Senior Specialist: Technology Assurance

When it comes to putting people first, we're number 1.The number 1 Top Employer in South Africa.Certified by the Top Employer Institute 2025.Role PurposeTo provide assurance within Technology across the in Vodacom South Africa covering the areas of Cyber Security, and GITC including governance & reporting, independent assurance, risk & control guidance and continuous monitoring of the Risk and Controls environment.Your responsibilities will include:Design of Risk and Controls Matrices (RCMs) and execution of assessments against RCMsPeriodic reporting on reviews of the control's environment and remediation of gaps identifiedPerform reviews on technology processes, systems, infrastructure and network infrastructure across the Cyber Security and GITC environments with the aim of proactively enhancing the control environment.Guiding management on recommendations for closure of control gaps found.Control design and implementation across the Cyber Security and GITC environments within Technology and related processesReporting on Technology assurance related matters at the Technology Assurance Steerco, Risk Management Steerco, Fraud Steerco, Cyber Security Steerco, and audit Committee.Server as a domain lead and subject matter expert for end-to-end governance related matters within a specific Technology domain.Process Governance and Quality – Design, implement and monitor policies, processes, procedures as requiredThe ideal candidate for this role will have:A relevant IT/Technology Degree (e.g., BSc Computer Science/Engineering, BCom Informatics)Relevant certifications would be advantageous, such as CISA, CISM, CRISK, CISSP, ITIL etc.Overall experience 5 - 8yrs, inclusive of:At least 5-8 years' experience in risk, assurance, controls and compliance management in a technology environmentAt least 5 years' experience in Technology Security or a Technology Audit function would be advantageous.At least 3-5 years' experience in process definition and management is advantageous.A relevant Technology post graduate degree\diploma will also be an added advantage.Core Competencies, Knowledge, and ExperienceIT Audit, Risk Management or Cyber Security in large enterprises is required.Relevant Frameworks (CISA, SOX, ISO 27001/27002, CISSP) preferableTechnical/Infrastructure knowledge is required i.e., detailed knowledge of at least three of the following platforms:Operating Systems (LINUX, Windows)IT Networks, Firewalls, VPNsDatabases (SQL, Oracle, MySQL etc)GSM Network InfrastructureSecurity and Development knowledge is advantageous.Linux Kali and associated toolsAsset discovery techniquesScripting (Linux bash, JavaScript etc)Python/PHP or other programming languagesZoning, DDos detection, Web Traffic filtering, Malware, IDPSPatching, Vulnerability Management, Pen Test techniquesPersonal attributes requiredGrasping of technical concepts rapidly and the ability to articulate these concepts to technical and non-technical audiences.Strong analytical and documentation skillsGood client engagement skillsGood interpersonal and presentation skillsWe make an impact by offering:Enticing incentive programs and competitive benefit packagesRetirement funds, risk benefits, and medical aid benefitsCell phone and data benefits, advantages fibre connection discounts, and exclusive staff discounts offered in collaboration with partner companiesClosing date for Applications: 14 May 2025.The base location for this role is Midrand, Vodacom Campus.The company's approved Employment Equity Plan and Targets will be considered as part of the recruitment process.
As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.Vodacom is committed to an organisational culture that recognises, appreciates, and values diversity & inclusion.
#J-18808-Ljbffr