ICT Governance Admin at BDO South Africa

Primary Purpose of the Job

• Suited to an individual with a strong interest in IT Management, Controls, Governance, Security and Business Continuity in support of BDO business and National ICT strategies. An individual who will contribute to the ongoing alignment with best practice disciplines, governance, ethics, risk standards, policies and compliance for the ?rm. 

Main Duties and Responsibilities

• Supporting the Associate Director – Technology Governance with di?erent tasks in the ?eld of Information Security and IT Governance.
• Assisting with reviewing, analysing, and developing Firm-wide policies and procedures.
• Researching and documenting multiple information security related topics.
• Supporting cloud solution risk assessments.
• Assist with Client initiated Security Risk assessments
• Administration ISO 27001 based Information Security Management System (ISMS) mission.
• Maintaining the Risk register and related records
• Supporting the Associate Director – Technology Governance with internal/external IT audits and IT controls improvement projects.
• Assessing technical and functional aspects of the IT control environment.
• Assisting with Business Continuity assessments
• Liaise with ISMS resources to monitor the progress of assigned tasks and ensure control performance is adequate.
• Meeting Minute taking.
• Periodic Reports

Job Requirements
Qualifications

Mandatory

• NQF Level 7
• Security+
• COBIT, ITIL V3/ITIL V4
• NQF Level 6, IT Technical related Quali?cations ITIL Practitioner/ITIL Expert

Advantageous:

• CISA,CISSP,AIASM

Experience

• Procedure and/or Policy document preparation
• 2 Years in a Support role with an end user base not less than 1000 users
• Support Experience in Banking or Financial services industry sectors.
• Project Management methodology practical understanding.
• Contract Management and/Service level Management exposure.
• Business process analytics exposure
• Scribe experience.
• ISMS Administration and ISO27001 understanding
• Document writing and experience (policies, procedure, guidelines).
• Risk Management Experience.
• Strong understanding of Information Security concepts.
• Understanding of Security, Data governance laws and regulations eg. (POPIA and GDPR). 
• Report preparation.

Requirements

Knowledge:

• Advanced MS Word Excel, PowerPoint and Visio
• Scribe 
• ISO27001
• Risk Management

Behavioural Competencies

• Excellent communication (both verbal and written)
• Excellent Interpersonal skills
• Client focused
• Attention to Detail
• Holistic and Logical Thinking
• Disciplined
• Proactive Personality
• Team coordination & management
• Problem-solving skills or solution seeker
• Good organisational and time management skills
• Task Delegation
• Task Management