IT Risk Governance Manager

IT Risk Governance Manager! page is loaded## IT Risk Governance Manager!locations : Johannesburgtime type : Full timeposted on : Posted Todaytime left to apply : End Date : September 30, 2025 (6 days left to apply)job requisition id : R40561#

• Job Description
• The primary purpose of the role is to ensure that IT is effectively governed within Firstrand group, IT risks are identified and being effectively managed and to develop and report the posture for each. This role exists in the second line of FirstRand’s Enterprise Risk Management (ERM) function and will often require you to work closely with and collaborate with the segment IT and cybersecurity teams to execute your responsibilities. You will often be required to oversee and manage groupwide initiatives.
• Hello future IT Risk Governance Manager!
• FirstRand believes that its people are its single most important resource and will not operate in a sector unless it has people who are right for that market and who share FirstRand’s business values. We recruit self-starters who have a passion for what they do. We empower them, hold them accountable and reward them appropriately. We value diversity in our people, particularly for the way that this contributes to innovative thinking. If you think you will flourish in our environment, and you believe you have the necessary skills and competencies for the position advertised, then we are looking for you!
• Are you someone who can :
• Develop, implement and maintain group frameworks and standards when required, including the group’s IT risk appetite statement.
• Ensure that IT and cybersecurity risk across FirstRand is compliant with BCBS239 for all in-scope activities.
• Complete reporting for all in-scope committees and respond to any ad-hoc reporting requirements.
• Management of risk including identification of groupwide risks, analysis and evaluation of the risks and oversee implementation of appropriate control measures to modify the risk.
• Assess the group’s risk profile for IT risk and report on this to the relevant committees.
• Develop, implement and maintain maturity assessments for IT risk and report on the outcome, including tracking of actions to close identified areas of improvement.
• Ensure that FirstRand is compliant with IT regulatory guidelines, directives and standards e.g. IT risk standard, cloud, material incident reporting.
• Respond to ad-hoc and planned regulatory activities and events (e.g. PA onsites, PA risk and maturity questionnaires etc.) and coordinate activities to ensure that these are effectively managed and coordinated. This includes preparation of all meeting, reports and presentation pack requests.
• Track and manage IT losses on the group’s ORM system to ensure accuracy and integrity in loss reporting.
• Oversee the management of IT audit findings on the group’s audit management system to ensure timely and effective remediation.
• Develop automated dashboards and reports for all key management information.
• Anticipate and meet the needs of stakeholders and commit to continuous development and entrenchment of a customer service culture
• Establish mutually beneficial relationships with stakeholders that support thought leadership, innovative and integrated practice solutions
• Oversee the monitoring and reviewing of risk performance
• Recommend and ensure implementation of required changes to IT risk and security policies and procedures
• Provide tactical direction and consultation on IT risk and compliance, contribute to IT risk reports, and review and assess quality and accuracy of IT reports
• Provide subject matter expertise and thought leadership.
• Keep abreast of current threats and stay current with IT evolution.
• Monitor IT incident and response management.
• Drive IT Risk awareness training programs.
• Take ownership of your career development.
• Develop, encourage and nurture collaborative relationships across FirstRand.
• Qualification :
• IT Degree OR Risk Related degree
• Bachelor of Science IT
• You will be a match if you have :
• 3 + years in an IT Risk Governance Role
• Have cloud experience
• Personal Attributes :
• High attention to detail and accuracy.
• Strong ethical standards and integrity.
• Ability to handle confidential information with discretion.
• Proactive and self-motivated with a strong sense of responsibility.
• You will have access to :
• Challenging work in a complex and exciting environment
• Opportunities to innovate and create efficiencies.# #
• Job Details
• Take note that applications will not be accepted on the below date and onwards, kindly submit applications ahead of the closing date indicated below.
• 30 / 09 / 25All appointments will be made in line with FirstRand Group’s Employment Equity plan. The Bank supports the recruitment and advancement of individuals with disabilities. In order for us to fulfill this purpose, candidates can disclose their disability information on a voluntary basis. The Bank will keep this information confidential unless we are required by law to disclose this information to other parties.Introduce yourself to our recruiters and we will get in touch if there's a role that seems like a good match.Should you have any queries, please log it via .The FirstRand Corporate Centre (FCC) houses many of the critical functions required by a large and complex financial services group. FCC’s stakeholders are both external, such as regulators, shareholders, global developmental institutions and government; and internal, mainly the businesses that service the group’s customers. These critical functions cover risk, compliance, governance, internal audit, treasury, finance and tax amongst many others. They require deep specialist and technical skills and ultimately represent the custodianship of the FirstRand group’s licence to operate.FCC employees develop a unique perspective of the group because nowhere else can you own or be part of a mandate that operates across the portfolio. This allows for both big picture thinking and operational learning. It is also a great place to drive collaboration and a place to have a significant impact.

#J-18808-Ljbffr