Role Purpose/Business Unit:
- To provide assurance within Technology across the in Vodacom South Africa covering the areas of Cyber Security, and GITC including governance & reporting, independent assurance, risk & control guidance and continuous monitoring of the Risk and Controls environment.
Your responsibilities will include:
- Design of Risk and Controls Matrices (RCMs) and execution of assessments against RCMs
- Periodic reporting on reviews of the control’s environment and remediation of gaps identified
- Perform reviews on technology processes, systems, infrastructure, and network infrastructure across the Cyber Security and GITC environments with the aim of proactively enhancing the control environment.
- Guiding management on recommendations for closure of items found.
- Control design and implementation across the Cyber Security and GITC environments within Technology and related processes.
The ideal candidate for this role will have:
- A relevant IT/Technology Degree (e.g., BSc Computer Science/Engineering, BCom Informatics)
- Relevant certifications would be advantageous, such as CISA, CISM, CGEIT, CRISC, CISSP, ITIL etc.
Overall experience 3-5yrs, inclusive of:
- At least 3-5 years’ experience in risk, assurance, controls, and compliance management in a technology environment
- At least 3 years’ experience in Technology Security or a Technology Audit function would be advantageous.
- At least 3-5 years’ experience in process definition and management is advantageous.
- A relevant Technology post graduate degree\diploma will also be an added advantage.
Core competencies, knowledge, and experience:
- IT Audit, Risk Management or Cyber Security in large enterprises is required.
- Relevant Frameworks (COBIT 5, SOX, ISO 27001/27002) preferable
Technical/Infrastructure knowledge is required i.e., detailed knowledge of at least three of the following platforms:
- Operating Systems (LINUX, Windows)
- IT Networks, Firewalls, VPNs
- Databases (SQL, Oracle, MySQL etc)
- GSM Network Infrastructure
Security and Development knowledge is advantageous.
- Linux Kali and associated tools
- Asset discovery techniques
- Scripting (Linux bash, JavaScript etc)
- Python/PHP or other programming languages
- Zoning, DDos detection, Web Traffic filtering, Malware, IDPS
- Patching, Vulnerability Management, Pen Test techniques
Personal attributes required.
- Grasping of technical concepts rapidly and the ability to articulate these concepts to technical and non-technical audiences.
- Strong analytical and documentation skills
- Good client engagement skills
- Good interpersonal and presentation skills
We make an impact by offering:
- Enticing incentive programs and competitive benefit packages
- Retirement funds, risk benefits, and medical aid benefits
- Cell phone and data benefits, advantages fibre connection discounts, and exclusive staff discounts offered in collaboration with partner companies
Closing date for Applications: 20 July 2026