit findings.
• Ensure that the budget process is managed efficiently at all times.
• Manage ICT Sourcing and adhere to supply chain processes and timelines.
• Provide management reports.
• Adhere to supply chain processes and timelines.
• Manage a team of stakeholders for results towards organisational programme and project delivery.
• Ensure efficient management of the team and instill a high-performance culture.

Other Key Competencies: 

• The candidate must demonstrate the following skills and attributes: knowledge and understanding of the financial services industry and/or financial services regulation and auditing of ICT environments and business process engineering experience will be an added advantage, ability to work effectively under pressure with multiple stakeholders and in a professional manner, forward- looking and strategic minder, with an in-depth ability to understanding potential risks, legal and compliance implications, good knowledge of risk areas including regulatory, operational, information technology risk and industry specific legalities, understanding of the PFMA and other applicable legislation and regulations affecting the ICT space, attention to detail, analytical mind, active listening and critical thinking, strong interest in research-related activities, high security appetite, excellent communication skills (verbal and written), innovative and strategic thinking.

Requirements

• A Degree in Computer Science, Information Technology, Commerce or equivalent, with at least 10 years’ experience in ICT Governance, Risk and Compliance environment, of which 5 years must be at a management level.  The candidate must be familiar with relevant IT standards and frameworks, including ITIL and COBIT 5 where certification is required. A post graduate qualification will be an added advantage.

Closing Date: 22 June 2026.