Manager: Information and Communication Technology and Knowledge Management at CATHSSETA

Qualification:

• Matric certificate plus a qualification in computer science or engineering or IT or Technical-related field or equivalent qualification rated at National Qualification Framework (NQF) Level 7 recognised by South African Qualifications Authority (SAQA);
• Qualifications & Experience 
• Matric certificate plus a qualification in computer science or engineering or IT or Technical-related field or equivalent qualification rated at National Qualification Framework (NQF) Level 7 recognised by South African Qualifications Authority (SAQA). At least one of the following certificates is required: ITIL (Information Technology Infrastructure Library); COBIT (Control Objectives for Information and Related Technologies); and Project Management certification such as Project Management Professional (PMP) Project Management Body of Knowledge (PMBoK). oCertificate in Cybersecurity Professional Practice and Leadership (CPPL). Security+,GIAC Security Essentials Certification (GSEC). At least one of the following security related certificates is required: Certified Information Systems Security Professional (CISSP)/ Certified Information Security Manager (CISM); Certified Information Technologist (CIPT); Certified Information Systems Auditor (CISA); Systems Security Certified Practitioner (SSCP); The Open Group Architecture Framework (TOGAF)

Experience:

• 5-10 years’ experience in IT operations and programming, including attainment of information security standards certifications and privacy seals/marks; 5-10 years of experience in information systems auditing, assessment and mitigation of risk; 1 -2 years’ experience in Knowledge Management.

Description:

Strategic Planning and Governance

• Provide enterprise-wide leadership in digital transformation and technology-enabled change, positioning digital and ICT as strategic enablers of organisational performance and service delivery. 
• Develop and implement ICT and KM strategies, policies, and frameworks that align with overall organisational goals and strategic plans;
• Support the creation of IT governance structures and ensuring adherence to compliance standards;
• Contribute to the development of ICT strategic and annual performance plans for CATHSSETA; and
• Develop and manage the ICT operational plan and ensure implementation.
• Develop and implement of cloud and Artificial Intelligence (AI) strategies.  
• Develop and implement CATHSSETA’s Enterprise Architecture. 

ICT Infrastructure and Network Management

• Develop and implement ICT architecture for improvement of CATHSSETA ICT infrastructure and systems. 
• Overseeing the day-to-day performance of IT systems, including network connectivity (LAN/Wi-Fi), servers, hardware, software, and communication equipment; 
• Ensuring systems remain secure, functional, and updated;
• Monitor key business processes within CATHSSETA to implement appropriate ICT support systems;
• Develop, review, implement and maintain the ICT management systems and policies; and optimise controls and processes; and
• Develop modern supporting Information Management and Technology solutions relevant to the organisation.

Knowledge Management and Document Systems

• Managing electronic document management systems (EDMS), databases, and records management to ensure information accuracy, security, and accessibility; 
• Capturing organisational knowledge and data to create actionable insights;
• Design and manage implementation of a knowledge management plan, policies and procedures;
• Manage the mapping and implementation of the CATHSSETA’s knowledge management architecture;
• Identify best electronic knowledge management systems (websites, collaboration platforms, etc) to meet the IT needs of CATHSSETA; and
• Manage, access and disseminate institutional knowledge management information generated for both internal and external utilisation.

Security and Disaster Recovery 

• Development ICT Service Continuity and Disaster Recovery Plans for the CATHSSETA for incorporation into Business Continuity Plans 
• Developing and monitoring cybersecurity measures (firewalls, anti-virus) and managing backup, recovery, and disaster continuity plans to minimise data loss; 
• Keep up to date with the latest security and technology developments;
• Research and identify potential threats and vulnerabilities and develop action plans to counter emerging cyber intelligence threats; 
• Produce threat warnings, real-time situational and predictive analysis and the synthesis of all-source information and data;
• Manage, design and implement a Disaster Recovery Policy and Plan;
• Monitor for attacks, intrusions and unusual, unauthorised or illegal activity;
• Identify potential weaknesses and implement measures, such as firewalls and encryption;
• Investigate security alerts and provide incident response;
• Liaise with stakeholders in relation to cyber security issues and generate reports for both technical and non-technical staff and stakeholders; and
• Monitor and respond to 'phishing' emails and 'pharming' activity.

Project and Contract Management

• Develop Business Cases for all significant ICT investments for approval
• Overseeing the implementation of ICT projects, including planning, budgeting, vendor negotiations, and monitoring service level agreements (SLAs);
• Implement approved recommendations from stakeholders; and
• Maintain healthy internal and external relations (communities, government, employers, colleges, internal stakeholders etc.) to assist in achievement of organisational goals.

User Support and Training

• Managing helpdesk operations to provide timely technical support to staff; and 
• Training staff in new technologies, software, and data management procedures.

Budgeting and Resource Management

Financial Management

• Develop and monitor the ICT budget;
• Monitor and approve all IT related purchases;
• Ensure financial viability thereby delivering a robust and accurate ICT financial planning and a reporting system that incorporates a balanced budget; and
• Drive initiatives aimed at eliminating wasteful expenditure, improve productivity and reduce operating costs within the ICT and knowledge management unit.

ICT Asset Management

• Manage the ICT and knowledge management unit assets;
• Monitor and approve all ICT related purchases;
• Monitor the receipt, storage, shipping and disposal of ICT assets; and
• Monitor the ICT asset inventory.

People Management

• Lead and manage the division so as to ensure a positive culture of work and performance;
• Set performance targets for the ICT unit and regularly monitor achievement thereof (performance management). Provide feedback on performance of team;
• Manage capacity of subordinates by providing relevant training;
• Develop Individual Development Plans/ Individual Learning Plans (IDPs/ILPs) for subordinates to promote succession and talent retention;
• Monitor implementation of (IDPs/ILPs); and
• Coach and/or mentor subordinates, where required.

ICT & KM Risk Management

• Provide oversight of ICT risks, including cybersecurity, system resilience, data integrity, and third-party risk. 
• Manage, monitor and maintain an information security risk register and assist with internal and external audits relating to information security;
• Develop and put in place controls to mitigate risk within the Business unit; and
• Implement ICT Risk controls.

Technical Skills

• Deep knowledge of networking, server administration, cybersecurity, and database systems.
• Experience troubleshooting systems.
• Skilled in database programming and software installation.
• Extensive penetration testing experience in a similar role.
• Understanding firewalls, proxies, antivirus/malware. Investigation of suspicious network and endpoint activity.
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Understanding patch management with the ability to deploy patches in a timely manner while understanding business impact.
• Experience in performing risk and technology assessments.
• Experience in the oversight and execution of a continuous monitoring and improvement program including security control assessments.
• Strong technical, analytical, organisational and administrative skills.
• Knowledge of ICT Frameworks and policy development

Core Competencies

• Strong leadership
• Strategic thinking
• Problem-solving
• Excellent written and oral communication skills, and vendor negotiation abilities
• Quality concern and accuracy
• Creativity and innovation
• Conceptual and critical thinking
• Planning and organising
• Risk management
• People management