Capitec Bank is a leading South African retail bank that focuses on essential banking services and provides innovative transacting, savings, insurance and unsecured lending products to individuals. Capitec's mission is to make banking simple and transparent to help clients regardless of their level of income or assets improve their financial lives through a single solution, called Global One.
Job description: Purpose Statement
- To provide independent oversight, advice and assistance to the business in the identification, evaluation, assessment and treatment of information and technology related risks.
- To improve risk awareness and risk culture through challenging first-line management's information and technology risk management practices.
Minimum:
- 5 or more years' experience in Risk Management and/or Internal/ External Auditing.
- Proven experience in a governance and oversight capacity, e.g. IT Governance, IT Audit or Information Security
- Proven experience and understanding of Cyber and IT Security best practice and principles.
- Banking industry experience and knowledge
- Experience in data privacy and related compliance, e.g. RDARR, DAMA, GDPR
- Prior experience in a Cyber or IT Security role, e.g. ISO role, cyber security role, IT auditor (IT Security specialisation)
- 5+ years' specialist experience within risk and compliance
- Bachelor's Degree in Risk and Compliance or Commerce
- Honours Degree in Risk and Compliance or Commerce
Minimum
- Experience applying/ Basic understanding of relevant risk methodologies and IT/ Cyber Security control frameworks, e.g. COBIT, ISF, ISO, NIST, ITIL, COSO, DAMA, DM-BOK
- Experience in performing risk and control assessments
- Experience in information risk management
- Experience in IT risk management including information security
- General business acumen
- Understanding of IT/ Cyber Security and Cloud Computing
- Banking industry experience and knowledge, including BCBS-239 (RDARR principles)
- Experience in Information Technology Audit and Continuous Auditing techniques
- Understanding of Data Management practices
- Knowledge of leading practices and regulatory requirements
- Communications Skills
- Computer Literacy (MS Word, MS Excel, MS Outlook)
- Attention to Detail
- Interpersonal & Relationship management Skills
- Influencing Skills
- Analytical Skills
- Clear criminal and credit record
- A valid driver's license and own vehicle is required
Desired Skills
- Problem Solving
- Accuracy
- attention to detail
