IT Risk Manager

Job Description

Hello Future IT Risk Manager

Welcome to FNB, the home of the #changeables. We design for the shapeshifters and deliver products and services that make us incredibly proud of people that make it happen.

As part of our talent team, you will be surrounded by unique talents, diverse minds, and an adaptable environment that lives up to the promise of staying curious. Now’s the time to imagine your potential in a team where experts come together and ignite effective change.

Overview of the role and requirements:

• To provide specialist advice and guidance to the IT Risk Community and the to ensure appropriate development and implementation of an IT Risk management programme to support the business in achieving its strategic objectives in accordance with FNB governance and IT Risk requirements.
• The successful candidate must have experience in mainframe applications, cloud-based applications and display a firm level of understanding of global banking applications and uses.
• The successful candidate must have experience in the technology side of banking e.g. core banking applications; architecture/infrastructure; financial/data systems; payments etc.
• The successful candidate must have sufficient experience within the banking industry or alternatively, a consulting firm with extensive experience servicing the banking industry.

You will be responsible for:

• Reporting on IT Risk related losses in line with operational risk requirements.
• Embedding a culture of consciousness and transparency for risk management and ensuring that the nature and size of IT risks are well understood and owned at the right levels within the business.
• Cultivating and managing objective working relationships with Segment/Divisional/Business Unit IT structures.
• Engaging with a diverse group of IT, Risk and Business representatives, including CROs, CIOs, and Information Security Officers while maintaining overall independence.
• Maintenance of expert knowledge on relevant legislative amendments, industry best practices and the provision of proactive advice and solutions to relevant stakeholders (both from the SA and Broader Africa perspectives).
• Providing guidance to the various Business Units in interpreting, adapting and driving the implementation of the FRG/FNB IT Risk Framework and ensuring alignment with business specific requirements.
• Providing advice and support to applicable Business Units to ensure that IT Risk governance is fully functional and maintained in accordance with FNB governance (i.e. IT, Business and Risk requirements).
• Providing subject-matter expert input and support in the development and implementation of FNB-wide IT Risk strategy and planning, taking into consideration key IT risks and issues prevalent across the business. This includes the continuous assessment of risk issues/incidents/events to identify trends that would require remedial actions/solutions.
• Monitoring, identifying and communicating new and emerging technology-related threats (both internal/external), testing the adequacy of existing controls in relation to this and recommending actions for improvement.
• Regular review of key technology processes to determine compliance and control gaps, including the facilitation of root-cause analysis exercises to identify trends and appropriate solutions.
• Providing guidance and support in the implementation of process-based IT Risk and Control assessments within business.
• Leading or partnering with Business and IT in the identification/assessment of IT risks within key/assigned projects, including mitigation and resolution strategies.
• Advising and providing support to business in implementing suitable plans to mitigate identified risks and issues, as well as to improve identified control weaknesses in a cost effective and practical manner.
• Continuously monitoring levels of IT-related risks across the business by tracking the implementation of management action plans to mitigate or address identified risks, issues, as well as any audit findings raised.
• End-to-end management of the reporting process and consolidation for regular internal and periodic statutory reporting responsibilities.
• The ability to communicate an accurate and complete view of the IT Risk profile (with its various elements) and in a manner that guides actionable management decisions.
• Providing IT Risk services in-line with business expectations.
• Managing the conceptualisation, planning, and delivery of IT Risk across the business.
• Management of specific IT Risk projects (as/when assigned).
• Driving the capability development/capacity building of stakeholders in areas of specialisation (utilising IT Risk methods, tools, processes and frameworks).

What you will need:

• 3 - 5 years experience in an IT Risk role/similiar environment.
• 5 years experience in a banking environment or similiar.
• Relevant degree in Information Technology, Computer Science and/or Risk Management.
• Risk management accreditation/certification is advantageous i.e. from IRMSA (The Institute of Risk Management South Africa) or the PRM (Professional Risk Managers’ International Association) etc.

We can be a match if you can:

• Strong senior stakeholders management skills.
• Strong presentation skills.
• Able to hit the ground running.
• Effective written and verbal communication skills.
• Strong communication and interpersonal skills.
• Able to work well under pressure.

You will have access to:

• Opportunities to network and collaborate.
• Challenging work.
• Opportunities to innovate.

#Post

#FNB

#LI-NN2

Are you interested to take the step? We look forward to engaging with you further. Apply now!

Job Details

Take note that applications will not be accepted on the below date and onwards, kindly submit applications ahead of the closing date indicated below.

12/03/26