{"id":36567,"date":"2026-05-25T18:00:30","date_gmt":"2026-05-25T18:00:30","guid":{"rendered":"https:\/\/jobs.dataaxisnode.com\/southafrica\/job\/manager-it-risk-and-governance-senior-officer-service-catalogue-and-service-level-agreement-management-specialist\/"},"modified":"2026-05-25T18:00:48","modified_gmt":"2026-05-25T18:00:48","slug":"manager-it-risk-and-governance-senior-officer-service-catalogue-and-service-level-agreement-management-specialist","status":"publish","type":"job_listing","link":"https:\/\/jobs.dataaxisnode.com\/southafrica\/job\/manager-it-risk-and-governance-senior-officer-service-catalogue-and-service-level-agreement-management-specialist\/","title":{"rendered":"Manager: IT Risk and Governance \n\n\n \n\n \n Senior Officer: Service Catalogue and Service Level Agreement Management \n\n\n \n\n \n Specialist: IT Risk Management \n\n\n \n\n \n Specialist: Forensics \n\n\n \n\n \n Administrator: IT Governance \n\n\n \n\n \n Senior Manager: Forensics Investigation \n\n\n \n\n \n Specialist: SAP Authorisation"},"content":{"rendered":"

Key Performance Areas<\/p>\n

IT Governance<\/p>\n

\tDevelop and implement IT governance frameworks and strategies aligned with organisational goals and industry best practices.
\n\tEstablish policies, procedures, and controls to ensure compliance with regulatory requirements and internal standards.
\n\tDevelop and maintain a complete controls library for ICT controls in line with best practice recommendations.
\n\tMonitor and evaluate the effectiveness of governance processes and recommend improvements as needed.<\/p>\n

IT Risk Management<\/p>\n

\tDesign, develop and implement the Information Technology (IT) Risk Management Framework that is aligned to the RAF\u2019s Enterprise Risk Management (ERM) framework.
\n\tDevelop risk mitigation plans and strategies to minimise potential impacts on IT operations and data integrity.
\n\tConduct regular risk assessments and audits to ensure ongoing compliance and risk readiness.
\n\tDrive the creation of an understanding of ICT policies, processes, risk and controls\u2019 in line with the RAF\u2019s Policy Framework.
\n\tProactively ensure that all new projects have correct levels of assurance controls by conducting internal risk reviews before and during projects implemention.<\/p>\n

Compliance and Assurance Across IT Environment<\/p>\n

\tImplement and maintain compliance programs and initiatives, including training and awareness campaigns for staff.
\n\tCoordinate audits and assessments by internal\/external auditors and regulatory bodies.
\n\tPro-actively manage the reduction of unsatisfactory audits by: (1) identifying areas of risk within ICT, (2) by assisting with the development of remediation plans to address issues by providing risk and audit expertise and (3) raising and tracking ICT Issues which may be of a strategic, tactical or operational nature.
\n\tReview audit reports for factual accuracy and ensure that correct action owners were identified.
\n\tReview the feasibility of agreed actions and facilitate closure of audit findings.<\/p>\n

\u00a0Training and Awareness<\/p>\n

\tOversee the development and delivery of training programs on IT governance, risk management, and compliance for employees.
\n\tPromote a culture of compliance and awareness across the organisation through workshops, seminars, and informational materials, e.g. Cybersecurity awareness, Policy Compliance, POPIA Compliance etc.<\/p>\n

\u00a0Track Remediation of all Observations<\/p>\n

\tTrack and monitor the adequate and on time remediation of observations raised by all independent assurance bodies.
\n\tRecord remediation plans and facilitate closure for ICT related control weaknesses identified.
\n\tEnsure this is done through weekly progress tracking with control owners (typically Senior Managers) and reporting.
\n\tEngage with ICT management and senior management to discuss and manage overall progress against remediation plans.
\n\tEnsure that all audit closure documents are reviewed by the appropriate stakeholders before being submitted to IA.<\/p>\n

Policy\u00a0Review\u00a0and Implementation<\/p>\n

\tLead the development and implementation of departmental policy, procedures and processes.
\n\tKeep up to date with effective policy and practice execution strategies.<\/p>\n

Reporting<\/p>\n

\tPrepare regular reports and updates for senior management and stakeholders on IT governance, risk, and compliance activities on a monthly basis or as and when required.
\n\tCommunicate risks, compliance issues, and recommendations clearly and effectively to key stakeholders.
\n\tCollaborate with IT teams, legal counsel, and business units to address compliance concerns and implement solutions.<\/p>\n

Stakeholder Management<\/p>\n

\tFacilitate and manage communication with relevant internal and external stakeholders about investments and proactively and progressively manage the relationships.
\n\tRepresent the Fund in relevant external activities and events.<\/p>\n

People Management<\/p>\n

\tEnsure the sourcing, development and retention of a high-performance team.
\n\tManage staff in the department to ensure that they achieve their objectives in line with the strategic objectives of the RAF.
\n\tManage the implementation of human capital processes and procedures to control\/regulate workplace conflict and\/or institute corrective measures and consultation processes to address deviations from standards.<\/p>\n

Qualifications and Experience<\/p>\n

\tBachelor\u2019s Degree\/ Advanced Diploma in IT\/ Risk Management\/ Audit\/ IT Governance related qualification.
\n\tPostgraduate in IT\/ Risk Management\/ Audit\/ IT Governance related qualification will be advantageous.
\n\tCertification in CISA, COBIT and ITIL.
\n\tISO 27001 certification will be an added advantage.
\n\tRelevant 6 – 8 years\u2019 experience in IT Governance, Risk and Compliance environment of which 2 years must have been on management or supervisory level.<\/p>\n

go to method of application \u00bb<\/p>\n

Apply via company website ( http:\/\/www.raf.co.za ) or<\/p>\n

 <\/p>\n","protected":false},"author":2,"featured_media":0,"template":"","meta":{"_promoted":"","_job_location":"","_application":"","_company_name":"Road Accident Fund","_company_website":"http:\/\/www.raf.co.za","_company_tagline":"The Road Accident Fund is a state insurer established by statute, it provides insurance cover to all drivers of motor vehicles in South Africa in respect of liability incurred or damage caused as a result of a traffic collision. Liability incurred in relation to property damage (such as damage to ve... read morehicles, buildings, vehicle contents) is excluded from cover.","_company_twitter":"","_company_video":"","_filled":0,"_featured":0,"_remote_position":0,"_job_salary":"","_job_salary_currency":"","_job_salary_unit":""},"job_listing_region":[11],"job-types":[12],"class_list":{"0":"post-36567","1":"job_listing","2":"type-job_listing","3":"status-publish","4":"hentry","5":"job_listing_region-gauteng","7":"job-type-full-time"},"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/job-listings\/36567","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/job-listings"}],"about":[{"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/types\/job_listing"}],"author":[{"embeddable":true,"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/users\/2"}],"wp:attachment":[{"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/media?parent=36567"}],"wp:term":[{"taxonomy":"job_listing_region","embeddable":true,"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/job_listing_region?post=36567"},{"taxonomy":"job_listing_type","embeddable":true,"href":"https:\/\/jobs.dataaxisnode.com\/southafrica\/wp-json\/wp\/v2\/job-types?post=36567"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}