Senior Specialist: ERM

When it comes to putting people first, we're number 1. 

The number 1 Top Employer in South Africa. 
Certified by the Top Employer Institute 2025.

Role Purpose/Business Unit:

Risk Identification and Mitigation:

• Lead risk assessments at both operational and tactical levels in collaboration with EHODs  ME’s and Chiefs across Vodacom Group.
• Ensure that critical and high business risks are identified, assessed, and mitigated through appropriate risk control strategies.
• Develop and promote strategic plans to enhance risk management practices across the organization.

Risk Management System Ownership:

• Champion the maintenance and continuous enhancement of the risk management system to ensure it aligns with Vodacom's evolving needs and industry best practices.
• Oversee the validation of information and the maintenance of user records and access control within the risk management system.
• Drive improvements to the risk management system, incorporating new functionalities and tools that support business needs.

Combined Assurance and Stakeholder Engagement:

• Manage and drive the combined assurance process, ensuring alignment of risk management activities with assurance providers across the organization (including Group Internal Audit and other third-party auditors).
• Establish and maintain a strong working relationship with assurance providers to ensure a comprehensive view of the organization's risk landscape.
• Work closely with key stakeholders, including EHODs, MEs, and Exco, to ensure the risk profile is regularly updated and reflects emerging risks.
• Collaborate with other assurance functions to ensure effective coverage and mitigation of risks across business units.

Training and Risk Management Awareness:

• Lead the creation and delivery of training programs to raise awareness of the Vodacom Risk Management Framework and Policy, ensuring that staff at all levels understand their role in managing risk.
• Develop and manage a network of risk champions across the organization, training them on their responsibilities, risk management best practices, and the use of the risk management system.

Risk Management Framework Oversight:

• Ensure the Vodacom Enterprise Risk Management Framework and Policy are up-to-date, relevant, and aligned with industry best practices.
• Oversee the development and maintenance of risk templates, presentations, and other risk-related content in line with the corporate identity and compliance standards.
• Stay current with emerging trends in risk management, ensuring Vodacom's approach is continuously aligned with evolving industry standards and best practices.

Reporting and Governance:

• Provide strategic input into quarterly Risk Management Committee meeting packs, ensuring that risk reporting is accurate, comprehensive, and reflective of the current risk environment.
• Prepare and present position papers on significant risk management issues for the organization, highlighting potential areas of concern or opportunities for improvement. 

Audit and Compliance Management:

• Act as the point of contact for audits related to risk management, ensuring that Vodacom's risk management practices are compliant with internal policies, external regulations, and industry standards.

Ad-hoc Projects:

• Take on special projects as directed by the EHOD: Business Risk Management, contributing to the continuous improvement of risk management practices within Vodacom.

Your responsibilities will include:

• To conduct operational and tactical risk assessments for Vodacom Group.
• To update appropriate risk exposure standards, guidelines and maintain the ERM policy and framework, risk categories, risk library and control library.
• To ensure that risks, drivers and controls are clearly recorded, mitigated, managed and communicated to all relevant parties.
• To report on risk information and progress on any projects to relevant forums and committee meetings.
• To continuously train staff and conduct awareness through different means on risk management principles, in order to improve the risk culture of the organisation.

The ideal candidate for this role will have:

• A diploma/degree or equivalent qualification (B.Com, Risk Management, Business Studies)
• Honours degree advantageous.
• Additional relevant professional certification will be an advantage.
• Excellent working knowledge of Microsoft Office.

Core competencies, knowledge and experience :

• Minimum of 5 years business experience (essential)
• Knowledge of business processes and internal controls.
• Knowledge of and experience with risk management systems.
• Good understanding of the King reports and ISO31000.
• Telecommunications exposure will be an advantage.
• At least three years exposure to enterprise wide risk management.
• Experience in conducting risk assessments.
• Audit experience advantageous.
• Experience in risk control self-assessments.
• Report writing.
• Engaging with stakeholders at senior levels.

We make an impact by offering:

• Enticing incentive programs and competitive benefit packages
• Retirement funds, risk benefits, and medical aid benefits
• Cell phone and data benefits, advantages fibre connection discounts, and exclusive staff discounts offered in collaboration with partner companies

Closing date for Applications: 15 August 2025 

The base location for this role is Midrand, Vodacom Campus  

The company's approved Employment Equity Plan and Targets will be considered as part of the recruitment process. As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.
Vodacom is committed to an organisational culture that recognises, appreciates, and values diversity & inclusion.