Standard Bank Group Senior Manager, Non-Financial Risk - Information and Technology Risk, CIB Jobs in South Africa

Standard Bank Group Senior Manager, Non-Financial Risk - Information and Technology Risk, CIB Jobs in South Africa



Job Description
  • This role is required to provide operational support and oversight of the management and mitigation of significant operational risks and vulnerabilities that may arise within Systems and Technology; and Information Risk (including Privacy) processes in the global Corporate and Investment Banking (CIB) Business.
  • The candidate will be a material influencer in the identification, evaluation, assessment of risks and vulnerabilities in the CIB technology and information risk ecosystem, and advise on the adequacy of process, risk, and control measures.
  • This role will provide oversight through advocacy, identification of control weaknesses and recommendations for improvement opportunities, training and reporting of risk issues.
  • The candidate will be the trusted risk management partner that equips the CIB business heads and Chief Information/Technology; Data and IT Security Executives and their units, with the tools to identify, assess and mitigate the financial, reputational, regulatory, and client impact of information and technology risks that confront the business.

    Key Responsibilities:
  • Support the development of Information and Technology Policies and Standards that are fit for purpose to the CIB business, including frameworks, programs, risk taxonomies, and tool kits.
  • Support the cascading and embedding Group-wide Non-Financial Risk, Information (including Privacy) and Technology Risk Policies and Frameworks into core CIB business and technology units globally.
  • Assist in the research on best practices leveraging expertise and industry insights, including analysis of IT risk data from various sources (e.g. external events, control deficiencies, risk register) to identify and measure levels of information and technology risk, concentration, trends and patterns.
  • Support corporate-wide IT, Information (including Privacy) risk awareness, culture, and influence within CIB, including rollout of business unit IT risk training programs
  • Support execution of IT & Information risk and control self-assessments (RCSA), and ensure that the scope, discipline and culture in surfacing the key risks (infrastructure, applications, third parties, cyber security, resilience etc…) that the business faces in its operations, is robust
  • Support the independent quality assurance (QA) activities over RCSAs and ACAs to ensure that risks/controls assessments are adequate.
  • Partner
    with the Business, IT Security, Technology and Non-Financial Risk Management teams, and other related parties to ensure that action plans, policy and procedural changes for risk acceptance, avoidance, transfer and/or mitigation are appropriately considered to address vulnerabilities identified from risk assessments.
  • Support the monitoring of evolving risk position of new technologies (robotics, AI, Cloud initiatives, block chain, etc), for each of the technology areas in focus, tracking the individual risk logs and resolution plans, to minimize potential losses and other impacts.
  • Contribute to the development of a risk and control culture in the business through knowledge sharing and creating awareness, including best practices for minimizing information and technology risk losses.

    Qualifications

    Minimum Qualification:
  • Commercial or Technical Degree (CRISC / CISA /CISM / CISSP)

    Experience Required:
  • 5+ years experience in practical knowledge of risk, control frameworks & applications in financial services industry. Fully conversant in risk appetite, risk response & process improvement concepts. Understand both NFR and financial reporting risk characteristics.
  • 5+ years experience in Information and/or Technology Risk Management/ Chief Operations / Information or Technology Officer
  • 3+ years IT/Information Security Audit
  • 3+ years Information & Technology Risk Management
  • 5-7 years experience in practical knowledge and experience under Information Risk which would include an understanding of Information Risk Frameworks and Data Privacy Standards or Industry exposure to similar standards such as the Information Security Forum (ISF) Standard of Good Practice and Protection of Personal Information Act (POPIA).

    How to Apply

    For more information and job application details, see; Standard Bank Group Senior Manager, Non-Financial Risk - Information and Technology Risk, CIB Jobs in South Africa

    Find daily jobs in South Africa. Jobs - South Africa jobs. Search our career portal & find the latest South African job positions, career opportunities & jobs in South Africa.

    Jobs in South Africa - banking jobs, IT jobs, accounting jobs, NGO jobs, business administration, ICT, UN jobs, procurement jobs, education jobs, hospital jobs, human resources jobs, engineering, teaching jobs, and other careers in South Africa.

    Find your dream job from 1000s of vacancies in South Africa posted and updated daily - click here!

  • Click here to post comments

    Join in and write your own page! It's easy to do. How? Simply click here to return to 1 Best Africa Jobs.