This role will drive the governance and compliance roles within Technology department, by establishing the appropriate information technology and information security policy frameworks, driving compliance and best practice standards, and ensuring that risk management is well managed and enshrined within Technology department across functions. This role will also improve Technology Services; manage the Business Continuity program for Information Technology, ensuring that TECH services are available to the business and customers in the event of any unforeseen disruption, within the agreed service levels, including:
Policy & Governance Framework
Custodian of Technology and Security policies and process governance frameworks across functions.
Keep up- to- date with regulations and guidelines affecting information technology and information security, and continuously update TECH’s policies, standards and procedures.
Administration and management of Information Technology and Information Security processes.
Manage Technology and Security policy framework, including creation, review, update, awareness and monitoring of policies.
Risk & Audit Management
Track and report on TECH audit and risk findings, including managing TECH management forums for discussion and reporting of these findings.
Manage TECH risks and practices within Technology department; including Risk Control Self Assessments (RCSA) and IT risk registers, across functions.
Business Continuity Planning
Manage the Business Continuity Program (including IT Business Impact Analysis) within TECH, across the functions.
Manage Disaster Recovery and backup testing schedules, reporting and remedial actions.
Maintain up- to- date disaster recovery plans and ensure recovery procedures are effective for restoration of key TECH systems and therefore resumption of critical business processes.
Training Skill
Organize sharing sessions for providing guidance to TECH and driving technology best practices (ISO/IEC 27001:2013, ISO 9001:2015), while enshrining these with the TECH policies and practices.
