Senior Specialist IM Security GRC

Company Description

Valterra Platinum is the world’s leading primary producer of Platinum Group Metals (PGMs), operating across the full value chain, from resource to market. We mine the materials that make modern life possible, in ways that are safer, smarter and more responsible.

Our business is at the heart of the broader Southern African economic and social landscape and we are committed to working towards a safe, sustainable, competitive and profitable business that benefits our country, our communities, our people, and our shareholders.

If you're driven by purpose, performance and the opportunity to make a lasting impact, we invite you to join us. At Valterra, you'll be part of a team creating value that lasts—powered by curiosity, courage, and care. Apply today and be part of something bigger.

Location: Rosebank

Job Description

This role is responsible for supporting all elements of the Cyber Operations team, facilitating a comprehensive understanding of the Anglo American Platinum Information Technology/Operational Technology estate, from both a business and cyber security risk perspective.

The Senior Specialist IM Security GRC leads cyber security risk management, coordinating its supporting processes; to compile and account for all Cyber policies and standards including compliance monitoring; and to drive cyber security risk governance, assurance and resilience processes.

Job responsibilities include (but are not limited to):

• Develop and implement a comprehensive cybersecurity risk, governance and compliance management program.
• Conduct risk assessments and audits to ensure compliance with industry standards and regulations.
• Develop and maintain cybersecurity policies, standards, and procedures.
• Collaborate with various departments to ensure alignment with cybersecurity governance and compliance requirements.
• Monitoring compliance with relevant cybersecurity regulations and internal policies.
• Identifying compliance gaps and taking corrective actions to address them.
• Conducting compliance audits and assessments.
• Assessing the cybersecurity posture of third-party vendors and managing associated risks.
• Implementing security controls for vendor relationships.
• Monitor and report on the effectiveness of the GRC program.
• Ensures that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
• Performs cyber risk trend analysis and reporting.
• Performs security reviews and identifies security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
• Oversee and coordinate service continuity and disaster recovery program
• Provide guidance and training on GRC-related matters to staff and stakeholders.
• Collaborates with business leaders to strike a balance between security requirements and the need for business agility, innovation, and growth.

Qualifications

• An undergraduate qualification (Bachelors degree/Diploma or equivalent) in IT, cybersecurity, or a related field.  
• It would be advantageous to have a postgraduate qualification in IT, cybersecurity, or a related field OR a proven track record of extensive practical experience in a role and context of similar complexity.

Certifications

• Valid EB/Code 08 driver’s licence
• Security Certification (e.g. CRISC, CISA, CISM, CISSP)                 
• Registration with professional bodies (Desirable)

Experience

• 5 – 7 years working experience in a similar role

Technical Knowledge

• Experience in an IT audit, enterprise risk management (ERM) role or cyber risk management role information security management frameworks (e.g. ISO 27000, NIST CSF, NIST Risk Management Framework, MITRE ATT&CK Framework, MITRE D3FEND Matrix, IEC 62443, ISO 27005, etc.)
• Demonstrated experience in integrating cybersecurity risk management with overall business strategy, ensuring alignment with organizational objectives.
• Experience with cybersecurity principles and practices, including risk management, security controls, and incident response.

Additional Information

Who We Are

We are a Southern African PGM producer, marketing metals globally, with a presence across 8 regions and 17 sites. Our operations include 4 operating mines, 3 smelters, and 2 refineries, giving us full control across the Platinum Group Metals (PGM) value chain—from resource to market.

We explore, we mine, we concentrate, we smelt, we refine and we market. As a result, we have an in-depth knowledge of PGM production and markets. Using this knowledge, we invest in developing sustainable markets for PGMs, partnering directly with research institutions as well as customers in the industrial, jewellery and investment sectors.

With 3 global marketing hubs and a team of over 29,000 employees, we serve a diverse international customer base while remaining deeply rooted in Southern Africa.

What We Offer

At Valterra Platinum, you will join a team committed to excellence and impact.

We offer:

• Meaningful work in a high-performance, values-led environment.
• Market-aligned reward and recognition.
• Opportunities for learning, development and progression.
• A culture that respects diversity and encourages innovation.
• A clear commitment to safe Operations.

Inclusion and Diversity

Valterra Platinum is an equal opportunities employer. We are committed to promoting an inclusive and diverse workplace where we value and respect every colleague for who they are and provide equality of opportunity so that everyone can fulfill their potential.
Valterra Platinum has a zero tolerance to dignity harms, these include all acts of gender based violence, bullying, harassment and victimisation. Ensuring the safety of our employees extends beyond physical safety and includes the eradication of harmful behaviours from our workplace. This responsibility extends to everyone at Valterra Platinum both during work hours and outside of work. We are unconditional in creating a respectful, inclusive, and safe working environment to ensure that no colleague will be violated or harassed under our watch.

How to Apply

To apply for this role, please complete our online application form via this job advert.

Closing Date:03/07/2025

Privacy policy - Valterra Platinum