You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
Tendai ChinhamoTC

Tendai Chinhamo

IT/OT Governance Risk Compliance

€521/day
Johannesburg, ZA
8-15 years
OT and IT Governance Risk Compliance
Cybersecurity
IT-Security
artificial intelligence
Audit

Average response time: 1 hour

About Tendai

My expertise spans cybersecurity, audit, privacy, governance, and risk management across Finance, IT, OT, Azure Cloud, Artificial Intelligence, and IoT, with a strong focus on the banking, insurance, healthcare, mining, manufacturing, and retail sectors. I am an analytical thinker with a keen ability to deconstruct tasks and problems into their core components, applying logical and systematic approaches to uncover all potential implications and consequences. Additionally, I am a highly motivated and dedicated professional—hardworking, eager to learn, and committed to delivering value-driven solutions. As a collaborative team player, I thrive in dynamic environments and contribute meaningfully to achieving shared objectives.
Metallurgy and Mining
Medical Devices
Insurance
Healthcare Providers
Banking and Financial Services

  • English

    Native or bilingual

Remote only
Primarily works remotely

Experience

  • De Beers Group
    IT Assurance Analyst
    March 2022 - Today (4 years and 3 months)
    • Liaise with and support the risk and control owners to resolve any questions, queries and problems relating to internal controls over financial reporting, GDPR, ISO27001, PCI and NIST 800-53 scheme requirements which may occur during pre and post audit stages.
    • Develop effective control frameworks based on industry best practices such as GDPR, NIST 800-53, PCI and ISO27001.
    • Face internal audit and external regulatory engagements for the assigned portfolios to support positive outcomes and execution of associated treatment plans.
    • Perform, lead and/or provide input into risk assessments as well as assessments against country technology regulatory requirements and develop strong relationships with business stakeholders.
    Audit Risk analysis Cybersecurity artificial intelligence IT-Security
  • Netcare
    IT Governance and Risk Officer
    August 2020 - February 2022 (1 year and 6 months)
    • Lead medical health device cyber security risk management activities in collaboration with the health informatics and oncology team. This included spearheding the Log4j project and including cyber hygiene as part of the supplier requirements.
    • Identify, assess, and manage risks that could threaten the organization's medical device infrastructure and data e.g. e.g. IoT devices, which included pacemakers, insulin pumps, CathLab and other health devices in all healthcare practices.
    • Oversee the planning, execution, and management of multi-faceted projects related to compliance, control assurance, risk management, security and infrastructure
    • Serve in an advisory role in application development, infrastructure projects and new products to assess risks
    • Identify, assess, and manage risks that could threaten the organization's IT infrastructure data and advice on mitigation and remediation.
    • Monitor and analyse emerging threats and trends to proactively identify and adjust security risks and appropriate controls.
    • Identify, evaluate, monitor and drive accountability for security risk mitigation and control compliance across all the group and subsidiaries.
    • Mature our third-party security risk management capabilities, ensuring third-parties are adequately assessed and adhere to our standards.
    • Collaborate with the privacy and legal teams to negotiate security terms in vendor and customer contracts, ensuring they protect the needs of the business.
  • Bidvest Bank
    Assistant Manager: IT Internal Auditor
    September 2018 - August 2020 (1 year and 11 months)
    • Assist the audit manager with the audit yearly plan.
    • Performed a comprehensive cybersecurity audit on the bank's systems, utilizing the NIST Cybersecurity Framework. The audit encompassed various critical areas, including threat intelligence, the security operations center, governance, network infrastructure, data protection, authentication services, vulnerability and threat management, supply chain security, and cyber incident response and recovery.
    • Oversee audit assignments from start to finish, managing a team of up to 3 staff to meet reporting deadlines and client agreed deadlines.
    • Support the audit manager in the identification of risks to be tested by participating in planning sessions.
    • Evaluate the design and operating effectiveness of controls and document all working papers in the Team's audit management platform for review by the audit manager.
    PCI DSS Audit Cybersecurity IT-Security Risk analysis
Check out Tendai's experience

Recommendations

Be the first to recommend Tendai

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • AI Security & Governance
    Securiti
    2024
    AI Security & Governance
  • Certificate in the Governance of Enterprise IT (CGEIT)
    ISACA
    2021
    Certificate in the Governance of Enterprise IT (CGEIT)
Check out Tendai's education

Categories