Picture
 
NATIONAL LOTTERIES COMMISSION (NLC)
 
The National Lotteries Commission (NLC), a Scheduled 3A entity in terms of the Public Finance Management Act (PFMA), is a statutory body established in terms of the Lotteries Act (Act 57 of 1997), as amended with the purpose of regulating South African Lotteries and administering the National Lottery Distribution Trust Fund (NLDTF). Suitably qualified prospective candidates who are South Africans citizens are invited to submit their applications to fill the position listed below. The National Lotteries Commission is committed to the achievement and maintenance of diversity and equity in employment, especially in respect of race, gender, and disability. 
 



KWAZULU-NATAL PROVINCIAL OFFICE 
PROVINCIAL MANAGER – KWAZULU-NATAL 
 
PURPOSE OF THE JOB 
To manage the provincial programme activities and staff working in close collaboration with the respective head office divisions and other provincial managers. This includes overall planning and coordination of resources, and execution or activities relating to application for grant funding, monitoring, and compliance enforcement in line with the strategies and policies of NLC. The Provincial Manager will also take responsibility for office administration, staff supervision, stakeholder management as well as improvement of the provincial office profile. 
SALARY:
•                Commensurate with qualifications and experience 
 
REQUIRED QUALIFICATIONS 
  • Appropriate Post Graduate degree or equivalent 
  • Project Management, Monitoring & Evaluation, Development Studies and Financial Management will be an added advantage 
 
REQUIRED WORK EXPERIENCE 
  • 5 years in related experience 
  • 3 years relevant functional experience in a management position 
  • Valid driver’s license 
  • Be prepared to travel and work under pressure to meet deadlines 
  • Knowledge of the geographic area to be served by the provincial office is recommended 
  • Proficiency in two or more of the official/main provincial languages is recommended 
 
KEY DELIVERABLES 
  • Develop Provincial Strategy Development and Implementation 
  • Establish strategies, goals and objectives of the region in line with the NLC strategy and vision and ensuring there in delivery according to the business plan. 
  • Ensure that NLC activities are consistent with the direction set in the approved grant application process, to the grant recipient 
  • Supervise and plan effective programme implementation across the province in collaboration with relevant NLC divisions. 
  • Ensure Application Processing 
  • Responsible for the Provincial Coordination of the grant application process 
  • Present project updates at the Board meetings as requested 
  • Monitor all phases of award and closing, including assessment of technical progress and performance 
  • Contribute to the Improved Capacity of Applicants to Access NLDTF Grants 
  • Contribute to improved capacity of grantees to utilize funds for intended purposes and to report on NLC funded projects 
  • Monitoring and Evaluation of grants 
  • Coordination of the Monitoring and compliance enforcement at the regional level 
  • Communication and Stakeholder Liaison 
  • Be the contact person for NLC in the Province 
  • Improve awareness of the NLDTF through good communication and strengthening stakeholder relationships in the region. 
  • Primary responsibility is the administration of the Provincial office and the supervision of all regional staff 
  • Manage and oversee the regional team performance through performance planning, coaching and performance appraisals 
  • Prepare budgets for the provincial office. 
  • Undertake provincial special projects as assigned. 
 
COMPETENCIES AND SKILLS 
  • Knowledge of the Lotteries Act and related regulations. 
  • Knowledge of PFMA and treasury regulations related to public entities. 
  • Knowledge and application of best practices in grant making. 
  • Ability to design and implement effective workflow processes and procedures. 
  • Sound knowledge and experience in working with civil society. 
  • Ability to work independently, plan and prioritise. 
  • Excellent networking skills. 
  • Public speaking ability. 
  • Financial and project management skills. 
  • Report writing skills. 
  • Presentation skills. 
  • Excellent verbal and written communication skills. 
  • Excellent organisational skills and ability to multi-task. 
  • Leadership skills. 
  • People management skills. 
 
 
Note: Recommended candidates will be subjected to attend a generic managerial competency-based assessment. Background verification, social media checks and security vetting will form part of the selection process and successful candidates will be subjected to security vetting. Correspondence will be limited to shortlisted candidates only. If you have not been contacted within three (3) months of the closing date of this advertisement, please accept that your application was unsuccessful. The NLC reserves the right not to fill any advertised position(s).
 
IMPORTANT NOTICE: APPLICATION INSTRUCTIONS: 
  • Please clearly indicate the title of the position you are applying for in the subject line 
  • Only candidates who meet the requirements should apply; 
  • Correspondence will be entered into with shortlisted candidates only; 
  • CV`s from Recruitment Agencies will not be considered. 
  • Applications received after the closing date will not be considered. 
  • Submit your comprehensive C.V with qualifications attached to the following email address: Recruitment@nlcsa.org.za
 
CLOSING DATE: 9th of October 2024 
 
NLC WELCOMES APPLICANTS WITH DISABILITIES 
 
DISCLAIMER- POPIA 
By applying for NLC’s vacancy, you expressly give NLC consent to process your personal information stored in our history of all who have applied will be processed in accordance with the Protection of Personal Information Act 4 of 2013 (“POPIA”), the NLC Human Capital Policy/Procedures, the NLC’s POPIA Policy and the NLC’s Privacy Policy. These documents set out why the NLC needs the personal information, what NLC will do with it, and with whom the NLC will share it. Note that we will not further process the personal information stored automatically in this portal.










INFORMATION COMMUNICATION TECHNOLOGY DIVISION 
ICT SECURITY SPECIALIST – FULL TIME 24 MONTHS FIXED TERM CONTRACT 
 
PURPOSE OF THE JOB 
The ICT Security Specialist is responsible for developing, implementing, and maintaining the organisation's information security strategy, ensuring alignment with ISO 27002/1 standards and COBIT 19 security domains. This role focuses on safeguarding sensitive data, systems, and infrastructure by overseeing security policies, conducting risk management activities, and leading efforts to prevent and respond to security breaches. The ICT Security Specialist will also review and implement controls to address audit findings, ensure compliance with technical cybersecurity standards, and maintain security policies and SOPs. 
SALARY:
  • Commensurate with qualifications and experience 
 
REQUIRED QUALIFICATIONS 
  • Degree or diploma in Information Technology. 
  • Certifications (Preferred over a formal degree): 
  • Technical Cybersecurity Certifications: CISSP, CEH (Certified Ethical Hacker), CompTIA Security+, or ECIH (Certified Incident Handler). 
  • Framework Knowledge: Certifications in ISO 27001, NIST, or other relevant cybersecurity standards. 
  • Hands-on Experience: Practical experience in implementing security measures, incident response, and technical security controls. 
 
REQUIRED WORK EXPERIENCE 
  • Minimum 5 years of experience in a hands-on cybersecurity role, including: 
  • Security operations and incident handling. 
  • Vulnerability assessments and penetration testing. 
  • Technical leadership in cybersecurity implementations. 
 
KEY DELIVERABLES 
Technical Security Implementation: 
  • Lead the implementation of cybersecurity measures across the organisation, focusing on network, server, and application security. 
  • Proactively identify and remediate vulnerabilities through vulnerability assessments and penetration testing. 
  • Configure and maintain security technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), and antivirus solutions. 
  • Develop and implement security controls to protect against unauthorised access, data breaches, and other cyber threats. 
 
Incident Handling & Technical Support: 
  • Act as the primary responder for security incidents, conducting in-depth investigations and technical analysis to identify root causes and mitigate impacts. 
  • Provide expert technical support to the broader ICT team in resolving complex security issues. 
  • Document and report on security incidents, providing recommendations to prevent recurrence. 
 
Cybersecurity Measures & Controls: 
  • Work closely with the ICT team to implement and optimize security controls within existing systems. 
  • Establish and document security protocols and guidelines to enhance the overall security framework. 
  • Monitor and analyse logs, traffic, and other data sources to detect and respond to potential security threats. 
 
Threat Intelligence & Vulnerability Management: 
  • Collect, analyse, and utilize threat intelligence to inform security strategies and responses. 
  • Conduct ongoing vulnerability assessments to identify security gaps and recommend technical solutions. 
  • Engage in hands-on configuration and tuning of security technologies to bolster defences. 
 
Collaboration & Technical Leadership: 
  • Collaborate with technical teams to ensure that cybersecurity measures are effectively integrated into ICT operations. 
  • Provide guidance and technical expertise to ICT staff on security best practices. 
  • Lead the development of technical solutions to enhance security, including deploying security patches and updates. 
 
Audit Findings Review & Control Implementation: 
  • Regularly review internal and external audit reports related to cybersecurity to identify gaps, vulnerabilities, and areas of non-compliance. 
  • Develop corrective action plans to address audit findings, prioritising critical issues that could impact the organisation’s security posture. 
  • Work with technical teams to implement security controls and corrective measures to mitigate identified risks, ensuring audit recommendations are fully addressed. 
  • Establish processes to continuously monitor the effectiveness of implemented controls, ensuring they meet the intended security objectives and comply with relevant standards. 
  • Document all implemented measures and prepare reports detailing actions taken, compliance status, and any residual risks. 
  • Collaborate with auditors, risk management teams, and other stakeholders to validate that the implemented controls effectively mitigate the identified risks. 
  • Recommend and implement preventive measures based on audit findings to strengthen security controls and reduce the likelihood of future issues. 
 
Policy and SOP Review & Maintenance: 
  • Regularly review and update ICT security policies and Standard Operating Procedures (SOPs) to ensure they align with current security standards and best practices.
  • Develop new policies and SOPs as required to address emerging security threats and operational needs. 
  • Ensure all security policies and procedures are effectively communicated to and understood by the relevant stakeholders. 
  • Monitor compliance with established security policies and SOPs, making adjustments as necessary to enhance security measures. 
 
Compliance & Best Practices: 
  • Ensure that implemented and managed of IT Governance aligned with COBIT 2019 domains, ITIL Domain services, 
  • Implement and ensure compliance with regulatory requirements aligned with standards such as ISO/IEC 38500, ISO/IEC 27001, ISO/IEC 27002, ISO 9001, ISO 14589, ISO/IEC 20000, ISO Domains: ISO 31000, ISO/IEC 27005, ISO/IEC 27005, ISO 27035, ISO 27031, ISO 27003 
  • Legislation: Compliance with: 
  • NIST, and other specific cybersecurity frameworks. 
  • Ensure compliance with information security legal and regulatory obligations including the Protection of Personal Information Act, 2013, 
  • Cybercrimes Act 19 of 2020 
  • National Archives and Record Service of South Africa Act 43 of 1996. 
 
COMPETENCIES AND SKILLS 
  • Proficiency in technical cybersecurity operations, including hands-on experience with security tools and systems. 
  • Strong understanding of networking, server infrastructure, and security technologies. 
  • Ability to respond effectively to cyberattacks and security incidents with practical, hands-on solutions. 
  • Excellent problem-solving skills and the ability to work independently within a fast-paced environment. 
  • Strong communication skills with the ability to collaborate effectively with technical teams. 
 
Note: Recommended candidates will be subjected to attend a generic managerial competency-based assessment. Background verification, social media checks and security vetting will form part of the selection process and successful candidates will be subjected to security vetting. Correspondence will be limited to shortlisted candidates only. If you have not been contacted within three (3) months of the closing date of this advertisement, please accept that your application was unsuccessful. The NLC reserves the right not to fill any advertised position(s). 
 
IMPORTANT NOTICE: APPLICATION INSTRUCTIONS: 
  • Please clearly indicate the title of the position you are applying for in the subject line 
  • Only candidates who meet the requirements should apply; 
  • Correspondence will be entered into with shortlisted candidates only; 
  • CV`s from Recruitment Agencies will not be considered. 
  • Applications received after the closing date will not be considered. 
  • Submit your comprehensive C.V with qualifications attached to the following email address:Recruitment@nlcsa.org.za
 
CLOSING DATE: 9th of October 2024 
 
NLC WELCOMES APPLICANTS WITH DISABILITIES 
 
DISCLAIMER- POPIA 
By applying for NLC’s vacancy, you expressly give NLC consent to process your personal information stored in our history of all who have applied will be processed in accordance with the Protection of Personal Information Act 4 of 2013 (“POPIA”), the NLC Human Capital Policy/Procedures, the NLC’s POPIA Policy and the NLC’s Privacy Policy. These documents set out why the NLC needs the personal information, what NLC will do with it, and with whom the NLC will share it. Note that we will not further process the personal information stored automatically in this portal.










INFORMATION COMMUNICATION TECHNOLOGY DIVISION 
ICT GOVERNANCE SPECIALIST – FULL TIME 24 MONTHS FIXED TERM CONTRACT 
 
PURPOSE OF THE JOB 
To manage and continuously enhance ICT governance frameworks and processes in alignment with COBIT, ITIL best practices, and the South African DPSA Governance Framework. This role ensures effective ICT governance, risk management, and compliance across the organization, complementing the work of the ICT Security Specialist. It ensures adherence to key South African legislative and regulatory requirements. 
SALARY:
  • Commensurate with qualifications and experience 
 
REQUIRED QUALIFICATIONS 
  • Degree or diploma in Information Technology. 
  • Relevant CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) certification or equivalent. 
  • Certified COBIT and ITIL practitioner. 
  • TOGAF certification (recommended). 
 
REQUIRED WORK EXPERIENCE 
Minimum 5 years of IT Governance specialist role experience in at least three of the following areas: 
  • Information Security Governance 
  • Information Security Program Management 
  • Incident Response Management 
  • Operational Information Security 
  • Risk assessment experience 
  • Risk Management 
  • Gap analysis. Policy Development and Compliance: Develop, maintain, and enforce ICT governance frameworks aligned with COBIT, ITIL, ISO 27001/2, DPSA Governance Framework, and South African legislation etc. 
  • Ensure compliance with PFMA, ECTA, and other applicable legislation, incorporating these into ICT governance processes. 
  • Align ICT governance processes with ISO 9000 standards for quality management, ensuring adherence to NARSA requirements for information governance. 
 
KEY DELIVERABLES 
ICT Governance Framework Development and Compliance: 
Risk Management and ICT Governance Support: 
  • Support the ICT Security Manager/Specialist in developing risk management frameworks aligned with the POPI Act and PAIA, ensuring protection and privacy of personal information. 
  • Maintain and update the ICT and cybersecurity risk register, ensuring alignment with organizational risk management strategies and compliance with South African regulations. 
  • Generate risk management reports, perform gap analyses, and recommend risk treatment plans. 
 
ICT Service Management and Operational Support: 
  • Implement and manage ITIL-based service management processes, including change, problem, and configuration management, ensuring compliance with ECTA. 
  • Oversee the continuous improvement of ICT service delivery, to measure and enhance service quality. 
 
Performance Monitoring and Reporting: 
  • Accumulate and analyse metrics related to ICT governance, risk management, and compliance,
  • Report on compliance, performance constraints, and risks, ensuring alignment with PFMA and PAJA requirements. 
 
Stakeholder Engagement and Leadership: 
  • Provide guidance to management on risk identification, control implementation, and ICT governance while coordinating closely with the ICT Security Manager/Specialist.
  • Ensure that stakeholder engagement processes comply with PAIA and the POPI Act, protecting information privacy and ensuring transparency. Ensure that implemented and managed of IT Governance aligned with COBIT 2019 domain, ITIL Domain services, 
 
Compliance and Best Practices 
  • Implement and ensure compliance with regulatory requirements of IT Governance aligned with standards such as ISO/IEC 38500, ISO/IEC 27001, ISO/IEC 27002, ISO 9001, ISO 14589, ISO/IEC 20000, ISO 14589, ISO Domains: ISO 31000, ISO/IEC 27005, ISO 9001, ISO Domains: ISO 31000, ISO/IEC 27005. 
  • Legislation: Compliance with PAIA (Act No. 2 of 2000), POPI Act 
  • Legislation: Compliance with PFMA (Act No. 1 of 1999), PAJA (Act No. 3 of 2000) 
  • Legislation: Compliance with ECTA (Act No. 25 of 2002) 
  • Legislation: Compliance with POPI Act, PAIA (Act No. 2 of 2000) 
  • NARSA (Act No. 43 of 1996), 
  • ECTA (Act No. 25 of 2002) 
 
COMPETENCIES AND SKILLS 
Technical Competencies 
  • Strong knowledge of current ICT technologies and operations architecture, policies, processes, systems, and tools. 
  • Ability to translate business needs into ICT and operational policies and solutions. 
  • Knowledge of ICT project planning, application development, and ICT governance best practices. 
  • Experience in implementing and managing, quality management standards. 
  • Effective communication and people skills, including conflict-management, working across multiple teams and with diverse stakeholders. 
 
Behavioural Competencies: 
  • Customer Focus: Crafting and implementing service practices that meet customers' needs, 
  • Achievement Orientation: Setting and achieving high goals, continuously improving. 
  • Initiative: Identifying and implementing process improvements that enhance quality management and governance. 
  • Decision-Making: Allocating responsibilities to maximize effectiveness and quality outcomes. 
  • Strategic Thinking: Committing to long-range goals and plans, incorporating quality management principles. 
  • Continuous Learning: Actively pursuing learning opportunities and applying new knowledge to improve quality management and governance. 
  • Relationship Building: Establishing strategic relationships across the organization, ensuring alignment with quality management practices. 
 
 
Note: Recommended candidates will be subjected to attend a generic managerial competency-based assessment. Background verification, social media checks and security vetting will form part of the selection process and successful candidates will be subjected to security vetting. Correspondence will be limited to shortlisted candidates only. If you have not been contacted within three (3) months of the closing date of this advertisement, please accept that your application was unsuccessful. The NLC reserves the right not to fill any advertised position(s). 
 
IMPORTANT NOTICE: APPLICATION INSTRUCTIONS: 
  • Please clearly indicate the title of the position you are applying for in the subject line 
  • Only candidates who meet the requirements should apply. 
  • Correspondence will be entered into with shortlisted candidates only. 
  • CV`s from Recruitment Agencies will not be considered. 
  • Applications received after the closing date will not be considered. 
  • Submit your comprehensive C.V with qualifications attached to the following email address:Recruitment@nlcsa.org.za
 
CLOSING DATE: 9th of October 2024 
 
NLC WELCOMES APPLICANTS WITH DISABILITIES 
 
DISCLAIMER- POPIA 
By applying for NLC’s vacancy, you expressly give NLC consent to process your personal information stored in our history of all who have applied will be processed in accordance with the Protection of Personal Information Act 4 of 2013 (“POPIA”), the NLC Human Capital Policy/Procedures, the NLC’s POPIA Policy and the NLC’s Privacy Policy. These documents set out why the NLC needs the personal information, what NLC will do with it, and with whom the NLC will share it. Note that we will not further process the personal information stored automatically in this portal.