Description
The Executive – ICT Risk & Governance will be responsible for overseeing and implementing Information and Communication Technology (ICT) governance practices within the organization. This role requires a deep understanding of ICT frameworks, policies, and standards, as well as the ability to collaborate with various stakeholders to ensure compliance and effective management of ICT resources.
Main duties/responsibilities
ICT Governance Implementation:
- Develop, implement, and manage ICT governance frameworks and policies to ensure compliance with industry standards and regulatory requirements.
- Monitor and evaluate the effectiveness of existing ICT governance processes and recommend improvements as necessary.
Policy Development and Documentation:
- Collaborate with cross-functional teams to develop, update, and maintain ICT policies, procedures, and guidelines.
- Ensure that ICT policies align with organizational objectives and are communicated effectively to relevant stakeholders.
Risk Management:
- Identify and assess ICT-related risks and vulnerabilities.
- Develop and implement risk mitigation strategies to safeguard the organization's ICT assets and data.
Compliance Monitoring:
- Conduct regular audits to assess compliance with ICT policies and standards.
- Provide recommendations and implement corrective actions to address any identified non-compliance issues.
Stakeholder Collaboration:
- Collaborate with IT teams, business units, and external partners to promote a culture of ICT governance and security awareness.
- Provide guidance and training to staff on ICT governance best practices.
ICT Resource Optimization:
- Work closely with IT management to optimize the allocation and utilization of ICT resources.
- Ensure cost-effective and efficient use of ICT infrastructure and services.
Incident Response and Reporting:
- Develop and maintain an incident response plan for ICT-related incidents.
- Coordinate with relevant teams to investigate and report on ICT incidents, ensuring timely and accurate reporting to senior management.
Continuous Improvement:
- Stay informed about emerging trends, technologies, and best practices in ICT governance.
- Continuously improve ICT governance processes to adapt to changing business needs and security threats.
Experience
- 1+ years of relevant experience in GRC (Governance, Risk & Compliance) Principles.
- Intermediate knowledge of digital risk management process and technology trends.
Qualifications
- Bachelor’s degree in computer science, engineering, or any other related field.
- Understanding of ICT frameworks such as COBIT, ITIL, and ISO 27001.
- Relevant certifications (e.g., CISM, CGEIT, CRISC) will be an added advantage.
- Ability to work independently and collaboratively in a fast-paced environment.
Skills
Risk Management
Compliance
ICT Governance Implementation
Industry Sector