Bantu Ralana

Experience

• 

  Buffalo City Metropolitan Municipality

  Feb 2022 - Mar 2024

  Responsible for Information Technology Governance, Risk and Compliance ManagementGovernance• Develop, review and Implement IT Governance Framework• Creating awareness and Institutionalizing IT Governance• Advise management on IT Governance related matters• Manage and coordinate the Audit process both Internally and Externally• Compile regular reports on progress made with respect to Governance initiatives• Leading and driving all Governance, Risk and Compliance programmesRisk• Develop, review, and implement the IT risk management framework• Ensure alignment of Risk framework to International Standards• Conduct IT Risk assessment on a regular basis in collaboration with Risk department• Monitor effectiveness of mitigation measures• Compile reports on progress made• Ensure information security strategies, policies, and procedures are in place• Work with security section to ensure implementation of security measures and policiesCompliance• Develop, review, and implement IT Compliance Framework• Identify and align with legislation applicable in the IT environment• Assess compliance levels and employ strategies to ensure compliance where lacking• Ensure compliance to internal IT Policies and Procedures• Report on exceptions• Conduct Annual compliance assessments• Develop, test, and implement Disaster Recovery Plan (DRP)• Monitor and report on status of disaster recovery capabilities Show less • Administration of all changes in the IT environment (technical and project changes)• Ensuring the minimization of risks from implementing unapproved changes • Ensuring that changes are made with minimum disruption to ICT services• Support the efficient and prompt handling of all changes• Providing accurate and timely information about all changes• Involved in all ICT projects to monitor and manage changes throughout the project life cycle• Ensure that the required level of technical and management accountability is maintained• Monitor the number, reason, type and associated risks of all changes• Compile and submit reports to the Governance and Compliance coordinator• Producing change management plans and implementing them accordingly by adhering to the change management policy, procedure and process.• Availing the change management procedure for easy accessibility to all employees by communicating through service desk emails and knowledge management portal• Creating service provider awareness of the change management procedure through formal communication such as emails, memoranda, and agreements.• Ensuring that a clear change management lifecycle is followed by all change stakeholders by enforcing the compliance to the change management process by all stakeholders. Show less Governance• Develop, review and Implement IT Governance Framework• Creating awareness and Institutionalizing IT Governance• Advise management on IT Governance related matters• Manage and coordinate the Audit process both Internally and Externally• Compile regular reports on progress made with respect to Governance initiatives• Leading and driving all Governance, Risk and Compliance programmesRisk• Develop, review, and implement the IT risk management framework• Ensure alignment of Risk framework to International Standards• Conduct IT Risk assessment on a regular basis in collaboration with Risk department• Monitor effectiveness of mitigation measures• Compile reports on progress made• Ensure information security strategies, policies, and procedures are in place• Work with security section to ensure implementation of security measures and policiesCompliance• Develop, review, and implement IT Compliance Framework• Identify and align with legislation applicable in the IT environment• Assess compliance levels and employ strategies to ensure compliance where lacking• Ensure compliance to internal IT Policies and Procedures• Report on exceptions• Conduct Annual compliance assessments• Develop, test, and implement Disaster Recovery Plan (DRP)• Monitor and report on status of disaster recovery capabilities Show less

  • Acting Governance, Risk & Compliance

    Sept 2023 - Mar 2024

  • IT Change Practitioner

    Jul 2016 - Mar 2024

  • Acting Governance, Risk and Compliance Coordinator

    Feb 2022 - Apr 2022