Job Description

Closing Date 2026/02/02
Reference Number MMH251128-5
Job Title IT Operational Governance Manager
Position Type Permanent
Cluster Momentum Health
Remote Opportunity Some of the time
Location - Country South Africa
Location - Province Gauteng
Location - Town / City Sandton
Introduction
Through our client-facing brands Momentum Group, with Multiply (wellness and rewards programme), and our other specialist brands, including Guardrisk and Eris Property Group, the group enables business and people from all walks of life to achieve their financial goals and life aspirations. We help people grow their savings, protect what matters to them and invest for the future. We help companies and organisations care for and reward their employees and members.
Role Purpose
To ensure that the Management Controls within the Health IT environment are well governed and that the divisions within Health IT execute on operational control objectives within the risk appetite of the Health segment and that of Momentum Health. The role will represent IT controls on a team of Risk and Governance practitioners whose purpose it is to ensure that industry best practice management controls and risk treatment plans are in place and executed and that required monitoring and reporting on risk posture and operational controls to the Heads of IT areas and the lead of Operational Governance occurs.
Requirements

• NQF level 7
• A minimum of 10 years' experience in a relevant field, 5 years of which should be engaging at senior management level.
• A minimum of 10 years' experience working in Health Administration, 4 years of which should be in an operational governance, risk management, or forensics role.
• 8 years' experience working with management controls.
• Must have managed or participated on an initiative to implement an ISO standard.
• Proven working experience of ISO 9001, ISO 27001, ISO 27002
• Experience in and understanding of cyber forensics practices.
• Health industry - administration of medical aids
• IT Service industry - system development and implementation

Duties & Responsibilities
Internal Process

• Monitor, track and direct reporting on the treatment of Operational Risk associated with IT controls.
• Monitor, track, and direct reporting on the treatment of Audit Findings relating to IT controls.
• Ensure that the Leadership team understand ownership responsibilities and activities required to treat risk associated to IT controls.
• Consult with the Information Security Risk Manager and the Head of IT Operational Governance on the appropriate treatment of risk.
• Take accountability for ensuring Root Cause Analysis is conducted when control defects are identified and that required Management reports are produced and socialized.
• Represent the single point of contact for IT General Control issues and concerns for Momentum Health during ISAE3402 engagements.
• Work with the Project Management Office as well as the executive team to ensure that any project influencing the set of IT controls consider the maintenance/adjustment of the controls as part of the project work.
• Participate on strategic projects in an operational governance role, accountability for activities requiring review, hardening, or actioning of IT controls within the project work activities.
• Support the project team in a consultation role should the nature of the work require assurance over IT controls
• Provide management reports on controls impacted by the strategic project pipeline
• Support the IT governance activities through the provision of minute taking services for IT Leadership when required.
• Maintenance and access control for the ISMS collaboration site.
• Present Housekeeping Testing results to IT Leadership.
• Track and update progress against the IT Balance ScoreCard.

Client Service

• Support the Senior Leadership with the Establishment and maintenance of a system of management controls built in accordance to best practices and industry standards as guided by the operational governance team
• Be accountable for ensuring IT controls as agreed to by senior leadership are applied and managed within the Business units accountable for executing them
• Ensure that Risk Management practices are applied with management control assessments as prescribed by Group policies and standards
• Lead and direct and/or conduct management reviews on management controls in operation within the business unit
• Support the office of the CIO and the ISMS during assurance engagements by facilitating the provision of audit evidence
• Lead and direct the remediation of any assurance or audit findings that may be raised during assurance engagements

People

• The role has no direct reports. (Matrix structure)
• The role is expected to coach and mentor a virtual team (10 ) of operational staff working within the business capability areas
• Set and agree objectives and goals for execution
• Monitor performance against execution of operational controls and provide peer feedback to leadership

Finance

• Identify opportunities to enhance cost effectiveness and increase operational efficiency
• Manage financial and other company resources under your control with due respect
• Provide input into the risk identification processes and communicate recommendations in the appropriate forum

Competencies

• Understands how the business operates, what the key issues and risks are that drives business success; and how they impact on the commercial viability of potential ventures and the profitability of the Group
• Anticipates, meets and exceeds client's needs by creating long lasting relationships that support the client value proposition, supports their financial wellness and ensures client centricity
• Drive a sense of urgency, focus, accountability, agility and execution to deliver business results
• Actively leads change, does what is right for the business and drives continuous improvement through innovation
• Creates and maintains an open, positive working environment by generating commitment, building trust, a shared sense of purpose, empowerment in others and encouraging them to contribute to the best of their ability
• Prioritises the business interests of MM and invests in the success of the group by aligning effort across divisions
• Persuades, convinces, influences and inspires others, both within MM and externally to win support, loyalty and gain commitment to the purpose of MM
• Manages self and relationships with others effectively, deals with ambiguity, uncertainty and pressure, and provides perspective in difficult situations.
• Is sensitive to individual and cultural differences and demonstrates humility and an openness to engage people from diverse backgrounds and cultures to the mutual benefit of all parties concerned
• Takes responsibility for own development; and actively mentors, coaches and develops talent in others.
• Builds leadership bench strength for MM by providing opportunities and experiences to develop skills, competencies and business knowledge

Policy
We are committed to Employment Equity, diversity and inclusion when recruiting internally and externally. All appointments are made in alignment to our Employment Equity goals and we encourage people with disabilities to apply.

Skills Required