Third Party Risk Manager, Bellville
Third Party Risk Manager, Bellville
-
Bellville, South Africa -
Posted: a week ago
-
Save -
Share
Description
Santam Group has a career opportunity for a Third-Party Risk Manager in the Santam Technology Services (STS) department which will be based at Santam Head Office in Bellville in the Western Cape.
KEY RESPONSIBILITIES The primary responsibility of the Third-Party Risk Manager:
Implement the Third-Party Governance and Risk Management Framework in alignment with the System of Governance for IT across the Santam Group.
Assist in designing and implementing policies, standards, and procedures to protect sensitive data and ensure operational continuity.
Identifying, monitoring and responding to third-party incidents and risks, and advising management on mitigation strategies.
Assist with the preparation of the Santam Group IT Governance, Risk and Information Security Report for the Santam Risk Committee and Board.
Prepare the Third-Party IT-related risks.
Conduct regular training and awareness sessions (in person, virtual or training material) regarding third‑party risk management and the roles the various parties play in the management of IT Risk at third parties.
QUALIFICATIONS AND EXPERIENCE
CISA / CRISC or CCSP or similar certification
3 to 5 years of IT Audit / IT Risk Management / Third‑Party Risk Management work experience
Solid technical skills around IT and cybersecurity controls.
COMPETENCIES Influence and Communication:
Stakeholder Engagement: Skill in engaging and building rapport with stakeholders at all levels, effectively communicating third‑party IT risk management concepts and concerns.
Persuasion: Promoting a risk‑conscious culture across the organisation.
Collaboration and Teamwork:
Cross‑Functional Collaboration: Proficiency in collaborating with diverse teams, including IT, legal, compliance, and the business units.
Build Partnerships: Building partnerships and working collaboratively with others to meet shared objectives.
Team Leadership: Ability to lead, motivate, and manage the various teams, fostering a collaborative and high‑performance work environment. Be a team player and willingness to assist others as well as ability to work independently.
Adaptability and Continuous Learning:
Adaptability: Ability to adapt to change and challenges. Ability to rebound from setbacks and adversity when facing difficult situations.
Continuous Improvement: Eagerness to stay updated with trends and a commitment to ongoing self‑improvement.
Learning Agility:
Curiosity and Open‑Mindedness: Demonstrating a willingness to learn, adapt, and explore new concepts.
Cultural Influence and Education:
Education and Training: Capability to educate employees about risks, fostering a culture of risk awareness.
Regulatory and Compliance Knowledge:
Regulatory Awareness: Understanding of relevant legislation that has a bearing on IT matters, industry regulations, and compliance requirements relevant to the organization's industry.
Conflict Resolution and Negotiation:
Conflict Management: Skill in resolving conflicts and disagreements constructively.
Negotiation: Ability to negotiate with stakeholders to balance risk‑based requirements with business requirements.
ADDITIONAL COMPETENCIES AND SKILLS Technical Proficiency:
Risk Assessment: Proficiency in conducting thorough IT risk assessments, identifying weaknesses, and evaluating potential risks.
Technical Compliance: Strong understanding of industry standards, regulations, and best practices such as Cobit, ISO 27000 series, applicable Joint Standards, ITIL and King IV
Presentations: Proficiency in building PowerPoint decks to assist in conveying key messages
Risk Management: Skill in assessing and prioritising risks, as well as developing and implementing risk mitigation strategies.
Communication and Collaboration:
Stakeholder Engagement: Strong communication skills to engage with executives, technical teams, and non‑technical stakeholders about risk matters.
Cross‑Functional Collaboration: Ability to collaborate with IT, legal, compliance, and business teams to integrate security practices across the organisation.
Problem Solving and Decision Making:
Analytical Thinking: Proficiency in analysing complex issues, assessing potential impacts, and making informed decisions.
Critical Thinking: Capability to evaluate incidents and risks to devise effective solutions.
Santam is committed to diversity, inclusion, and belonging. As an equal opportunity employer, we encourage applications from candidates of all backgrounds, including persons with disabilities. We are dedicated to neuro‑inclusivity and fostering a workplace where everyone can thrive.
#J-18808-Ljbffr
KEY RESPONSIBILITIES The primary responsibility of the Third-Party Risk Manager:
Implement the Third-Party Governance and Risk Management Framework in alignment with the System of Governance for IT across the Santam Group.
Assist in designing and implementing policies, standards, and procedures to protect sensitive data and ensure operational continuity.
Identifying, monitoring and responding to third-party incidents and risks, and advising management on mitigation strategies.
Assist with the preparation of the Santam Group IT Governance, Risk and Information Security Report for the Santam Risk Committee and Board.
Prepare the Third-Party IT-related risks.
Conduct regular training and awareness sessions (in person, virtual or training material) regarding third‑party risk management and the roles the various parties play in the management of IT Risk at third parties.
QUALIFICATIONS AND EXPERIENCE
CISA / CRISC or CCSP or similar certification
3 to 5 years of IT Audit / IT Risk Management / Third‑Party Risk Management work experience
Solid technical skills around IT and cybersecurity controls.
COMPETENCIES Influence and Communication:
Stakeholder Engagement: Skill in engaging and building rapport with stakeholders at all levels, effectively communicating third‑party IT risk management concepts and concerns.
Persuasion: Promoting a risk‑conscious culture across the organisation.
Collaboration and Teamwork:
Cross‑Functional Collaboration: Proficiency in collaborating with diverse teams, including IT, legal, compliance, and the business units.
Build Partnerships: Building partnerships and working collaboratively with others to meet shared objectives.
Team Leadership: Ability to lead, motivate, and manage the various teams, fostering a collaborative and high‑performance work environment. Be a team player and willingness to assist others as well as ability to work independently.
Adaptability and Continuous Learning:
Adaptability: Ability to adapt to change and challenges. Ability to rebound from setbacks and adversity when facing difficult situations.
Continuous Improvement: Eagerness to stay updated with trends and a commitment to ongoing self‑improvement.
Learning Agility:
Curiosity and Open‑Mindedness: Demonstrating a willingness to learn, adapt, and explore new concepts.
Cultural Influence and Education:
Education and Training: Capability to educate employees about risks, fostering a culture of risk awareness.
Regulatory and Compliance Knowledge:
Regulatory Awareness: Understanding of relevant legislation that has a bearing on IT matters, industry regulations, and compliance requirements relevant to the organization's industry.
Conflict Resolution and Negotiation:
Conflict Management: Skill in resolving conflicts and disagreements constructively.
Negotiation: Ability to negotiate with stakeholders to balance risk‑based requirements with business requirements.
ADDITIONAL COMPETENCIES AND SKILLS Technical Proficiency:
Risk Assessment: Proficiency in conducting thorough IT risk assessments, identifying weaknesses, and evaluating potential risks.
Technical Compliance: Strong understanding of industry standards, regulations, and best practices such as Cobit, ISO 27000 series, applicable Joint Standards, ITIL and King IV
Presentations: Proficiency in building PowerPoint decks to assist in conveying key messages
Risk Management: Skill in assessing and prioritising risks, as well as developing and implementing risk mitigation strategies.
Communication and Collaboration:
Stakeholder Engagement: Strong communication skills to engage with executives, technical teams, and non‑technical stakeholders about risk matters.
Cross‑Functional Collaboration: Ability to collaborate with IT, legal, compliance, and business teams to integrate security practices across the organisation.
Problem Solving and Decision Making:
Analytical Thinking: Proficiency in analysing complex issues, assessing potential impacts, and making informed decisions.
Critical Thinking: Capability to evaluate incidents and risks to devise effective solutions.
Santam is committed to diversity, inclusion, and belonging. As an equal opportunity employer, we encourage applications from candidates of all backgrounds, including persons with disabilities. We are dedicated to neuro‑inclusivity and fostering a workplace where everyone can thrive.
#J-18808-Ljbffr
Highlights
-
Company nameSantam Insurance -
Job positionThird Party Risk Manager
-
Flag -
Block ad
Safety Tips
Be careful with commission-based ’work-from-home’ positions that offer an unrealistically high income.
Related searches
More info about this ad
Third Party Risk Manager has been posted in the Bellville Other Jobs category on Locanto.
If you’re still wanting to browse, there is so much to explore in the Other Jobs category! Take a look at the ads Engineering Planner, Potgietersrus, Technician, Secunda and Credit Collections Department Manager (CH1225) in Kuils River to discover more of what you’re looking for. In total, we have 46 ads in Other Jobs in Bellville on Locanto classifieds.
There are more ads within a 15 km radius for this category. If you want to view those ads, click here.
