Job Vacancy at Vodafone

Job description

Core competencies, knowledge and experience:

• High level knowledge of Privacy risk, Data Governance, Information Security and Governance, including risk management in a regulated environment.
• Ability to understand, implement or operationalize legislation (particularly POPI & GDPR requirements) in a regulated environment e.g. bank, telco.
• Expert knowledge of conducting Privacy risk assessments, , information security due diligences on vendors and third parties
• Expert knowledge of end to end security requirements with a business
• Broadlevel of Knowledge of Corporate Governance principles, risk management or internal audit processes and procedures
• Expert knowledge of different Vodacom security concepts and technologies.
• Good knowledge of Vodacom processes and Internal Controls.
• Good understanding of information security tools and frameworks and the application and associated risks from a privacy and security risk perspective.
• In depth direct data governance and risk management knowledge
• Analysing statistical data fast and accurately
• Chairing and conducting meetings
• Excellent verbal and written abilities
• Lead and manage Data Governance management for Vodacom (Pty). Identify risks and exposure areas and implement procedures/controls to manage and mitigate the related risks
• Ensure Vodacom has a robust data governance risk framework supported by clearly identifiable policies and processes.
• Liaise with all group entity management to ensure commitment to group wide Data Governance management programme.
• Manage roll out of the Vodacom Data Governance Strategy and related policies and procedure sat Vodacom.
• Document, monitor and report key data governance risks and exposures to various stakeholders
• To monitor and report on Vodacom related data security incidents in the privacy and information security area affecting the confidentiality and/or integrity of data residing on Vodacom systems, where needed.
• To conduct Data/Technical Security Reviews, privacy and security impact assessment on new products, services, change requests in respect of third parties.
• Perform reviews of contracts and deliverables from a Data Protection, Information Security risk and data governance perspective with vendors as and when required.
• To ensure the company information are protected and necessary measures and procedures are in place to meet the Company’s privacy, data protection and information security requirements.
• Ensures company compliance (from a data governance and usage perspective) with local and international laws regarding privacy, information security and data governance.
• To work with the other local fraud, physical security, Information Security, etc. to principally facilitate the governance in terms of consultation to business units, implementation, advice & adherence to best practices, guidelines and policies or standards.
• The Company’s approved Employment Equity Plan and Targets will be considered as part of the recruitment process. As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.

Qualification and Experience

• 5-8 year’s data governance environment (essential)
• Minimum 5 years corporate security experience in a regulated environment (preferably in telecommunications) (advantageous)
• Minimum 5 years’ experience in risk management and / data governance
• Experience in specialising in data security / information security due diligence
• Relevant 3 year degree in IT security / Computer Science (essential)
• Post graduate qualification in Internal Audit/ Compliance (advantageous)
• Project management experience essential