South Africa
Apply Now and Redefine Digital Payments with Us!
Why EFT Corporation
EFT Corporation is Africa’s leading PCI-compliant payment solutions provider, offering secure, end-to-end services for retail and financial institutions. With over 23 years of experience, we specialise in transaction switching, ATM and POS acquiring, card issuing, internet and mobile banking, and hosting solutions.
We serve over 90 clients across 18 African countries, partnering with several global industry leaders. Headquartered in the UK, EFT Corp has 295 staff members in regional offices across Mauritius, Ghana, Kenya, South Africa, Zambia, Zimbabwe, Botswana, and India, with expansion plans into Rwanda and Tanzania. We aim to redefine digital payments, empowering financial institutions and making a meaningful impact across emerging markets.
Why You'll Love Working Here:
- Purpose-Driven Culture: Make an impact in transforming lives through secure and innovative payment solutions.
- Global Collaboration: Work alongside diverse, talented teams from across the globe.
- Continuous Growth: Expand your skills with mentorship, knowledge sharing, and cutting-edge technologies.
- Inclusive Environment: We value and celebrate diversity, fostering a workplace where everyone thrives.
Your Role
As a Governance, Risk and Compliance Manager your role is responsible for developing and implementing robust governance frameworks, risk management strategies and compliance policies across the company group. This role involves identifying, assessing, and mitigating risks while ensuring effective oversight and adherence to best practices in governance.
What You’ll Do
Develop and Maintain Governance Policies:
- Establish and maintain a comprehensive suite of governance policies, ensuring full compliance with the Companies Act, the King IV Code, and any other applicable laws, regulations, or standards.
- Regularly review and update governance policies to reflect regulatory changes, organisational needs, and emerging best practices.
Approval and Oversight of Full Policy/ Framework Suite:
- Develop and implement a structured process for the submission, review, approval, and formal sign-off of all policies by the appropriate governance bodies (e.g., Board, ExCo) and/or senior management.
- Ensure all frameworks and policies are submitted for review, approval, and formal sign-off by the appropriate governance bodies (e.g., Board, ExCo) and/or senior management.
- Facilitate consultations with relevant stakeholders to ensure alignment, practicality, and adherence to organisational goals.
Implementation of Governance Frameworks/Policies:
- Lead the development and rollout of governance-related frameworks and policies, ensuring they are integrated into organisational processes and effectively implemented.
- Provide training, guidance, and tools to key stakeholders to embed governance practices across the organisation.
- Monitor and evaluate the effectiveness of implemented frameworks and policies, making improvements where necessary to ensure continuous compliance and operational excellence.
Custodian for Governance Documentation and Records:
- Serve as the central point of contact for company and governance documentation requests.
- Develop and maintain accurate and up-to-date records for all key company documentation and governance records.
- Develop processes and procedures to manage access to confidential governance information, ensuring security and compliance with data protection policies.
- Ensure accurate and timely provision of records and reports to approved stakeholders, including board members, management, and regulators.
Develop and Maintain Risk Management Policies:
- Establish and maintain a comprehensive suite of risk management policies, ensuring full compliance with the National Payments System Act, FAIS Act, the King IV Code,and any other applicable laws, regulations, or standards.
- Regularly review and update risk management policies to reflect regulatory changes, organisational needs, and emerging best practices.
Implementation of Risk Management Frameworks/Policies:
- Lead the development and rollout of risk management-related frameworks and policies, ensuring they are integrated into organisational processes and effectively implemented.
- Provide training, guidance, and tools to key stakeholders to embed risk management practices across the organisation.
- Monitor and evaluate the effectiveness of implemented frameworks and policies, making improvements where necessary to ensure continuous compliance and operational excellence.
Risk Management Processes and Controls:
- Develop and maintain risk and control assessments in consultation with relevant stakeholders across the company group.
- Design Key Risk Indicators and drive a process collection of Key Risk Indicators across the company group.
- Establish and review Risk Appetite and Tolerance statements in consultation with relevant stakeholders across the company group.
- Monitor and evaluate the effectiveness of risk management processes and controls, making improvements where necessary to ensure continuous compliance and operational excellence.
Third Party Risk Management:
- Develop and implement processes for assessing, categorising, and monitoring third-party risks, ensuring alignment with organisational policies and regulatory requirements.
- Collaborate with legal and other internal stakeholders to ensure third-party contracts include appropriate risk mitigation clauses (e.g., termination rights, audit rights, and compliance obligations).
- Continuously monitor third-party activities, conducting periodic reviews and audits to ensure adherence to contractual agreements and compliance standards.
- Identify and escalate significant third-party risks to relevant stakeholders, proposing mitigation plans and driving resolution.
- Provide training and guidance to stakeholders on third-party risk management processes and responsibilities.
Compliance Risk Management:
- Support the organisation’s compliance risk management programme:
- document and maintain compliance programmes for key legislation.
- identify obligations and level of compliance with action plans to mitigate or close any non-compliance.
- develop and implement action plans to close any identified compliance gaps.
- support the development and implementation a GRC monitoring plan.
- implement control mechanisms, such as audits and self-assessments, to detect and prevent non-compliance.
- develop, maintain and implement an annual GRC training plan.
- monitor the external regulatory environment to ensure that the organisation is kept informed of relevant updates, and assisting same and support business in the interpretation thereof.
Operational Efficiency and Process Improvement:
- Contribute to evaluating and recommending process improvements to enhance compliance and risk management efficiencies, ensuring they align with established governance standards.
- Support process improvement initiatives aimed at mitigating both compliance and risk-related issues, maintaining a focus on governance integrity.
Collaboration and Communication:
- Communicate key aspects of compliance, risk and governance policies, including governance frameworks, to business stakeholders, ensuring clarity and understanding.
- Work collaboratively with legal and business departments to ensure alignment on both compliance and risk-related matters, ensuring that governance standards are upheld.
- Engage with external stakeholders (regulatory bodies, sponsor banks, etc.) as directed, supporting compliance, risk and governance requirements.
Compliance Investigations and Audits:
- Support as required, internal compliance related investigations.
- Support and where required, oversee any external regulatory investigation or audit, including but not limited to FSCA, FIC and NPSD Audits.
What We’re Looking For
Qualification & Experience:
Compulsory:
- Education: LLB or BCom (Risk, Law, Business or related field)
- Experience: 5 years of governance, risk management and/ or compliance experience in the banking, financial services and/or payments industry.
Advantage:
- Risk management membership and/or certification from the Institute of Risk Management South Africa (IRMSA) or any other relevant professional body.
- Compliance and governance membership and/or certification from Compliance Institute of South Africa (CISA), Chartered Governance Institute of Southern Africa (CGISA) or any other professional body.
- RE1 or RE5.
- Familiarity with working with tools like SharePoint, Microsoft suite, Smartsheet and Jira.
Skills & Knowledge Required:
- Understanding of corporate governance frameworks and experience in the implementation thereof.
- Understanding of enterprise, operational, compliance and third-party risk management practices and principles, as well as practical experience in the application therein.
- Comfortable with technology and sharing platforms.
Personal Attributes:
- Analytical – ability to analyse complex data and identify behavioural and transactional patterns indicative of fraudulent activities.
- Problem-Solving – ability to identify issues, evaluate alternatives, and implement effective solutions.
- Systematic and methodical – desire to develop and execute structured processes for fraud detection, investigation, and prevention.
- Agile – ability to break down tasks into smaller, manageable parts and adjusting course as needed based on stakeholder feedback and changing environments.
- Communication – strong verbal and written communication skills to effectively convey complex information to various stakeholders.
- Ethical Integrity – a strong sense of ethics and integrity, with a commitment to upholding ethical standards in all aspects of work.
- Intellectual curiosity – strong desire to learn and stay updated on emerging fraud trends and prevention techniques.
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Ability to work independently and collaboratively with cross-functional teams.
Our Values
- Purposeful Impact: Every action drives meaningful change.
- Client-Centric Excellence: We succeed when our clients do.
- Integrity: Doing the right thing, always.
- Teamwork: Together, we achieve the extraordinary.
Why Now?
Be part of a pioneering force in digital payments, leading transformative projects across continents. At EFT Corporation, you’re not just joining a company—you’re joining a movement.
Ready to redefine the future of payments with us?
Apply now and let’s create the extraordinary together!
EFT Corporation is an Equal Opportunity Employer. Diversity drives our success, and we welcome passionate individuals from all walks of life to join our team.
EFT Corporation does not accept unsolicited resumes from search firms/recruiters. EFT Corporation will not pay any fees to search firms/recruiters if a search firm/recruiter submits a candidate unless an agreement has been entered into concerning the specific open position(s). Search firms/recruiters offering resumes to EFT Corporation on an unsolicited basis shall be deemed to accept this condition, regardless of any other provision to the contrary.