To oversee the design, monitoring, and continuous improvement of IT process control compliance across all technology functions within the Group. The IT Process Controls Compliance Manager ensures that all IT processes and services operate in alignment with Group policies, regulatory requirements, and international standards such as COBIT 2019, ISO 27001, ITIL4, ISO 20000, NIST CSF, and Centrals banks based on ICT Risk Management Guidelines.
The role provides independent oversight and assurance over IT control performance, control testing, and compliance reporting to drive a robust governance posture and reduce operational and regulatory risks.
Key Functional Areas and Duties
IT Process Control Framework Management
Develop, implement, and maintain the Group IT Process Control and Compliance Framework.
Define control objectives and key control indicators (KCIs) across IT operations, cybersecurity, infrastructure, and service management.
Integrate process control compliance with COBIT, ITIL, and ISO frameworks.
Conduct periodic reviews of process controls and ensure design adequacy.
Control Testing and Compliance Oversight
Lead the execution of control testing programs for IT processes and systems.
Monitor control implementation and assess operational effectiveness.
Track, validate, and report on control deficiencies and remediation progress.
Maintain an inventory of IT process controls mapped to governance domains.
Policy and Regulatory Alignment
Ensure alignment of IT process controls with Group policies, regulatory guidelines, and audit requirements.
Oversee compliance with CBK ICT guidelines, ISO 27001, and PCI DSS standards.
Serve as liaison with Internal Audit, Compliance, and Risk functions on IT process control matters.
Reporting and Metrics
Develop dashboards and scorecards to report IT process control performance.
Prepare quarterly compliance reports for the CIO, Risk, and Audit Committees.
Provide insights into emerging process risks, control gaps, and optimization opportunities.
Continuous Improvement and Awareness
Promote control awareness and embed a control-oriented culture within IT operations.
Recommend automation solutions for control testing and evidence collection.
Conduct control maturity assessments and drive improvement initiatives.
Facilitate training for IT staff on control design, testing, and compliance principles.
Qualifications
Academic Qualifications
Bachelor's degree in Information Technology, Computer Science, or related field.
Experience in similar role or function at least 3-4 Years