Summary
Overview
Work history
Education
Skills
REFERENCES
Timeline
Generic

Nonhlahla Mayisela

Brakpan

Summary

GRC professional with experience in enhancing governance frameworks, mitigating risks, and achieving compliance excellence. Skilled in conducting comprehensive risk assessments and designing tailored compliance strategies that enhance business processes and ensure regulatory compliance. Proficient in IAM systems and industry standards to improve operational efficiency and strengthen General IT Controls. Recognized for good analytical skills and effective communication, facilitating collaboration among stakeholders to achieve resilient and compliant business outcomes.

Overview

5
5
years of post-secondary education
9
9
years of professional experience

Work history

IAM Compliance and Governance

Vodacom (PTY) LTD.
2021.02 - 2026.07
  • Acted as the primary compliance liaison for IAM, ensuring adherence to organizational policies, standards, and frameworks.
  • Conducted Control Self-Assessments (CSA) against multiple frameworks to maintain audit readiness and industry compliance.
  • Designed and implemented new General IT Controls (GITC) for IAM solutions, with ongoing monitoring, reporting, and investigative follow-ups to drive continuous improvement.
  • Identified and remediated control deficiencies in IAM design and operating effectiveness, strengthening risk posture.
  • Managed IAM risks, coordinated exemptions, and ensured timely closure of audit findings.
  • Documented and enforced controls to meet ISO, SOX, Cybersecurity, and Privacy compliance standards.
  • Collaborated with internal and external stakeholders to ensure successful audit completion and sustained compliance.
  • Logged, tracked, and remediated non-compliance instances, ensuring accountability and timely resolution.
  • Designed and recommended IAM policies and standards aligned with GITC, SOX, Cybersecurity and Privacy requirements.

Junior Information Security Consultant

Wolfpack Information Risk
2017.03 - 2018.04
  • Provided strategic guidance to clients on IT security measures, ensuring alignment with organisational goals.
  • Implemented IT security controls tailored to client specifications, strengthening their overall security posture.
  • Conducted IT risk assessments and business impact analysis to identify vulnerabilities and prioritize remediation.
  • Scoped and managed Information Security Management Systems (ISMS) using ISO 27001 and ISO 27002 standards.
  • Performed gap analyses and reviewed ISMS documentation to identify missing, outdated, or incomplete records.
  • Collaborated with senior Security consultants and Cybersecurity Analysts to implement industry related frameworks across different organisations.

Education

Bachelor of Information Sciences (Honours) - Information sciences (Honours)

University of South Africa
Pretoria, Gauteng
2018.01 - 2019.12

Bachelor of Information sciences (IT) Degree - Information science (Degree)

University of Pretoria
Pretoria, Gauteng
2014.01 - 2016.12

Industry Certificates: - CompTIA A+, CompTIA Security+ & ITIL v4

ISACA, CompTIA and Axelos
South Africa

Skills

  • Identity and Access Management Governance, Risk and Compliance practices
  • Organisational Risk Assessment and General IT Control implementation
  • Knowledge of IT related frameworks and standards (ITIL, COBIT, ISO 27001, ISO 27002, Cybersecurity baseline, SOX and NIST)
  • Knowledge of databases, extraction and manipulation (SQL and Oracle)
  • Audit preparatory planning, implementation and closure
  • Monitoring, tracking and ensuring timely remediation of audit findings
  • Collaboration with cross-functional teams and stakeholders to drive compliance initiatives
  • Audit preparation for internal/external engagement and coordinating exemptions to closure
  • Policy formulation, Process and Documentation review (ISO 9001)
  • knowledge of Agile Project management tools (Jira and Confluence)
  • Critical thinking and problem solving
  • Time management and prioritization
  • Self-leadership and Team leadership
  • Communication and Reporting skills

REFERENCES

  • Refiloe Diale, Colleague at Vodacom Pty Ltd, 087 289 8360 or 079 949 5611
  • Masixole Mzothana, Colleague at Vodacom Pty Ltd, 079 385 0507or 072 899 4494

Timeline

IAM Compliance and Governance

Vodacom (PTY) LTD.
2021.02 - 2026.07

Bachelor of Information Sciences (Honours) - Information sciences (Honours)

University of South Africa
2018.01 - 2019.12

Junior Information Security Consultant

Wolfpack Information Risk
2017.03 - 2018.04

Bachelor of Information sciences (IT) Degree - Information science (Degree)

University of Pretoria
2014.01 - 2016.12

Industry Certificates: - CompTIA A+, CompTIA Security+ & ITIL v4

ISACA, CompTIA and Axelos
Nonhlahla Mayisela