Job Description

Closing Date 2025/09/18
Reference Number MMH241003-1
Job Title Senior Group IT Risk Manager
Position Type Permanent
Role Family Information Technology
Cluster Group Digital and Technology Office
Remote Opportunity Some of the time
Location - Country South Africa
Location - Province Gauteng
Location - Town / City Centurion
Introduction
Momentum Group is a South African-based financial services group. Our retail and specialist brands drive to build and protect our client's financial dreams. We help people grow their savings, protect what matters to them and invest for the future. We help companies and organisation's care for and reward their employees and members.
Momentum Group is one of South Africa's largest life insurers and integrated financial services companies, operating through brands like Momentum, Metropolitan, Guardrisk, and Eris Properties. Through our own network of advisers or via independent brokers and utilising new platforms Momentum Group provides practical financial solutions for people, communities, and businesses. Visit us at www.momentumgroup.co.za
Disclaimer As an applicant, please verify the legitimacy of this job advert on our company career page.
Role Purpose
Engage and Partner with all Business Units within Momentum Group and other assurance providers to provide a consolidated view of the Momentum Group IT Risk profile.
Requirements

• Degree in Risk Management or related field.
• 7-10 years experience in a relevant industry.
• 3+ years experience in a managerial capacity within a Risk and/or Compliance function.
• Relevant industry and technical knowledge.
• Knowledge of risk management.
• Quantitative, financial and accounting knowledge.
• Knowledge of regulatory, legislative, governance risk and compliance landscape.
• Understanding of Enterprise Risk Management (ERM), Own Risk and Solvency Assessment (ORSA) and Solvency Assessment and Management (SAM) practices and philosophy and relevant local legislation and regulations impacting risk management.
• Registered with the Institute of Risk Management South Africa (RMSA)
• Registered with the Institute of Compliance South Africa (ICSA)

Duties & Responsibilities
INTERNAL PROCESS

• Build strong relationships with internal and external stakeholders at all levels as well as IT senior executives with Momentum Group.
• Build strong relationship with the wider Risk, Legal and Compliance community to remove hurdles and obstacles and co-create an empowered and IT risk-aware culture in the Group.
• Engage with relevant Momentum Group CRO, Head of IT Risk and IT Risk Managers to assess the Group IT Risks.
• Coordinate the IT Risk Management Combined Assurance Workshop in support of the Group Digital and Technology Chief Risk Officer.
• Engage with the BU IT Risk Heads / Managers and CRO to define the Momentum Group umbrella risks.
• Provide the required risk support and guidelines to the business unit IT risk teams, ensuring they are operationally sound and managing compliance with regulations relating to IT governance and risk management, cyber risk and third party management.
• Engage with relevant internal stakeholders to advise them on the risk profile and to keep them in the loop of issues that need to be escalated

Quarterly IT risk reporting to the relevant executive communities. * Strong collaboration with the Group IT security team to understand the cyber risks posture of the Group and to support in the cyber joint standard initiatives.

• Strong collaboration with the Group Data privacy team to assess the data security and privacy concerns in relation to information risk within the Group.
• Strong collaboration and working with the Group Technology risk team to assess the overall technology risk within Momentum Group.
• Identify changing business unit needs in terms of IT risk management and reporting; and incorporate business unit feedback into improved the group IT risk management processes and systems.
• Identify and drive ongoing efficiencies, e.g. through automation - automated assurance.
• Apply specific technical and business insights in liaising with business unit IT risk managers/officers to understand, manage and optimise end-to-end risk identification, assessment, monitoring, quantification, treatment and reporting processes.
• Work closely with business to both flag and mitigate material IT risks.
• Produce Technology and Information Risk reports highlighting areas of concern, opportunities and anything requiring further investigation.
• Work closely with business units to co-create plans and solutions and ensure proactive risk management is embedded in their processes.
• Conduct regular interviews to assess and monitor risks.
• Continuously monitor and evaluate the overall risk profile across the risk spectrum for relevant department(s) to provide a combined assurance view.
• Ensure the audit plan speaks to the risks identified in the risk plan.
• Participate in internal group forums to ensure local business is kept abreast of relevant Risk events and initiatives, take note of key action points and follow-through to ensure execution.
• Identify internal and external IT Risk trends .
• Access different databases, newsletters and newspapers and prioritise what is relevant to understanding the broad Risk environment.
• Enhance relationships between own function and key internal and external stakeholders to improve reporting and wider understanding of the risk profile.

Lead by example in contributing to a culture that builds rewarding relationships, facilitates feedback and provides exceptional client service.
CLIENT SERVICE

• Build and maintain relationships with clients and internal and external stakeholders.
• Deliver on service level agreements made with clients and internal and external stakeholders in order to ensure that client expectations are managed.
• Make recommendations to improve client service and fair treatment of clients within area of responsibility.

PEOPLE

• Participate and contribute to a culture which builds rewarding relationships, facilitates feedback and provides exceptional client service.
• Develop and maintain productive and collaborative working relationships with peers and stakeholders.
• Positively influence and participate in change initiatives.
• Continuously develop own expertise in terms of professional, industry and legislation knowledge.
• Contribute to continuous innovation through the development, sharing and implementation of new ideas.
• Take ownership for driving career development.

FINANCE

• Identify solutions to enhance cost effectiveness and increase operational efficiency.
• Manage financial and other company resources under your control with due respect.
• Provide input into the risk identification processes and communicate recommendations in the appropriate forum.

Competencies

• Written and verbal communication skills.
• Presentation skills.
• Influencing skills.
• Negotiation skills.
• Assertiveness
• Relationship management.
• Analytical skills.
• Attention to detail.
• Planning and organising skills.
• Examining Information.
• Convincing People.
• Embracing Change.
• Providing Insights.
• Challenging Ideas.
• Upholding Standards.
• Developing Strategies.
• Conveying Self-Confidence.

Policy
We are committed to Employment Equity, diversity and inclusion when recruiting internally and externally. All appointments are made in alignment to our Employment Equity goals and we encourage people with disabilities to apply.

Skills Required