• Login Name       Password       Remember me       LOGIN LOGIN    FORGOT PASSWORD
  • REGISTER

 LOGIN WITH
 
 
 
 
 EMPLOYERS
 
 
 
 
 
 NEWSLETTER
 
 
 
 
 FOLLOW US

Process Practitioner: IS Risk Management

Job Ref
253701
Job Type
Permanent
Employer Type
Recruitment Agency
Date Added 24 Aug 2016
Expiry Date 21 Sep 2016
* This is an Affirmative Action position.
* There have been 11 applications to this job.
* This job has been viewed 5714 times.
Employer:
T-Systems

Location:
Western Cape

Salary:
Market related

Benefits:


Role details:
Key Purpose

To ensure that IS risks are managed in accordance with best practices and company policies and methodologies, track compliance with required controls and monitor progress with risk mitigation and audit issue resolution in order for IS to deliver systems and services which meet the strategic and operational objectives of the business.

- - - - - - - - - - - - - -
Key Responsibilities

IS Risk Management
Compliance
Audit
Specific Outcomes


Align with the company's Corporate Risk Framework
Liaise with Corporate Risk Manager in ERA
Drive Business Impact Analysis for IS
Maintain IS Risk Register
Track progress with Risk Mitigation
Report on Risks and Risk Management status
Draft and facilitate approval of MIS documents where required
Integrate risk reporting mechanisms across IS including project, operational and security risks
Capture IS risks into corporate risk management system
Define risk management processes and procedures and roles and responsibilities across IS teams
Communicate risk management processes and procedures to IS stakeholders
Perform risk assessment of IS hardware and software assets
Identify non-compliance to IS processes, governance principles and charter
Escalate non-compliance issues to IS Management and Mancom as appropriate
Discuss risk rating pre-audit to ensure risks are not over- or under-stated and align with approved maturity requirements
Participate in audit feedback to ensure risks are correctly stated and ratings are in line with audit assessment criteria
Track audit issue mitigation progress and report status for monthly IS Mancom
Achieve milestones in terms of self development
Initiate personal growth opportunities
Keep up to date on latest IS developments
Monthly reporting on risk and progress on mitigations
Monthly reporting to the Corporate Risk Manager on IS Risk
Quarterly reporting and representation at the CART
(Combines Assurance Roundtable)
Liaise with Business Controllers in various divisions, to ensure that all IT related risk identified has been documented and progress on mitigations are tracked.
Perform a detailed risk assessment a month prior to the planned (ERA) audits and liaise with ERA on the assessment, this should include risks identified, current mitigations, areas of improvement with detailed plan to address and on-going monitoring of progress.
Provide IT risk reports for Mancom and Company's Risk Committee
Identify relevant legal/regulatory requirements related to IT service delivery and recommend appropriate controls
Obtain reasonable assurance that IT risk management practices are appropriate within the organisation’s risk appetite
Identify high risk/priority processes for improvement
Document Risk Management policy within IS as agreed with the Corporate Risk Manager
Assesses compliance to IT governance frameworks and policies
Ensure that all regulatory requirements (POPI, etc.) are being addressed with detail road-maps (including costing) to achieve the desired level of compliance.
Facilitate internal audits and external assessments of processes and plan improvement activities accordingly
Review IS process audit reports
Review progress on current audits
On-going review of open audit issues and to drive / ensure that all audit issues are resolved within the agreed time frame.
Review final audit reports for clarity/accuracy of audit issues and negotiate a reasonable delivery (resolution) date.
Education & Experience


IT Honours Degree
Required specialist 10 years Process management/ project management experience
Specialist knowledge and experience in Technology areas and how they interrelate
Specialist experience in the Understanding of architecture

Knowledge, Skills & Attributes Knowledge:

- COBIT
- ITIL



 
HOME|
INFO|