Apply now »

Technology Risk Manager

Business Unit:  Discovery Bank
Function:  Risk Management
Date:  27 Mar 2026

About Discovery 

 

Discovery’s core purpose is to make people healthier and to enhance and protect their lives. We seek out and invest in exceptional individuals who understand and support our core purpose, and whose own values align with those of Discovery. Our fast-paced and dynamic environment enables smart, self-driven people to be their best. As global thought leaders, Discovery is passionate about innovating in order to not only achieve financial success, but to ignite positive and meaningful change within our society. 

 

About Discovery Bank 

 

Discovery Bank is a bank like no other – a shared-value bank, designed with our clients in mind. We’re all about sharing the value that clients create when they manage their money well, back with them through exceptional interest rates and rewards. Our Vitality Money programme measures how well clients manage their finances, informs them of what it means to be financially healthy, and empowers them with the knowledge to get enhanced rewards for managing their money well. If you’re adaptable, a problem-solver, always questioning the way things are done, passionate about doing what is right, and obsessed with providing a quality service experience, we have a job for you where you can be your best in an environment that’s safe and nurturing. 

 

Job Purpose 

 

The Technology Risk Manager is responsible for developing, implementing, and maintaining the organisation’s Technology Risk Management Framework. The role will provide oversight, advice and assistance to the business in the identification, evaluation, assessment and treatment of information and technology related risks, to improve risk awareness and risk culture through challenging first-line management’s information and technology risk management practices.

 

This position reports to the Head of Technology / Data Risk.

 

Areas of responsibility may include but are not limited to 

 

  • Providing independent oversight and advice on information and technology-related risks.
  • Challenging and improving first-line management’s risk management practices.
  • Identifying, evaluating, and assessing potential risks to our systems and data.
  • Improving risk awareness and promoting a strong risk culture throughout the organization.
  • Technology Risk Framework & Governance
      • Implement and enhance the Technology Risk Management Framework.
      • Maintain IT governance standards, policies, and procedures.
  • Technology Risk Identification, Assessment & Monitoring
      • Conduct technology and cybersecurity risk assessments.
      • Maintain a comprehensive IT risk register.
  • Technology Governance Committees & Reporting
      • Produce clear, concise, and decision-focused risk reporting for senior management, risk committees, and executive forums.
  • Emerging Technology, Data, and AI Risk
      • Assess technology risks associated with emerging technologies, including AI, advanced analytics, data science, and automation initiatives.
  • Collaboration & Stakeholder Engagement
      • Work with IT, Cybersecurity, Data, and business units to embed technology risk.
      • Regulatory Compliance & Technology Standards
      • Ensure compliance with relevant technology and cybersecurity regulations.
  • Facilitate the escalation of risk and control issues requiring visibility by providing a cohesive and comprehensive view of assurance across the risk environment.
  • Continuous monitoring of levels of IT risks across the business by tracking implementation of management action plans to mitigate or address identified risk, and issues as well as audit findings raised.
  • Develop effective ways of working in partnership with key functions within the risk Business Unit and across other Business Units to ensure a consistent holistic approach to assurance and early communication of emerging issues.
  • Prepare clear, concise risk reports, presentations, risk information and investigations for senior management, risk committees, and executive forums.
  • Use the risk management tool as an enabling technology, including automated risk monitoring and reporting

 

Personal Attributes and Skills 

 

  • Proven experience in a Technology Risk and oversight capacity, such as IT Risk, IT Governance, IT Audit, or Information Security.
  • A strong understanding of Cyber and IT Security best practices and principles.
  • Experience with relevant risk methodologies and control frameworks like COBIT, ISO, NIST, and ITIL.
  • Excellent analytical, communication, and interpersonal skills.
  • Sound understanding of technology-enabled risk
  • Identify, analyse and address risks appropriately in order to move the business forward
  • A sound knowledge of the financial / retail banking industry, the mechanics of its operation and its trends. Familiarity with banking specific and other relevant legislation and regulations (e.g. Banks Act, Basel, TCF, POPI) is useful
  • Communicate efficiently and effectively with the business at all levels
  • Ability to work independently and meet deadlines
  • Confidentiality and Integrity
  • Structured analytical thinking and strong professional judgement
  • Able to work at designated office or from home as and when required

 

Education and Experience 

 

  • Bachelor’s degree in information systems / computer science / informatics / commerce /finance / audit
  • A minimum of 5 years’ experience in Technology Risk, IT Audit, or Cybersecurity.
  • Minimum 3 years’ financial services experience
  • Professional Certifications advantageous - CRISC / CISA / CISM

 

 

EMPLOYMENT EQUITY   
                             
The Company’s approved Employment Equity Plan and Targets will be considered as part of the recruitment process. As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.

Apply now »