Job Description
IT Risk Manager Job. The IT Risk Manager holds a critical role within organizations, responsible for overseeing and managing all aspects of information technology (IT) risk. Through collaboration with cross-functional teams, the IT Risk Manager identifies vulnerabilities, assesses potential impacts, and recommends proactive measures to strengthen the organization’s resilience against cyber threats and data breaches.
Responsibilities of IT Risk Manager Job
- Liaise with Legal, Risk, and Compliance teams to sign off forms and documents.
- Ensure adherence to all relevant statutory requirements e.g., Excon, FAIS, FICA, etc.
- Adhere to company procedures and audit requirements.
- Document risks and controls in accordance with FirstRand standards and frameworks.
- Assess process adherence and enable the business to function within an adherence level in conjunction with Risk, Audit, and business.
- Ensure appropriate levels of management and accountability.
- Motivate, delegate, and empower appropriately, enabling direct reports to take responsibility and display appropriate creativity and initiative.
- Work with the team to actively grow their skills and lead them in operational excellence.
- Demonstrate pride in the organization’s brand services and products by consistently delivering on the brand promise.
- Follow through to ensure that personal quality and productivity standards are consistently and accurately maintained.
- Stay relevant and up to date with legislation and new developments.
- Maintain a positive attitude and respond openly to feedback.
- Handle stress in ways that do not negatively impact others.
- Take ownership of personal career development leveraging formal and informal opportunities.
- Read situations and organizational realities.
- Set aside personal agenda for the greater good.
- Act in an ethical transparent and morally defensible manner including highlighting unethical practices.
- Share debate and communicate learnings.
Requirements
- Bachelor’s degree in information technology, computer science, cybersecurity, risk management, or a related field.
- Proven experience in IT risk management, cybersecurity, or information security roles.
- Strong understanding of IT systems, networks, and infrastructure.
- Familiarity with industry standards and frameworks such as ISO 27001, NIST Cybersecurity Framework, or COBIT.
- Proficiency in risk assessment methodologies and tools.
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills, with the ability to liaise effectively with stakeholders at all levels.
- Ability to develop and implement risk management strategies, policies, and procedures.
- Knowledge of regulatory requirements and compliance standards related to IT security and data protection.
- Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Security Auditor (CISA) are advantageous.
- Ability to stay updated with emerging threats, vulnerabilities, and best practices in IT risk management and cybersecurity.