Group Technology Risk Head

Group Technology Risk Head Location: Johannesburg Job Description To provide group-wide leadership, oversight and challenge of technology (including IT and Cyber risk), data risk, ensuring that risks arising from digital platforms, data usage, and system change are identified early, assessed consistently, and actively managed in line with Group risk appetite and regulatory expectations. The role focuses on practical risk enablement, effective governance, and supporting informed decision making across the Group rather than operational ownership of technology delivery. Own and maintain the Group risk frameworks, policies, standards and methodologies for technology and data risk. Provide oversight to ensure consistent application of these requirements frameworks across businesses, platforms and programmes. Identify emerging risk themes linked to digital transformation, cloud adoption, data use, and complex change. Maintain a consolidated Group view of technology and data risk profile. Set and monitor group risk appetite statements Provide independent risk challenge to significant technology initiatives, system changes and transformation programmes. Ensure material risks, control weaknesses and risk trade-offs are clearly articulated and escalated. Support governance forums with clear, decision useful risk insight, not compliance only reporting. Ensure risk considerations are embedded early in design and change decisions. Ensure effective and positive stakeholder engagement with IT, cyber and data business executives including but not limited to running and attending the appropriate executive meetings and project management steering committees. Oversee Group level data risk principles, including information governance, data quality, lineage, ownership and risk reporting reliability. Enable effective risk data aggregation and reporting capabilities. Challenge the adequacy of controls supporting critical data assets and regulatory reporting. Act as Group risk lead for technology, data and change-related regulatory engagement. Ensure timely, accurate and consistent regulatory reporting and responses. Monitor emerging legislation and supervisory expectations and assess Group impact. Ensure compliance with IT risk, cybersecurity, data risk and change risk related legislation and directives as it pertains to risk. Close collaboration with the Group Compliance team is required. Strengthen a practical risk culture within technology and transformation environments. Enable segment risk teams through guidance, challenge and shared practices. Promote consistent risk language, assessment standards and escalation discipline. Oversee the identification and tracking of key risk indicators, issues and remediation actions. Ensure effective coordination with assurance providers to maintain a clear view of control effectiveness. Drive closure of material findings and recurring risk themes. Lead and develop a specialist team responsible for technology, data and change risk oversight in Enterprise risk management team. Set clear outcomes and priorities aligned to Group risk themes, regulatory expectations and material change activity. Provide coaching, guidance and quality assurance to ensure consistent, high quality risk input, challenge and escalation. Foster a collaborative, pragmatic risk culture that enables delivery while maintaining appropriate independence. Manage the allocated budget for the Technology Risk function. Ensure cost discipline and effective use of specialist resources, tools and external support where required. Support planning and prioritisation decisions to ensure capacity is focused on the most material risk areas and change initiatives. Important Closing Date Note Take note that applications will not be accepted on the below date and onwards, kindly submit applications ahead of the closing date indicated below. 12/06/26 All appointments will be made in line with FirstRand Group’s Employment Equity plan. The Bank supports the recruitment and advancement of individuals with disabilities. In order for us to fulfill this purpose, candidates can disclose their disability information on a voluntary basis. The Bank will keep this information confidential unless we are required by law to disclose this information to other parties.