Information and Communications Technology Independent Co-Opted Non-Executive Member: Corporate Services Standing Committee of the Board at HWSETA

• An opportunity exists for the appointment of an Information and Communications Technology (ICT) Governance Expert as an Independent Coopted Non-Executive Member of the Corporate Service Standing Committee of the HWSETA Board. This position is based in Bedfordview, Gauteng and remuneration will be in line with the HWSETA Board Compensation Policy. The term of this appointment is aligned to the term of the tenure Board which will end on 31 March 2030.
• The ICT Independent Coopted Non-Executive Member is a strategic addition to the Corporate Service Standing Committee of the HWSETA Board required to offer  specialized knowledge, technical oversight, and guidance on digital initiatives. Experts with the required competencies are invited by the HWSETA Board to fill an ICT Governance skills gap in order to bridge technical expertise with strategic business management, and thus ensure that  HWSETA technology investments align with organizational objectives, compliance requirements, and risk management standards. The key competencies required for this role involve technical knowledge that is blended with strategic foresight to manage cybersecurity, drive digital transformation, and ensure ethical Artificial Intelligence (AI) adoption. The Core Technical Knowledge & Competencies required include:
• Strong knowledge of COBIT (Control Objectives for Information and Related Technologies), ITIL (Information Technology Infrastructure Library), and ISO standards (e.g., ISO/IEC 27001/27002/38500).
• Experience in developing ICT risk management plans, conducting audits, and ensuring compliance with frameworks like GDPR, POPI (Protection of Personal Information Act), or local equivalent legislation.
• Ability to develop and implement ICT policies, procedures, and standards.
• Understanding of ICT infrastructure, security architecture, and applications, including patch management and vulnerability management

Minimum Requirements

• Bachelor’s Degree (NQF 8) or Postgraduate qualification (NQF 8) in Information Technology, Computer Science, Information Systems, Electronic Engineering, or a related IT field.
• Preferred: Postgraduate qualifications (NQF 9) or specialized certifications such as, Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in the Governance of Enterprise IT (CGEIT), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), COBIT5 or COBIT-19 Foundation.
• Total Experience: 5 to 7 years in Information Technology (IT).
• Specialized Experience: 3 to 5 years specifically in ICT Governance, IT Risk Management, IT Security, or Compliance.
• Leadership/Management: At least 3 years in a management or lead role for senior positions.
• Strong written and verbal skills for writing IT reports for the board, Ability to interpret complex technical data for risk assessment, Capability to manage relationships, High integrity and dedication to confidentiality

Key Responsibilities:

• Ensuring that ICT initiatives directly support the overall business strategy and organizational objectives.
• Ensuring that ICT costs yield Return On Investment (ROI) through cost effective use, and allocation of ICT resources, including applications, information, infrastructure, and human capital.
• Verifying that ICT investments deliver promised benefits, return on investment (ROI), and enhance service delivery.
• Overseeing the management of ICT-related risks, and the protection of information assets.
• Ensuring regulatory compliance with legislation such as POPIA (Protection of Personal Information Act), GDPR (General Data Protection Regulations), and maintenance of business continuity.
• Monitoring the effectiveness of the governance framework, including ICT project performance and service delivery metrics (KPIs).
• Ensuring that ICT use aligns with ethical standards and respects organizational culture.
• Establishing and Chairing an ICT Steering Committee with the following responsibilities:
• Reviewing and approving the ICT strategy to align with business objectives.
• Establishing, implementing, and monitoring the effectiveness of ICT policies and structures.
• Receiving and reviewing regular, high-level, and actionable reports on IT risks, security, and project performance.
• Ensuring the IT function is audited as part of the overall institutional audit plan. 
• Facilitating the achievement of the following measurable results by the Board:
• ICT strategy that is fully integrated with business objectives, enhancing overall performance.
• Reduced incidence of, and improved response to, cyber threats, hacking, and data breaches.
• Higher Return On Investment and improved efficiency through reduced duplication and better cost management.
• Auditable evidence of compliance with legal, regulatory, and contractual obligations.
• Consistent, reliable, and high-quality IT services that support business operations.
• Clear, informed, and timely decision-making regarding major technology investments and strategic pivots.
• Validated IT disaster recovery plans and improved business resiliency.