Background information about the job or company (e.g., role context, company overview)

I&M Bank is a wholly owned subsidiary of I&M Holdings Limited, a publicly quoted company at the Nairobi Securities Exchange (NSE). The bank possesses a rich heritage in banking.

Job Purpose:

The Assistant Manager ICT Governance is responsible for aligning and integrating risk management, compliance, and business values into the operations of IT systems and processes to ensure return on IT investments. The role implements the set IT objectives and drives IT teams to understand the value of policies, adherence to regulation, and legal and compliance requirements of the Bank through effective communication structures.

Responsibilities or duties:

Key Responsibilities:

• Maintain and enforce ICT policies aligned with industry standards, regulatory requirements and the Bank’s strategic objectives.
• Serve as the Risk champion, Support risk mitigation and reporting through governance committees.
• Support the implementation of the ICT Governance, Risk & Compliance framework, ensuring it remains current and effective.
• Ensure all ICT policies and guidelines are clearly documented, up-to-date, relevant, and socialized to all ICT team members.
• Support execution of the Internal Risk Control Self-Assessments (RCSAs) with a focus on risk management practices and regulatory compliance.
• Continuously monitor and improve the risk maturity posture of the department.
• Support the enforcement of the change management policy, ensuring that risk and impact analyses are reviewed and properly documented for all ICT changes.
• Co-ordinate all internal and external ICT audits and ensure they are conducted professionally and wholistically, with findings clearly communicated to ICT leadership and relevant stakeholders.
• Ensure all strategic action items are closed within agreed timelines and progress is reported appropriately.
• Collaborate with stakeholders across the organization to ensure IT initiatives adhere to governance standards, support strategic goals, and deliver measurable value.
• Participate in all IT Governance activities and provide support to the broader IT strategy development and execution.
• Communicate IT governance objectives effectively to IT teams, fostering understanding of the value of policies, regulations, and compliance requirements.
• Drive governance-mandated responsibilities including audits, staff training, policy development, and business continuity planning.
• Maintain data classification standards and governance framework.
• Coordinate ICT disaster recovery plans and actions.
• Ensure IT system deployments and projects adhere to governance.
• Manage governance repositories.

Qualifications or requirements (e.g., education, skills):

Academic Qualifications:

• Degree in Computer Science, Information Technology, Engineering, or a related field.
• Professional Certification in Governance of Enterprise ICT.

Technical Skills:

• Minimum 4 years of experience in a similar role within the financial services industry, preferably in a digital banking environment.
• Experience in technology risk management.
• Competence in IT audit processes.
• Understanding of IT Service management processes.
• Proficiency in using GRC tools for governance, audit tracking, and compliance monitoring.
• Ability to draft policies, procedures, reports, and governance frameworks to a professional standard.
• Ability to translate technical governance concepts into clear, actionable language for diverse audiences, from technical staff to executive leadership.

Key Attributes:

• Strong leadership skills.
• Demonstrate high levels of integrity.
• Excellent communication and interpersonal skills.
• Technology and domain knowledge.
• Strong problem-solving and analytical abilities.
• Excellent documentation skills.
• Planning, organizing, and execution with precision.
• Attention to details.
• Stakeholder engagement skills.
• Presentation skills.
• Customer centricity.

• Maintain and enforce ICT policies aligned with industry standards, regulatory requirements and the Bank’s strategic objectives.
• Serve as the Risk champion, Support risk mitigation and reporting through governance committees.
• Support the implementation of the ICT Governance, Risk & Compliance framework, ensuring it remains current and effective.
• Ensure all ICT policies and guidelines are clearly documented, up-to-date, relevant, and socialized to all ICT team members.
• Support execution of the Internal Risk Control Self-Assessments (RCSAs) with a focus on risk management practices and regulatory compliance.
• Continuously monitor and improve the risk maturity posture of the department.
• Support the enforcement of the change management policy, ensuring that risk and impact analyses are reviewed and properly documented for all ICT changes.
• Co-ordinate all internal and external ICT audits and ensure they are conducted professionally and wholistically, with findings clearly communicated to ICT leadership and relevant stakeholders.
• Ensure all strategic action items are closed within agreed timelines and progress is reported appropriately.
• Collaborate with stakeholders across the organization to ensure IT initiatives adhere to governance standards, support strategic goals, and deliver measurable value.
• Participate in all IT Governance activities and provide support to the broader IT strategy development and execution.
• Communicate IT governance objectives effectively to IT teams, fostering understanding of the value of policies, regulations, and compliance requirements.
• Drive governance-mandated responsibilities including audits, staff training, policy development, and business continuity planning.
• Maintain data classification standards and governance framework.
• Coordinate ICT disaster recovery plans and actions.
• Ensure IT system deployments and projects adhere to governance.
• Manage governance repositories.

• Minimum 4 years of experience in a similar role within the financial services industry, preferably in a digital banking environment.
• Experience in technology risk management.
• Competence in IT audit processes.
• Understanding of IT Service management processes.
• Proficiency in using GRC tools for governance, audit tracking, and compliance monitoring.
• Ability to draft policies, procedures, reports, and governance frameworks to a professional standard.
• Ability to translate technical governance concepts into clear, actionable language for diverse audiences, from technical staff to executive leadership.
• Strong leadership skills.
• Demonstrate high levels of integrity.
• Excellent communication and interpersonal skills.
• Technology and domain knowledge.
• Strong problem-solving and analytical abilities.
• Excellent documentation skills.
• Planning, organizing, and execution with precision.
• Attention to details.
• Stakeholder engagement skills.
• Presentation skills.
• Customer centricity.

• Degree in Computer Science, Information Technology, Engineering, or a related field.
• Professional Certification in Governance of Enterprise ICT.