Career Listings

Believe Resourcing currently has a number of vacancies available. Whether you’re starting a new career or looking for a change of environment or location, you can browse our available listings below and apply directly. 

Job Title
Analyst - IT Governance, Risk & Compliance (IT GRC)
Employment Type
5 to 7 years
R427228 to R671593
Job Published
05 April 2022
Job Reference No.

Job Description

Analyst - IT Governance, Risk & Compliance (IT GRC)

Cape Town

1-year contract

Salary is negotiable between R427 228 and R671 593 for the 12-month contract term.


The Position:

In line with its commitment to sustainable growth and good governance, the university is seeking to employ an IT Governance, Risk & Compliance (IT GRC) Analyst in its Information & Communication Technology Services (ICTS) department on a 12-month, fixed-term contract basis. This role reports to the Senior GRC Manager in the IT Governance Support Services (GSS) division of the ICTS department.

The environment is results-driven and one where team members are trusted, supported, and empowered to grow, where healthy work-life balance is promoted, contributions are valued, and achievements are celebrated.

A hybrid, remote working model is on offer, and while occasional, onsite engagements at the Cape Town-based offices may be required, most of the work and engagements are conducted virtually.

The ideal candidate will: have excellent verbal, written and inter-personal communication skills with the ability to develop strong stakeholder relationships and manage expectations; be service-oriented and results-driven with a track record of delivery with attention to detail and within agreed timelines; have strong analytical thinking and problem-solving skills; be skilled at planning, time management and coordinating activities; demonstrate high levels of enthusiasm, initiative and adaptability; have a track record of accountability, taking ownership, following through on commitments and driving tasks through to completion; work well independently and as part of a closely-knit team, contributing toward the team’s performance and growth.


Purpose of the Position:

The IT GRC Analyst will play a pivotal role in supporting the senior GRC manager in maturing the IT GRC processes and practices by assisting with: (i) IT policies, procedures, and processes; (ii) IT Risk Management; (iii) Quality Assurance & Compliance Management: (iv) Testing of Controls; (v) Management Reports.


Main Duties and Responsibilities include:

  • GRC Projects:
    • Assist with the scoping, planning, execution and monitoring of certain GRC-related projects.
  • IT Governance:
    • Assist with the definition and implementation of Key Performance Indicators across the ICTS department;
    • Assist with the development of RACI matrices for various IT processes;
    • Assist with the development and documentation of IT-related policies and procedures.
  • IT Risk Management for Operational & Project risks – periodic support of:
    • Identification & assessment of IT risks
    • Monitoring of the implementation of mitigating controls
    • Maintenance of the risk and issues register
  • IT Quality Assurance & Compliance Management:
    • Support of internal audits and assessments against adopted standards (e.g. COBIT, ISO27001 etc.) to assist with compliance management and the improvement of IT / business processes.
    • Assist with quality assurance reviews of IT Projects, within the ICTS project office, against project management industry standards adopted.
    • Assist with documenting and performing Compliance review and testing procedures.
  • IT Processes and Controls:
    • Support of the design and implementation of IT Processes and Controls within the ICTS department aligned with adopted standards and frameworks.
    • Assist with conducting reviews and monitoring compliance with approved business processes and control frameworks within the ICTS department.
  • Internal / External Audits:
    • Co-ordination of activities required to fulfil the requirements of internal and external audits or assessments.
  • Reporting:
    • Assist with the development of GRC-related dashboard reports.
    • Assist with the preparation and dissemination of GRC management reports.

Minimum Requirements:

  • An Information Systems or IT-related qualification at a minimum NQF level 6 (National Diploma or Advanced Certificate).
  • A minimum of 5 years’ relevant IT GRC experience in an enterprise (complex) environment.
  • A thorough understanding of and experience in the use of:
    • the COBIT (IT Governance & Management) framework; and
    • an industry-recognised Risk Management framework
  • Good English verbal and written, business communication skills
  • Proficient in the use of the Microsoft Office suite.

Additional / Advantageous Requirements:

  • One of the following certifications: M_o_R, CRISC, CGEIT or an IRMSA-endorsed Risk Management certification.
  • COBIT Certification (IT Governance & Management Framework)
  • Project Management skills and experience in the use of an industry-recognised Project Management methodology.
  • Good presentation and facilitation skills.
  • Strong planning, organising, and coordinating skills.
  • inter-personal and relationship-building skills.
  • Strong negotiation and influencing skills.