Job Description

Introduction

Through our client-facing brands Momentum Group, with Multiply (wellness and rewards programme), and our other specialist brands, including Guardrisk and Eris Property Group, the group enables business and people from all walks of life to achieve their financial goals and life aspirations. We help people grow their savings, protect what matters to them and invest for the future. We help companies and organisations care for and reward their employees and members.

Role Purpose

To ensure that the Management Controls within the Health IT environment are well governed and that the divisions within Health IT execute on operational control objectives within the risk appetite of the Health segment and that of Momentum Health. The role will represent IT controls on a team of Risk and Governance practitioners whose purpose it is to ensure that industry best practice management controls and risk treatment plans are in place and executed and that required monitoring and reporting on risk posture and operational controls to the Heads of IT areas and the lead of Operational Governance occurs.

Requirements

NQF level 7
A minimum of 10 years' experience in a relevant field, 5 years of which should be engaging at senior management level.
A minimum of 10 years' experience working in Health Administration, 4 years of which should be in an operational governance, risk management, or forensics role.
8 years' experience working with management controls.
Must have managed or participated on an initiative to implement an ISO standard.
Proven working experience of ISO 9001, ISO 27001, ISO 27002
Experience in and understanding of cyber forensics practices.
Health industry - administration of medical aids
IT Service industry - system development and implementation

Duties & Responsibilities

Internal Process

Monitor, track and direct reporting on the treatment of Operational Risk associated with IT controls.
Monitor, track, and direct reporting on the treatment of Audit Findings relating to IT controls.
Ensure that the Leadership team understand ownership responsibilities and activities required to treat risk associated to IT controls.
Consult with the Information Security Risk Manager and the Head of IT Operational Governance on the appropriate treatment of risk.
Take accountability for ensuring Root Cause Analysis is conducted when control defects are identified and that required Management reports are produced and socialized.
Represent the single point of contact for IT General Control issues and concerns for Momentum Health during ISAE3402 engagements.
Work with the Project Management Office as well as the executive team to ensure that any project influencing the set of IT controls consider the maintenance/adjustment of the controls as part of the project work.
Participate on strategic projects in an operational governance role, accountability for activities requiring review, hardening, or actioning of IT controls within the project work activities.
Support the project team in a consultation role should the nature of the work require assurance over IT controls
Provide management reports on controls impacted by the strategic project pipeline
Support the IT governance activities through the provision of minute taking services for IT Leadership when required.
Maintenance and access control for the ISMS collaboration site.
Present Housekeeping Testing results to IT Leadership.
Track and update progress against the IT Balance ScoreCard.

Client Service

Support the Senior Leadership with the Establishment and maintenance of a system of management controls built in accordance to best practices and industry standards as guided by the operational governance team
Be accountable for ensuring IT controls as agreed to by senior leadership are applied and managed within the Business units accountable for executing them
Ensure that Risk Management practices are applied with management control assessments as prescribed by Group policies and standards
Lead and direct and/or conduct management reviews on management controls in operation within the business unit
Support the office of the CIO and the ISMS during assurance engagements by facilitating the provision of audit evidence
Lead and direct the remediation of any assurance or audit findings that may be raised during assurance engagements

People

The role has no direct reports. (Matrix structure)
The role is expected to coach and mentor a virtual team (10 ) of operational staff working within the business capability areas
Set and agree objectives and goals for execution
Monitor performance against execution of operational controls and provide peer feedback to leadership

Finance

Identify opportunities to enhance cost effectiveness and increase operational efficiency
Manage financial and other company resources under your control with due respect
Provide input into the risk identification processes and communicate recommendations in the appropriate forum

Competencies

Understands how the business operates, what the key issues and risks are that drives business success; and how they impact on the commercial viability of potential ventures and the profitability of the Group
Anticipates, meets and exceeds client's needs by creating long lasting relationships that support the client value proposition, supports their financial wellness and ensures client centricity
Drive a sense of urgency, focus, accountability, agility and execution to deliver business results
Actively leads change, does what is right for the business and drives continuous improvement through innovation
Creates and maintains an open, positive working environment by generating commitment, building trust, a shared sense of purpose, empowerment in others and encouraging them to contribute to the best of their ability
Prioritises the business interests of MM and invests in the success of the group by aligning effort across divisions
Persuades, convinces, influences and inspires others, both within MM and externally to win support, loyalty and gain commitment to the purpose of MM
Manages self and relationships with others effectively, deals with ambiguity, uncertainty and pressure, and provides perspective in difficult situations.
Is sensitive to individual and cultural differences and demonstrates humility and an openness to engage people from diverse backgrounds and cultures to the mutual benefit of all parties concerned
Takes responsibility for own development; and actively mentors, coaches and develops talent in others.
* Builds leadership bench strength for MM by providing opportunities and experiences to develop skills, competencies and business knowledge