About the position
Introduction
MANCOSA is recruiting an Intermediate IT Risk Supervisor to join its dynamic Information Technology Department. This role is ideal for a detail-oriented individual with experience in IT risk management, policy enforcement, and information security governance. You will play a key role in enhancing the institution's cybersecurity posture, maintaining compliance with data protection regulations such as POPIA, and contributing to a maturing IT risk environment.
Duties & Responsibilities
Core Responsibilities Include:
- Maintain and update the IT Risk Register and support implementation of mitigation plans.
- Develop and enforce IT policies and SOPs aligned with international security frameworks (NIST, ISO 27001, CIS).
- Coordinate remediation of internal and external audit findings and prepare evidence for validation.
- Manage and document incidents and data breaches in alignment with POPIA and other regulatory requirements.
- Perform third-party risk assessments and manage the third-party risk register.
- Support IT governance forums and contribute to audit readiness and reporting.
- Collaborate with stakeholders across IT, Legal, Compliance, and Procurement for integrated risk oversight.
- Assist with security monitoring, use-case definition, and alert response validation.
Desired Experience & Qualification
Qualifications & Experience:
- Diploma or Degree in Information Technology, Information Security, or Risk Management.
- 2-3 years' experience in IT risk management, cybersecurity governance, or IT audit/compliance.
- Familiarity with data privacy laws (e.g., POPIA), GRC tools, and ITSM platforms.
Competencies:
- Strong understanding of IT risk and policy frameworks.
- Excellent documentation and written communication skills.
- Solid coordination, reporting, and stakeholder engagement ability.
- Detail-driven approach with analytical thinking and integrity.
Additional Requirements:
- Willingness to work overtime if required.
- This position is based at the MANCOSA Durban campus.
