Senior Manager: Information Security Governance, Risk, Compliance and Reporting

MTN


Date: 3 weeks ago
City: Roodepoort, Gauteng
Contract type: Full time

We at MTN Group are a purpose and value led organization.


At MTN Group, we believe that understanding our people’s needs and aspirations is key to creating experiences that delight you at work, everyday. We are committed to fostering an environment where every member of our Y’ello Family is heard, understood and empowered to live an inspired life.


Our values keep us grounded and moving in the right direction. Most importantly, they keep us honest. It is not something we claim to be. It is in our DNA.


As an organisation, we consider it our mission to create an exciting and rewarding place to work, where our people can be themselves, thrive in positivity and ignite their full potential. A workplace that boosts creativity and innovation, improves productivity, and ultimately drives meaningful results. A workplace that is built on relationships and achieving a purpose that is bigger than us. This is what we want you to experience with us!


Our commitments go beyond an organisational promise. It is in our leadership and managerial ethos to meaningfully partner with our employees, customers and stakeholders with a vision to realise our shared goals.


We are delighted that you are considering us as your career partner to make a mark in the world. We look forward to your application!


About the Role:

As the Senior Manager: Information Security Governance, Risk, Compliance and Reporting you will be responsible for Group Information Security governance risk, and compliance management, risk and control frameworks , development, maintenance and reporting. This also includes implementing appropriate supporting methodologies, policies and processes relating to MTN Group Information Security. The role will implement and report on information security governance, risk and compliance protocols across the MTN group.


What you'll do:

  • Lead the design, maintenance, and execution of MTN’s information security governance, risk, compliance, and reporting frameworks.
  • Develop and implement robust information security risk management processes aligned with enterprise risk management strategies.
  • Oversee information security risk assessments, performance reviews, and reporting to executive stakeholders including EXCO and Group Risk Committees.
  • Integrate information security controls into contracts, SLAs, and vendor agreements to safeguard MTN’s ecosystem.
  • Drive continuous improvement, cross-functional collaboration, and strategic alignment across operating companies (OPCOs).
  • Provide training, guidance, and support to OPCO information security teams to embed a culture of risk awareness and compliance.


What We’re Looking For:

  • A minimum of 4-year tertiary degree/diploma (BSc, Engineering, or related).
  • Manager track record of 5 years or more; with at least 3 years at the Senior Management level in the telecom industry.
  • 6-8 years working experience in managing information security in a large organisation.
  • Proven experience designing and implementing enterprise-wide information security frameworks, policies, and standards.
  • Deep expertise in Governance, Risk, and Compliance (GRC) with certifications such as CISM, CISA, CRISC, or CISSP.
  • Strong stakeholder management skills with a global mindset and Pan-African experience.
  • Flexible to travel regionally and internationally


What Will Set You Apart:

  • MBA or Masters qualification.
  • Experience working across Africa, understanding its unique political, social, and technological landscape.
  • Additional certifications: CGEIT, CBCP, ISO 27001 Lead Auditor/Implementer, ITIL.
  • Multilingual fluency in English, French, or Arabic.


Post a CV