ICT Governance and Compliance Administrator

PayInc is a purpose-driven payments provider building on over 50 years of trusted history in South Africas payments ecosystem. Our mission is to connect people businesses and economies through secure efficient and inclusive digital payments infrastructure and to be a catalyst for financial inclusion and economic growth. From EFTs and cards to PayShap PayInc provides the backbone that enables money to move safely across the economy. At our core we exist to make great connections empowering participation enabling growth and ensuring no one is left behind.

PURPOSE
As an IT Governance and Compliance Administrator you are required to / responsible for: -

Supporting the definition implementation monitoring and auditing of standards policies and procedures for the effective management of IT governance and compliance that ensures that the required IT compliance and governance practices are established and implemented so that IT goals deliver value and mitigate risks such that they support the business needs of the organisation

You will engage with the following stakeholders:

• ICT team members for Vulnerabilities within the IT Estate
• ICT Risk and Governance forum members
• ICT compliance and governance teams
• IT security team
• Business Support team

Your key responsibilities include:
Vulnerability management

• Coordinate the weekly vulnerability scanning activities through engagements in the PCI compliance forum and driving the Business as usual (BAU) compliance tasks planning tracking and reporting.
• Track remediation efforts and ensure timely closure of identified vulnerabilities.
• Support the function of ensuring that Vulnerabilities of the entire IT Estate are addressed and reduced to a minimum

ICT Compliance

• Review dashboards and reports from file integrity monitoring tools.
• Track anomalies and support the drive to implementation of required changes or escalations.
• Coordinate the collection of evidence required for PCI DSS compliance.
• Ensure timely and accurate submission of evidence to the Qualified Security Assessor (QSA).
• Monitor and alert all upcoming expirations identifying key requirements and issues with software license compliance

ISO 27001 Assessments

• Monitor and track compliance requirements aligned with ISO 27001 standards.
• Support internal audits and assist in the implementation of corrective actions.

ICT Governance

• Maintain and update the Policy master record for the CIO Division.
• Facilitate the periodic review and update of IT governance documents.
• Maintain a centralised repository for governance documentation ensuring version control and accessibility.
• Ensuring that the GRC database is updated with the latest Governance documents.

Key Competence required for this role

• Technical specialist or analytical skills acquired through tertiary education or equivalent experience
• Problem-solving skills
• Must be able to understand detailed written procedures technical instructions company policies legislation system specifications and factual reports.
• Communicate verbally and negotiate with internal customers
• Influence practice policies and strategy by suggesting improvements where necessary
• Allocation coordination and supervision of tasks assigned to the various ICT teams

QUALIFICATIONS / KNOWLEDGE

• Appropriate diploma/certificate i.e. Matric
• Bachelors or equivalent 3-year degree
• 3 to 5 years experience in the related field
• Working knowledge of the ICT environment

EXPERIENCE

• 3 to 5 years experience in the related field
• Working knowledge of SharePoint sites and Microsoft Office suite of products (Word Excel PowerPoint Visio etc)