Latest Jobs at The Shoprite Group of Companies

Purpose of the Job    

• Support the IT Compliance Manager in monitoring, measuring and reporting compliance with the Shoprite IT Department’s
• Internal Control Framework (Policies, Standards, Principles, Procedures and Guidelines).
• Provide oversight and support of Internal and External audits.
• Provide IT Compliance-related advisory services.
• Assist with identification of improvements to the Internal Control Framework.
• Draft and clear compliance reports to Internal and External stakeholders.

Job Objectives    
1. Internal Governance, Risk, Control and Compliance Framework Awareness

• While performing other compliance activities assist IT and Business stakeholders with their awareness and
• understanding of applicable IT policies, standards, and procedures to relevant stakeholders and users

2. Compliance Monitoring

• Monitor and evaluate the Implemented Controls as per the Governance: Internal Control Framework to assess the extent to which existing implemented controls are complied with, and effective and efficient in mitigating identified risk
• Monitor the implementation of further actions identified during compliance reviews
• Identify circumstances where compliance reviews identify risks which have not been recorded on the risk register
• Off the back of compliance reviews, identify stakeholder behaviours which are evidence of control non-compliances and/or contribute to control weaknesses or the circumvention of controls (including the root causes of such behaviours) or which provide evidence of the manifestation of risks in the environment with a view to strengthening controls and control compliance

3. Compliance Assessments (2nd line assurance)

• Plan, execute and report on systems and process assessments in line with regulatory requirements, applicable IT policies, standards, procedures and industry leading practices
• Review controls documentation for adequacy

4. External Assessments (3rd line and 4th line assurance)

• Monitor and report on internal and external audit findings and reports
• Ensure that risks identified during internal and external audits are logged in the risk register
• Ensure that risk owners implement remediation plans (in response to internal and external audit findings) and resolved audit findings

5. Reporting

• Draft and clear compliance reports to Internal and External stakeholders

6. Stakeholder engagement

• Engage with stakeholders and communicate the IT Compliance requirements and objectives

Qualifications    

• BSc / BCom/ BTech / BEng / Honours (with Computer Science / Information Systems as a major) or similar.

Experience    

• IT governance and management processes and risks
• IT compliance services as per the job description
• Experience in the development of IT Frameworks, policies, procedures and guidelines.
• Experience in leading matrix reports.
• Information Systems Risk and audit experience.

Knowledge and Skills    

• Knowledge and experience of Information Security practices
• Solid knowledge and experience of project management
• Understanding of operating systems, databases and transactional systems and connectivity