Head, Internal Audit - Information & Cyber Security (GIA)
Johannesburg, South Africa
Standard Bank Group
The Standard Bank group is a leading financial services provider that supports Africa’s growth and development.Company Description
Standard Bank Group is a leading Africa-focused financial services group, and an innovative player on the global stage, that offers a variety of career-enhancing opportunities – plus the chance to work alongside some of the sector’s most talented, motivated professionals. Our clients range from individuals, to businesses of all sizes, high net worth families and large multinational corporates and institutions. We’re passionate about creating growth in Africa. Bringing true, meaningful value to our clients and the communities we serve and creating a real sense of purpose for you.
Job Description
To lead and review the audit process for Information and Cyber Security across the group in line with the Group Internal Audit strategy to provide independent and objective assurance and advice within a segment or area of expertise to ensure sustainable client centric management of risk across SBG.
- Contribute to the development and implementation of GIA's strategy and operating model by applying insights from the SBG strategy and operating model, business unit strategy and operating model, products, services, client-base and competitive environment, industry and wider developments, regulatory environment, business developments and changes, operations, risk management practices and global assurance practices
- Assess, identify and report on practices in the audit portfolio which negatively impact client experience and raise recommendations to improve client experience.
- Implement the people plan for the portfolio to attract, retain, develop, manage and lead people capable of delivering GIA's objectives. Monitor the effectiveness of the plan and provide regular feedback to inform further development and improvements to the plan.
- Contribute to the development of GIA's data strategy. Implement the strategy across the portfolio.
- Contribute to GIA's technology strategy and implementation. Apply insights on practical audit needs, and from leading technology developments in wider fields, in financial services, within SBG and in risk and assurance practices.
Qualifications
- Post Graduate Degree - IT/ Information Systems/Information Security (Min)
- CISA (Min)
- CISM (Preferred)
- CISSP (Preferred)
- Cloud Security certifications (AWS/Azure) (Preferred)
Additional Information
Experience Required
10 Years + Proven experience in IT Security and audit project management. Experience in building partnerships and engaging with multiple stakeholders at senior levels across the ecosystem. Experience in understanding and evaluating security controls across various technology platforms. Experience in leading large teams; Change management experience.
Behavioural & Technical Competencies
Making Decisions: This competency is about the pace at which individuals are prepared to make decisions, as well as their willingness to take responsibility for their decisions when under pressure. It also deals with the extent to which individuals are definite about their views and opinions.
Upholding Standards: Upholding Standards within the organisation is important for ensuring that high quality products and services are provided as well as for ensuring that trust is created and maintained. Individuals need to focus on developing proper and discreet behaviour and to honour their commitments in order to be effective at demonstrating this competency.
Developing Strategies: This competency includes facets of behaviour such as being visionary and establishing effective plans that take into consideration long-term aspects. This competency also includes the need for individuals to focus on identifying trends.
Internal Auditing: The ability to follow a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes in accordance with the IA professional standards to enhance and protect organisational value
Maintain IA Professional Practices: Knowledge of Internal Audit International Professional Practices and apply them to improve the audit methodology, and as a quality standard for audit engagement deliverables to ensure continuous improvement of the audit function.
IA Technology Application: The ability to utilise technology to source and analyse data that supports the internal audit process (risk assessments, full population testing) and drive visual presentation
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits AWS Azure CISA CISM CISSP Cloud Governance Risk assessment Risk management Strategy
Perks/benefits: Career development Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Analyst jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs