Summary
Overview
Work History
Education
Skills
PROFESSIONAL ATTRIBUTES
Timeline
Generic

Makhosazana Shilubana

Governance, Risk, Compliance & Information Governance Executive
Polokwane

Summary

Senior Governance, Risk, Compliance and Information Governance professional with more than 10 years' experience leading governance frameworks, enterprise risk management programs, compliance functions, information governance initiatives and regulatory transformation projects across healthcare, telecommunications, financial services, FMCG and non-profit sectors. Proven track record advising executive leadership, Board Committees, regulators and senior management on governance, risk, compliance, ethics, privacy, information governance and regulatory matters. Experienced in establishing enterprise governance frameworks, implementing integrated GRC solutions, facilitating risk management programs, supporting audit and assurance activities, managing regulatory engagements and embedding sustainable compliance cultures across African jurisdictions.

Overview

10
10
years of professional experience

Work History

Senior Compliance & Deputy Information Officer

Lyra Wellbeing International
Remote
04.2025 - Current
  • Lead governance, risk, compliance and information governance frameworks across multiple African jurisdictions.
  • Serve as trusted advisor to executive leadership and management committees on governance, risk, ethics and compliance matters.
  • Facilitate enterprise risk assessments, compliance monitoring, control validation and assurance activities.
  • Prepare governance, compliance and risk reports for executive leadership and governance committees.
  • Secretary and member of STRATCo, MANCo, Enterprise Risk Management Committee, Social & Ethics Committee and BBBEE & Preferential Procurement Committee.
  • Developed and maintained comprehensive information systems to enhance data accessibility.
  • Evaluated emerging technologies for potential integration into existing information management frameworks, ensuring continuous improvement in operations.
  • Contributed to the development of organizational policies and guidelines related to information management, ensuring best practices were adopted throughout company.

Governance, Risk & Compliance SME and Project Lead

Aspen Pharmacare Holdings Limited
Remote
04.2023 - 07.2024
  • Served as GRC Subject Matter Expert and Project Lead for the design and implementation of an integrated enterprise-wide GRC operating model and technology solution.
  • Led development of governance, risk, compliance, internal audit, sustainability, business continuity and operational compliance process frameworks.
  • Directed business requirements gathering, process prioritization, roadmap development and implementation planning activities.
  • Managed service providers, implementation partners and technology consultants throughout the project lifecycle.
  • Provided strategic advisory services regarding governance frameworks, enterprise risk management and compliance processes.
  • Supported supplier governance, third-party oversight and implementation governance activities.
  • Contract

Governance, Risk & Compliance Officer (Deputy Information Officer)

Fibre Circle NPC
Rivonia
10.2022 - 03.2023
  • Developed and implemented governance, compliance and information governance frameworks aligned to statutory, regulatory and ESG obligations.
  • Managed compliance assessments, governance reviews and regulatory reporting activities.
  • Led POPIA compliance initiatives and data protection governance programs.
  • Conducted compliance monitoring and risk assessments across operational functions.
  • Facilitated compliance awareness and governance training programs.
  • Supported executive management on governance and regulatory matters.
  • Contract

Compliance & Risk Advisor

FluidRock Governance Group
Remote
05.2021 - 05.2022
  • Designed and implemented governance, risk and compliance frameworks for clients operating in regulated industries.
  • Conducted enterprise risk assessments, compliance reviews and governance maturity assessments. Performed internal audits, due diligence reviews and compliance monitoring activities.
  • Advised senior leadership on governance, ethics, risk and regulatory compliance matters.
  • Assisted clients in developing governance structures, policies and compliance programs.
  • Consultant

COE Market Specialist: Risk, Governance & Sustainability

Diageo Southern Africa
Waterfall
12.2018 - 10.2020
  • Supported regional leadership with governance, risk management and compliance advisory services.
  • Led governance and compliance projects across multiple Southern African markets.
  • Managed BBBEE compliance strategy, governance reporting and stakeholder engagement.
  • Facilitated regulatory change management and sustainability governance initiatives.
  • Conducted risk assessments and compliance reviews to support strategic decision-making.

Risk & Governance Specialist

Openserve (Telkom Group)
Centurion
01.2017 - 10.2018
  • Supported enterprise risk management, governance and compliance activities.
  • Maintained risk registers and facilitated risk assessments.
  • Conducted supplier risk assessments and third-party governance reviews.
  • Supported internal audit activities and regulatory reviews.
  • Assisted with governance reporting and risk monitoring processes.

Education

Post Graduate Diploma - Risk Management

MANCOSA
South Africa
09.2027

Certified Data Protection Officer (CDPO) -

The Knowledge Academy
South Africa
07.2026

Management Development Programme (MDP) -

Pendula Group
South Africa
01-2025

Post Graduate Certificate - Data Protection & Privacy

University of Cape Town
South Africa
01-2024

Certified Risk Practitioner - undefined

IRMSA
01-2021

Post Graduate Certificate - Business Risk Management

University of Cape Town
South Africa
01-2020

Post Graduate Certificate - Governance, Risk and Compliance Law

University of The Witwatersrand
South Africa
01-2018

National Diploma - Law

University of Johannesburg
Johannesburg
01-2014

Post Graduate Certificate - Forensic& Investigative Auditing

UNISA
South Africa
04.2001 -

Skills

  • Execution of governance frameworks
  • Strategic risk evaluation
  • Regulatory compliance management
  • Policy governance development
  • Compliance oversight management
  • Compliance program design
  • Information governance proficiency

PROFESSIONAL ATTRIBUTES

  • Strong regulatory judgement and commercial awareness
  • Executive-level communication and influencing skills
  • Proven leadership in complex, regulated environments
  • Collaborative, solutions-driven compliance leader

Timeline

Senior Compliance & Deputy Information Officer

Lyra Wellbeing International
04.2025 - Current

Governance, Risk & Compliance SME and Project Lead

Aspen Pharmacare Holdings Limited
04.2023 - 07.2024

Governance, Risk & Compliance Officer (Deputy Information Officer)

Fibre Circle NPC
10.2022 - 03.2023

Compliance & Risk Advisor

FluidRock Governance Group
05.2021 - 05.2022

COE Market Specialist: Risk, Governance & Sustainability

Diageo Southern Africa
12.2018 - 10.2020

Risk & Governance Specialist

Openserve (Telkom Group)
01.2017 - 10.2018

Post Graduate Certificate - Forensic& Investigative Auditing

UNISA
04.2001 -

Certified Risk Practitioner - undefined

IRMSA

Post Graduate Diploma - Risk Management

MANCOSA

Certified Data Protection Officer (CDPO) -

The Knowledge Academy

Management Development Programme (MDP) -

Pendula Group

Post Graduate Certificate - Data Protection & Privacy

University of Cape Town

Post Graduate Certificate - Business Risk Management

University of Cape Town

Post Graduate Certificate - Governance, Risk and Compliance Law

University of The Witwatersrand

National Diploma - Law

University of Johannesburg
Makhosazana ShilubanaGovernance, Risk, Compliance & Information Governance Executive