Close Menu

    ICT GOVERNANCE RISK & COMPLIANCE ANALYST

    6 Mins Read0 Views
    Department of Health (DoH) category image

    ICT GOVERNANCE RISK & COMPLIANCE ANALYST is a South African government vacancy at Department of Health (DoH). This job is part of Circular 21 of 2026 from the DPSA. 2 posts available | centre: Pretoria | closing date: 06 July 2026. Use this page to review the requirements, duties, application instructions and official source links before applying.


    Job details

    Circular Post No: 21/127
    Job Ref Number: NDOH 45/2026
    Posts Available: 2
    Department: Department of Health (DoH)
    Closing Date: 06 July 2026

    Applications

    Where to send your application.

    The Director-General, National Department of Health, Private Bag X399, Pretoria. 0001. Hand delivered application may be submitted at Reception (Brown Application Box), Dr AB Xuma Building, 1112 Voortrekker Rd, Pretoria Townlands 351-JR or should be forwarded to vacancies@Health.gov.za quoting the reference number on the subject e-mail.

    Directorate

    Information Communication Technology

    Salary

    R413 001 per annum, (plus competitive benefits)

    Centre

    Pretoria

    Requirements

    • A Grade 12 certificate and an NQF 6 in Information Technology/Computer Science qualification as recognized by SAQA.
    • A degree (NQF 7) in ICT/Computer Sciences will be an advantage.
    • COBIT 5-foundation certification.
    • At least two (2) years’ experience in a GRC-related role, such as risk management, compliance, and or internal audit.
    • Experience in working with various stakeholders across government agencies to gather information and provide guidance on ICT GRC matters.
    • Knowledge of ICT Governance, risk, security, compliance and continuity methodologies and practices.
    • Knowledge of IT service management frameworks (e.g.
    • ITIL) and their application in a GRC context.
    • Familiarity with ICT GRC tools and platforms (e.g.
    • RSA Archer, MetricStream.
    • OpenPG).
    • Good communication (verbal and written), analytical, collaboration, and adaptability skills.
    • Ability to work under pressure and in a team as well as able to travel when required.
    • A valid driver’s license.

    Duties

    • Assist in developing and implementing GRC policies, procedures, and frameworks to ensure compliance with regulatory requirements.
    • Identify and assess risks associated with ICT operations and develop strategies to mitigate or manage those risks.
    • Provide support on governance, risk and control tools implementation and workflows.
    • Manage customer relations.
    • Ensure effective implementation of GRC initiatives in ICT.
    • Conduct ICT governance risk compliances and continuity research.
    • Analyse and interpret data from various sources to identify trends, patterns, and potential issues that may impact the organisation’s risk profile.
    • Provide assistance with research, idea management and innovation management.
    • Be part of permanent in-house programme team, providing organisational learning, improved capability, resilience and value for money.
    • Monitor and report continuity on ICT governance, risk and compliance.
    • Develop and maintain reports, dashboards, and other visualisations to communicate ICT GRC metrics and performance indicators to senior management and other stakeholders.
    • Identify and correct weaknesses.
    • Handle risks and audit queries.
    • Identify, mitigate and manage ICT risks.
    • Tracing resolution of ICT audit findings.
    • Establish contingency plans with backup resources and accommodation for prospective automated business processes.

    Enquiries

    Mr A Mabuza Tel No: (012) 395 8647

    Department Notes

    All shortlisted candidates, including the SMS, shall undertake two pre-entry assessments. One will be a practical exercise to determine a candidate’s suitability based on the post’s technical and generic requirements, and the other must be an integrity (ethical conduct) assessment. All shortlisted candidates for SMS posts will be subjected to a technical exercise and interview. Following the technical exercise and interview, a maximum of three (3) SMS candidates will undergo psychometric assessments to assess cognitive capabilities, behavioural preferences, emotional intelligence, and integrity. Applications should be submitted on the new Z83 form obtainable from any Public Service department and should be accompanied by a CV only (previous experience must be comprehensively detailed). The Z83 must be fully completed (in line with DPSA Practice note), failure to comply will automatically disqualify the applicant. Applicants are not required to submit copies of qualification and other relevant documents on application. Certified copies of qualifications and other relevant documents will be requested prior to the final selection phase. Applications should be on one PDF format (If emailed). Applications received after the closing date and those that do not comply with the requirements will not be considered. It is the applicant’s responsibility to have foreign qualifications and national certificates (where applicable) evaluated by the South African Qualification Authority (SAQA). Please note by responding to the advertisement, you consent to the collection, processing, and storing of your Personal Information in accordance with the Protection of Personal Information Act (POPIA). Your information will be used solely for the purpose of this promotion and will not be shared with third parties without prior consent unless required by law. The Department reserves the right not to fill the posts. The successful candidate will be subjected to personnel suitability checks and other vetting procedures. Applicants are respectfully informed that correspondence will be limited to short-listed candidates only. If notification of an interview is not received within three (3) months after the closing date, candidates may regard their application as unsuccessful. The Department will not be liable where applicants use incorrect/no reference number(s) on their applications.

    Original Text
    POST 21/127 : ICT GOVERNANCE RISK & COMPLIANCE ANALYST REF NO: NDOH 45/2026 (X2 POSTS)
    Directorate: Information Communication Technology
    SALARY : R413 001 per annum, (plus competitive benefits)
    CENTRE : Pretoria
    REQUIREMENTS : A Grade 12 certificate and an NQF 6 in Information Technology/Computer Science qualification as recognized by SAQA. A degree (NQF 7) in
    ICT/Computer Sciences will be an advantage. COBIT 5-foundation certification. At least two (2) years’ experience in a GRC-related role, such as
    risk management, compliance, and or internal audit. Experience in working with various stakeholders across government agencies to gather information and
    provide guidance on ICT GRC matters. Knowledge of ICT Governance, risk, security, compliance and continuity methodologies and practices. Knowledge
    of IT service management frameworks (e.g. ITIL) and their application in a GRC context. Familiarity with ICT GRC tools and platforms (e.g. RSA Archer,
    MetricStream. OpenPG). Good communication (verbal and written), analytical, collaboration, and adaptability skills. Ability to work under pressure and in a
    team as well as able to travel when required. A valid driver’s license.
    DUTIES : Assist in developing and implementing GRC policies, procedures, and frameworks to ensure compliance with regulatory requirements. Identify and
    assess risks associated with ICT operations and develop strategies to mitigate or manage those risks. Provide support on governance, risk and control tools
    implementation and workflows. Manage customer relations. Ensure effective implementation of GRC initiatives in ICT. Conduct ICT governance risk
    compliances and continuity research. Analyse and interpret data from various sources to identify trends, patterns, and potential issues that may impact the
    organisation’s risk profile. Provide assistance with research, idea management and innovation management. Be part of permanent in-house programme team,
    providing organisational learning, improved capability, resilience and value for money. Monitor and report continuity on ICT governance, risk and compliance.
    Develop and maintain reports, dashboards, and other visualisations to communicate ICT GRC metrics and performance indicators to senior
    management and other stakeholders. Identify and correct weaknesses. Handle risks and audit queries. Identify, mitigate and manage ICT risks. Tracing
    resolution of ICT audit findings. Establish contingency plans with backup resources and accommodation for prospective automated business processes.
    ENQUIRIES : Mr A Mabuza Tel No: (012) 395 8647

    More Jobs From This Department

    View all Department of Health (DoH) jobs

    Official source

    This vacancy was imported from DPSA Circular 21 of 2026 for reference.

    Disclaimer: This vacancy was imported from the official DPSA circular PDF. Please confirm the reference number, closing date, and application instructions in the original circular before applying. View the official DPSA vacancy circulars.

    Share.
    SA-Gov-Jobs-logo

    SA Gov Jobs is an independent, free-to-use job information portal for South African government vacancies, internships and public-sector career resources. We help job seekers find current national and provincial opportunities and encourage applicants to confirm details with the official department or government source before applying. SA Gov Jobs does not charge application fees and is not a government department. For official government information, visit www.gov.za.

    © 2026 SA GOV JOBS | All rights reserved | Privacy Policy