Closing Date 2022/08/01 Reference Number LAN220715-1 Job Title Manager: IT Governance, Risk and Compliance [Centurion] Division Finance and Treasury and IT Unit FTI Information Technology Job Type Classification Permanent Location - Country South Africa Location - Province Gauteng Location - Town / City Centurion
JOB ADVERT SUMMARY The Land and Agricultural Development Bank of South Africa (Land Bank) is South Africa’s only specialist agricultural bank established in 1912, the bank’s sole objective is to serve South African commercial and emerging farmers and bring specially designed financial services within their reach. These services enable farmers to finance land, equipment, improve assets and obtain production credit. The Land Bank provides financial services that have moved with the times and continues to provide services to agri-business and constantly reviews its offerings to ensure that they match the needs of an industry. As change has swept across the sector in South Africa the socio-economic makeup of agriculture has altered, bringing new entrants from historically disadvantaged backgrounds on to the land, these new farmers, facing the challenges of establishing sustainable agri-businesses across the agricultural value chain, Land Bank has been a commercial lifeline offering appropriately designed financial products that facilitate personal and commercial viability in a sector that is vital to the sustainability of South Africa and its people.
MAIN PURPOSE OF THE JOB 1. Manage IT Governance, Risk Compliance and Information Security Management processes within the IT function of the Land Bank. Manage, monitor and report on information security to IT Management and the IT Steering Committee and serve as a bridge between IT, Risk & Audit regarding IT Governance, Risk and Compliance matters. 2. Provide input into IT strategy relating to governance, risk and compliance matters. 1) Define IT Governance policies and procedures 2) Monitor adherence to GRC standards 3) Develop IT risk management 4) Ensure compliance 5) Enable IT quality management 6) Develop IT compliance register 7) Manage IT change control 8) Manage IT security applications 9) Monitor cyber security 10) Ensure disaster recording 11) Develop business continuity plan 12) Monitor threat detection 13) Monitor ID and Access Management and ensure compliance 3. Ensure the definition of, and compliance with IT and organisational GRC policies, procedures, standards and frameworks to ensure that IT organisational risk is minimised
KEY PERFORMANCE AREAS Implement, Maintain and Monitor the Land Bank IT Governance framework 1. Implement, maintain and monitor the IT Governance policy, framework and procedures. 2. Maintain on-going alignment of the IT governance charter and supporting Role Accountability Matrix (RACI) with the Board and other Land Bank Steering Committee Charters. 3. Align and maintain alignment of ICT Governance and Corporate Governance processes. 4. Identify and drive areas for continuous ICT Governance improvement.
Implement, Maintain, Monitor and Improve the IT Internal Controls Framework 1. Implement, maintain, monitor and continually improve the IT internal controls framework in line with the 5 COBIT domains. 2. Develop, implement and maintain all IT Policies & Procedures. 3. Report on IT internal controls to management.
Implement, Maintain and Monitor the Information Security Management System (ISMS) 1. Implement, maintain, monitor and improve the Information Security Management System (ISMS) and the associated accountability framework, in accordance with the ISO27001 Standard. 2. Monitor and assist IT management in the implementation of the information security-related aspects of the IT internal control framework, which has been structured according to the ISO 27002 standard. 3. Coordinate information security management activities with business management responsible for information security-related internal controls.
Coordinate and Monitor IT audits and Associated Remedial Actions 1. Facilitate and coordinate the process and scope of internal and external IT audits in consultation with IT Management 2. Review and comment on all findings in conjunction with IT management. 3. Coordinate with Internal Audit on the timely clearing of audit findings.
Implement, Maintain, Monitor and Improve IT Risk & IT Service Continuity Management and Compliance Processes 1. Facilitate, manage and monitor the IT Risk management processes within IT. 2. Monitor, evaluate and report progress on IT risk mitigation initiatives to IT management. 3. Monitor and report compliance to IT legislation and regulation to IT management 4. Ensure IT compliance to applicable Land Bank policies, procedures and standards. 5. Monitor, evaluate and report on the status of policy compliance to management.
People Management Performance Management 1. Conduct performance planning session and Track and monitor performance in accordance with performance contracts 2. Conduct performance reviews in accordance with policies and procedures and take corrective actions where necessary 3. Provide coaching and feedback to employees on how to improve and sustain their performance
Capacity Planning 1. Determine the human resource requirements, in accordance with the expected deliverables and current capacity 2. Secure the human capital requirements to ensure that deliverables will be met in accordance with the expected targets 3. Set and achieve employment equity targets. 4. Minimise staff turnover 5. Lead the department in such a manner as to foster innovation and technological excellence.
|