search
location_on
arrow_back
search

Search Suggestions

Recent Searches

Popular Searches

arrow_back
location_on

Location Suggestions

Popular Locations

Nearby Locations

Other Jobs Near Me

Industry

  1. request_quote Accounting
  2. work Administrative
  3. eco Agriculture Forestry
  4. smart_toy AI & Emerging Technologies
  5. school Apprenticeships & Trainee
  6. apartment Architecture
  7. palette Arts & Entertainment
  8. directions_car Automotive
  9. flight_takeoff Aviation
  10. account_balance Banking & Finance
  11. local_florist Beauty & Wellness
  12. restaurant Catering
  13. volunteer_activism Charity & Voluntary
  14. science Chemical Engineering
  15. child_friendly Childcare
  16. foundation Civil Engineering
  17. clean_hands Cleaning & Sanitation
  18. diversity_3 Community & Social Care
  19. construction Construction
  20. brush Creative & Digital
  21. currency_bitcoin Crypto & Blockchain
  22. support_agent Customer Service & Helpdesk
  23. medical_services Dental
  24. medical_services Driving & Transport
  25. medical_services E Commerce & Social Media
  26. school Education & Teaching
  27. electrical_services Electrical Engineering
  28. bolt Energy
  29. local_mall Fmcg
  30. gavel Government & Non Profit
  31. emoji_events Graduate
  32. health_and_safety Healthcare
  33. beach_access Hospitality & Tourism
  34. groups Human Resources
  35. precision_manufacturing Industrial Engineering
  36. security Information Security
  37. handyman Installation & Maintenance
  38. policy Insurance
  39. code IT & Software
  40. gavel Legal
  41. sports_soccer Leisure & Sports
  42. inventory_2 Logistics & Warehousing
  43. supervisor_account Management
  44. supervisor_account Management Consultancy
  45. supervisor_account Manufacturing & Production
  46. campaign Marketing
  47. build Mechanical Engineering
  48. perm_media Media & PR
  49. local_hospital Medical
  50. local_hospital Military & Public Safety
  51. local_hospital Mining
  52. medical_services Nursing
  53. local_gas_station Oil & Gas
  54. biotech Pharmaceutical
  55. checklist_rtl Project Management
  56. shopping_bag Purchasing
  57. home_work Real Estate
  58. person_search Recruitment Consultancy
  59. store Retail
  60. point_of_sale Sales
  61. science Scientific Research & Development
  62. wifi Telecoms
  63. psychology Therapy
  64. pets Veterinary
View All Cyber Threats Jobs

49 Cyber Threats jobs in South Africa

Information Security Analyst

R420000 Y Acacium Group

Posted today

Job Viewed

Tap Again To Close

Job Description

Information Security Analyst

Acacium Group – Woodstock, Cape Town

Permanent, Full Time

Salary: R35 000 per month plus amazing benefits

Unlock Your Potential

Are you a technically minded individual with a passion for cybersecurity? Are you eager to grow and develop within a global organisation?

This is an excellent entry-level opportunity to launch your career in Information Security.

As an Information Security Analyst, you will play a key role in supporting our security operations and governance frameworks. You'll work closely with both technical teams—such as Infrastructure, Service Delivery, and Application Management—and non-technical teams including Legal, Compliance, HR, Audit, and Risk. You'll also engage with end users to promote best practices and ensure ongoing compliance across the organisation.

Every Day, You Will…

  • Conduct threat hunting activities to proactively identify and mitigate risks.
  • Assist in security incident management, including triaging alerts and coordinating responses.
  • Support regular reviews of suppliers, project risks, and user access.
  • Help update IT security policies and practices.
  • Deliver and assess IT Security & Cyber Awareness training, audits, and testing.
  • Contribute to maintaining compliance with standards like ISO 27001, Cyber Essentials Plus, NHS DSP Toolkit, and GDPR.
  • Compile monthly and quarterly security reports.
  • Assist in cyber incident response and business continuity efforts.

What's In It For You?

  • Hands-on technical training and exposure to a wide range of systems
  • Opportunities to earn certifications in the Information Security field
  • Access to senior stakeholders and involvement in impactful corporate projects
  • Mentorship from experienced professionals to guide your development
  • A strong focus on your career growth, with the tools, support, and guidance to help you thrive
  • Unmatched career progression, thanks to being part of a global group spanning healthcare, staffing, and life sciences
  • Exciting events and incentives, both locally and across the wider group
  • Employer contributions to medical aid
  • Subsidised transport options

Join Us and Make a Difference

Acacium Group is a global healthcare solutions partner offering staffing, managed services, and innovative delivery models to health and social care systems and the life sciences industry. We are powered by the best people and have an unrivalled and diverse range of capabilities, all while incorporating our company values into everything we do:

Putting People First, Always by Your Side, Driven by Excellence.

Join us and play a key part in shaping the future of society and improving people's lives

To Thrive in This Role, You Must Have…

  • A positive, logical, and proactive approach to problem-solving
  • Strong organisational and time management skills
  • The ability to prioritise tasks and deliver high-quality outcomes
  • Clear written communication skills, especially when creating technical documentation for non-technical audiences
  • The ability to identify and manage risks within the business and Information Security framework
  • Confidence and strong verbal communication skills
  • CompTIA Security+
  • Microsoft Security Operations Analyst

Employment Equity

The Company's approved Employment Equity Plan and Targets will be considered as part of the recruitment process. As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.

This advertiser has chosen not to accept applicants from your region.

Information Security Analyst

R120000 - R360000 Y INTERCERT INC

Posted today

Job Viewed

Tap Again To Close

Job Description

Company Description

INTERCERT is a multinational company headquartered in Texas, USA, operating in over 28 countries. Founded in 2009, INTERCERT is dedicated to building a secure and sustainable world through customer-centric services. We are accredited by leading organizations, including America's accreditation board under IAF for ISO Certification Services, Cloud Security Alliance for CSA STAR Certification services, AICPA CPA Firm for SOC1 & SOC2 Audit Attestation and CREST accreditation for PEN Testing Services. Our services also encompass CMMC, PCI DSS Certification, and Data Protection compliance for standards such as GDPR, HIPAA, and Cybersecurity frameworks. With a team of over 150 experienced assessors, we deliver global assessment services with a focus on compliance and excellence.

Role Description

This is a full-time, remote working role for an Information Security Analyst in South Africa. The Information Security Analyst will be responsible for day-to-day tasks such as assist with the planning and execution of GRC audits such as ISO 27001, ISO 22301, ISO 27701, SOC2, GDPR etc.

Qualifications

Bachelor's Degree or equivalent focused on Information
Security / Cybersecurity

Experience Level

0-6 months

Roles and Responsibilities

Assist with the planning and execution of GRC audits such as ISO 27001, ISO 22301, ISO 27701, SOC2, GDPR etc.

Help assess the design and effectiveness of internal controls, including business and IT controls.

Prepare reports and documentation for external audits and communicate audit findings and recommendations.

Stay updated on evolving regulatory changes, industry standards, and best practices related to GRC, risk management, and auditing.

This advertiser has chosen not to accept applicants from your region.

Information Security Analyst

R150000 - R250000 Y INTERCERT INC

Posted today

Job Viewed

Tap Again To Close

Job Description

Company Description

INTERCERT is a multinational company headquartered in Texas, USA, operating in over 28 countries. Founded in 2009, INTERCERT is dedicated to building a secure and sustainable world through customer-centric services. We are accredited by leading organizations, including America's accreditation board under IAF for ISO Certification Services, Cloud Security Alliance for CSA STAR Certification services, AICPA CPA Firm for SOC1 & SOC2 Audit Attestation and CREST accreditation for PEN Testing Services. Our services also encompass CMMC, PCI DSS Certification, and Data Protection compliance for standards such as GDPR, HIPAA, and Cybersecurity frameworks. With a team of over 150 experienced assessors, we deliver global assessment services with a focus on compliance and excellence.

Role Description

This is a full-time, on-site role for an Information Security Analyst / Interns at INTERCERT INC., located in South Africa. The Information Security Analyst / Intern will be responsible for day-to-day tasks such as assist with the planning and execution of GRC audits such as ISO 27001, ISO 22301, ISO 27701, SOC2, GDPR etc.

Qualifications

Bachelor's Degree or equivalent focused on Information
Security/Cybersecurity

Experience Level

0-6 months

Roles and Responsibilities

Assist with the planning and execution of GRC audits such as ISO 27001, ISO 22301, ISO 27701, SOC2, GDPR etc.

Help assess the design and effectiveness of internal controls, including business and IT controls.

Prepare reports and documentation for external audits and communicate audit findings and recommendations.

Stay updated on evolving regulatory changes, industry standards, and best practices related to GRC, risk management, and auditing.

This advertiser has chosen not to accept applicants from your region.

Information Security Analyst

Centurion, Gauteng R900000 - R1200000 Y Group Digital and Technology Office

Posted today

Job Viewed

Tap Again To Close

Job Description

Introduction

Through our client-facing brands Metropolitan and Momentum, with Multiply (wellness and rewards program), and our other specialist brands, including Guardrisk and Eris Property Group, the group enables business and people from all walks of life to achieve their financial goals and life aspirations.We help people grow their savings, protect what matters to them and invest for the future. We help companies and organization's care for and reward their employees and members. Through our own network of advisers or via independent brokers and utilising new platforms Momentum Metropolitan provides practical financial solutions for people, communities, and businesses. Visit us at

Disclaimer

As an applicant, please verify the legitimacy of this job advert on our company career page.

Role Purpose

This position is responsible for performing various tasks. This role is also required to conduct ongoing research in the IT security arena and regularly assist in the sales process.The ideal candidate will be responsible for conducting comprehensive penetration tests, identifying vulnerabilities, and providing recommendations to improve security posture. The ideal candidate must have experience in all forms of complex technical security assessments of clients' information technology systems (including the Internet, Intranet, applications, hosts, firewalls, mobile applications, etc.) and related policies and procedures. They must be highly motivated and have a good command of industry best practices.

Requirements

  • 5+ years of experience in penetration testing, vulnerability assessment, or a related field.

  • Deep knowledge of security testing methodologies and frameworks (OWASP, NIST, etc.).

  • Proficiency with advanced penetration testing tools such as Metasploit, Burp Suite, Nessus, Nmap, etc.

  • Strong scripting skills (Python, Bash, PowerShell, etc.) for automating security tasks.

  • In-depth understanding of network protocols, operating systems, web technologies, and cloud environments.

  • CISSP and CEH certification preferred.

  • OSCP, OSEP, CCSP, CRTE, CRTP, or CRTO certification or equivalent is an advantage.

Duties & Responsibilities

  • Lead and conduct comprehensive penetration tests on networks, applications, and systems to identify security weaknesses.

  • Develop and implement advanced security test plans, scenarios, and scripts.

  • Perform in-depth vulnerability assessments and security analysis using both automated tools and manual techniques.

  • Document and report security findings, providing actionable insights to clients and detailed recommendations for remediation.

  • Collaborate with cross-functional teams to prioritize and resolve security vulnerabilities.

  • Research and stay current with emerging security threats, vulnerabilities, and technology trends.

  • Participate in security incident response activities when required.

  • Assist in the development and refinement of security policies, procedures, and standards.

  • Provide training, guidance, and mentorship to junior penetration testers and other security staff.

  • Perform security assessments, including application scans (using tools such as Nessus, Burp Suite) and code reviews, to ensure compliance with Momentum Group's SDLC policies.

  • Participate in a variety of other internal security projects and information security activities as required.

Competencies

  • Strong knowledge of OWASP Top 10 vulnerabilities and how to exploit/mitigate them.

  • Excellent technical writing skills for creating detailed assessment reports.

  • Self-driven, motivated, independent yet communicative and collaborative.

  • Ability to work unsupervised in a remote capacity and deliver results.

  • Good organizational skills and time management; ability to resolve conflicts, prioritize tasks, and follow quality benchmarks.

  • Strong verbal communication skills for presenting findings to technical and non-technical stakeholders.

  • Demonstrate a strong ability to engage with various stakeholders, have a team-based approach, and work towards shared goals and outcomes.

  • Ability to think outside the box and a passion to improve your skills and drive innovation.

This advertiser has chosen not to accept applicants from your region.

Senior Information Security Analyst

7400 Cape Town, Western Cape Sabenza IT & Recruitment

Posted 10 days ago

Job Viewed

Tap Again To Close

Job Description

Our clients in the consulting space are on the hunt for a seasoned Senior Information Security Analyst to join their teams in the Western cape. Work and collaborate with Dynamic teams, architects and stakeholders on a hybrid model and expand your skillset exponentially.

Responsibilities:

Planning and deploying technical security solutions, working independently to driving projects to completionCollaborate with solutions architects support implementation efforts.Maintain and support complex security environments, ensuring operational stability.Troubleshoot and resolve security issues.Assess risks from new vulnerabilities and contribute to mitigation recommendations.Participate in customer engagements and incident bridges, supporting complex technical issues as needed.Contribute to quality assurance efforts and peer reviews within the team.Support documentation efforts including proposals, reports, and project materials.Take ownership of assigned technologies and contribute to team knowledge sharing.Demonstrate understanding of business principles and contribute to design work with guidance.Work overtime and assist with standby duties as required.Perform additional tasks as defined by leadership.Monitor external threat landscape and share relevant insights with the team.Create and contribute to reports and technology updates.Resolve escalated incidents and requests within SLA timelines.Update tickets consistently with resolution details.Proactively identify and log issues, capturing relevant information for resolution.Provide third-level support and assist in root cause analysis.Share knowledge and document solutions for broader team use.Communicate effectively with internal teams and clients.Support change implementation and documentation.Identify opportunities for automation and collaborate with relevant teams.Participate in quality audits as required.Requirements4–6 years of information security experienceCEH, CASP+, Microsoft Azure certifications(Preferred) CCIE / CISSP / CISM / CISAExposure to security architecture tools and methodologiesHands-on experience with IT security solutionsUnderstanding of IT operations and project deploymentsFamiliarity with regulatory frameworks (e.g., POPIA, GDPR)Ability to communicate security concepts to technical and non-technical audiencesExperience with cloud security tools and managed servicesProficiency in ticketing systems (e.g., ServiceNow, 4Me, Jira)Experience in enterprise environments and vendor coordinationSIEM/SOC technologies (e.g., Azure Sentinel)Vulnerability managementThreat/risk analysisFirewall/IPS/IDSEndpoint protection (XDR)Basic penetration testing and ethical hackingAzure cloud security fundamentalsSolid understanding of change management processes.Strong technical skills in relevant security domains.Good client service orientation and communication skills.Ability to work across diverse teams and cultures.Organized and adaptable to changing circumstances.Positive attitude and resilience under pressure.Active listening and problem-solving skills.Familiarity with security frameworks and standards.Exposure to multiple cybersecurity domains.
This advertiser has chosen not to accept applicants from your region.

Information Security Analyst MMH250401-13

Centurion, Gauteng R500000 - R1200000 Y Momentum Group Limited

Posted today

Job Viewed

Tap Again To Close

Job Description

Role Purpose

This position is responsible for performing various tasks. This role is also required to conduct ongoing research in the IT security arena and regularly assist in the sales process.The ideal candidate will be responsible for conducting comprehensive penetration tests, identifying vulnerabilities, and providing recommendations to improve security posture. The ideal candidate must have experience in all forms of complex technical security assessments of clients' information technology systems (including the Internet, Intranet, applications, hosts, firewalls, mobile applications, etc.) and related policies and procedures. They must be highly motivated and have a good command of industry best practices.

Requirements

  • 5+ years of experience in penetration testing, vulnerability assessment, or a related field.
  • Deep knowledge of security testing methodologies and frameworks (OWASP, NIST, etc.).
  • Proficiency with advanced penetration testing tools such as Metasploit, Burp Suite, Nessus, Nmap, etc.
  • Strong scripting skills (Python, Bash, PowerShell, etc.) for automating security tasks.
  • In-depth understanding of network protocols, operating systems, web technologies, and cloud environments.
  • CISSP and CEH certification preferred.
  • OSCP, OSEP, CCSP, CRTE, CRTP, or CRTO certification or equivalent is an advantage.

Duties and Responsibilities

  • Lead and conduct comprehensive penetration tests on networks, applications, and systems to identify security weaknesses.
  • Develop and implement advanced security test plans, scenarios, and scripts.
  • Perform in-depth vulnerability assessments and security analysis using both automated tools and manual techniques.
  • Document and report security findings, providing actionable insights to clients and detailed recommendations for remediation.
  • Collaborate with cross-functional teams to prioritize and resolve security vulnerabilities.
  • Research and stay current with emerging security threats, vulnerabilities, and technology trends.
  • Participate in security incident response activities when required.
  • Assist in the development and refinement of security policies, procedures, and standards.
  • Provide training, guidance, and mentorship to junior penetration testers and other security staff.
  • Perform security assessments, including application scans (using tools such as Nessus, Burp Suite) and code reviews, to ensure compliance with Momentum Group's SDLC policies.
  • Participate in a variety of other internal security projects and information security activities as required.

As an applicant, please verify the legitimacy of this job advert on our company career page

This advertiser has chosen not to accept applicants from your region.

Information Security Manager

R104000 - R130878 Y Tillo

Posted today

Job Viewed

Tap Again To Close

Job Description

  • Who we're looking for: An experienced Information Security Manager to lead the implementation and ongoing maturity of our Information Security Management System (ISMS), ensure alignment with ISO 27001:2022, and manage risk across the business.
  • The challenge: To own the ISMS documentation and audit programme, coordinate internal and external audits, oversee the risk register, and support internal teams on policy compliance and security awareness.
  • Where you'll work: This role will be based in Cape Town, you'll be part of our global team, collaborating with colleagues and serving customers across the UK, USA, Australia, South Africa, and beyond. Our hybrid approach offers flexibility with regular team connection in our Cape Town office.

The Tillo Difference

We're in the business of rewards and incentives, so we know a thing or two about the importance of giving back. We can't grow as a business without growing as individuals, so we are committed to providing a workplace where passionate, driven individuals can thrive. We value collaboration, trust, positivity, and a willingness to learn - only by working as a team will we reach our goals.

We're the market leader in the UK and are active in a number of other markets including USA, Europe, Australia and India.

This role will be responsible for:

  • ISMS Ownership & Audit Readiness

  • Maintain and evolve the ISMS documentation and controls in line with ISO 27001:2022.

  • Coordinate and lead internal audits (quarterly for TZ) and external certification audits.
  • Write up audit findings and risk reports for SLT and the Board.
  • Monitor ISMS KPIs and compliance metrics .

  • Risk Management

  • Own the company-wide risk register and associated documentation (excluding the risk framework itself).

  • Support teams in identifying, assessing, and documenting risks.
  • Track and ensure timely implementation of Risk Treatment Plans.
  • Monitor and report on key risk metrics.

  • Incident & Corrective Action Management

  • Maintain the incident log, ensuring proper documentation, root cause analysis and closure.

  • Drive corrective actions and improvements from internal/external audits and incidents.

  • Security Policy & Training

  • Maintain and develop ISO 27001-compliant security policies (non-Engineering).

  • Coordinate business-wide security awareness training (e.g., KnowBe4).
  • Champion InfoSec awareness and lead monthly security meetings.

  • Client & Vendor Security Assurance

  • Complete InfoSec and risk sections of client due diligence questionnaires.

  • Support the development of a Trust Centre to streamline security responses.

What we're looking for

  • 3+ years in an Information Security or Risk Management role with experience in ISO 27001 implementation and audits.
  • A strong understanding of risk frameworks, internal controls, and compliance management.
  • Experience with audit coordination and ISMS documentation.
  • The ability to translate technical and regulatory language into business-friendly advice.
  • Working knowledge of privacy, AML, and business continuity requirements.
  • Familiarity with InfoSec tooling (e.g., Drata, Vanta, KnowBe4).
  • Exceptional communication, reporting and organisational skills.

Benefits

We offer all our employees trust and empower our team to work with flexibility and autonomy. We're a close-knit team and love working collaboratively, with our hybrid model, our team can come together at our fantastic offices, but also focus in their own space. The Tillo team are a motivated bunch and we all work hard to push Tillo forwards, always innovating. We completely understand the importance of work/life balance and offer a supportive and collaborative working environment with the following benefits:

  • 21 days holiday per annum
  • Retirement Fund (5%)
  • Health insurance contribution
  • Employee Incentive Scheme
  • Hybrid Working
  • Top spec equipment including laptop, mouse, keyboard, monitor
  • Anniversary gifts
  • Monthly breakfasts, drinks, snacks and events
  • Team Learning & Development budget
About Tillo

Tillo makes gift cards, rewards, and incentives simple, efficient, and profitable. Operating in over 37 markets and 25 currencies, Tillo processes billions in gift card transactions through a single, plug-and-go API, powering rewards and incentives for the world's leading businesses.

Backed by Tenzing, Tillo is setting the global standard for digital gift card infrastructure.

Diversity, Equity, and Inclusion Statement

We are committed to fostering a diverse and inclusive workplace where everyone feels valued and respected. We welcome applications from individuals of all backgrounds, regardless of age, disability, gender identity, marital status, race, ethnicity, religion or belief, sex, or sexual orientation.

If you require any reasonable adjustments during the recruitment process, please let us know, and we will be happy to accommodate your needs.

This advertiser has chosen not to accept applicants from your region.
Be The First To Know

About the latest Cyber threats Jobs in South Africa !

Officer, Information Security

R900000 - R1200000 Y Standard Bank

Posted today

Job Viewed

Tap Again To Close

Job Description

Job Overview

Business Segment: Group Functions

Location: ZA, GP, Johannesburg, 30 Baker Street

Job Type: Full-time

Job Ref ID: A-0001

Date Posted: 8/25/2025

Job Description

To implement the Group Cyber Resilience strategy securing platforms ecosystems 3rd party integration protecting sensitive data, applications and supporting infrastructure from infiltration or misuse guiding security capabilities in client segment and solutions. Facilitate security services ensuring that policies, standards and controls are embedded to prevent reputational, financial or other losses and compliance with regulatory requirements.Educate employees about their InfoSec responsibilities

Qualifications

A Degree in Business Commerce or Information Technology or Risk Management.

Experience Required:

5-7 years experience in an information security or Audit role within the banking and /or financial services sector. Experience working in a multi-vendor and outsourced and multi-system IT environment

5-7 years good working knowledge and experience with the implementation and management of information security policies and frameworks within a corporate environment. Management experience working with individuals and teams from diverse cultures

5-7 years strong IT understanding, gaining insight into digital and platform operating models and cyber security trends and solutions

Additional Information

Behavioural Competencies:

Adopting Practical Approaches

Articulating Information

Checking Things

Directing People

Examining Information

Exploring Possibilities

Interpreting Data

Making Decisions

Providing Insights

Pursuing Goals

Showing Composure

Upholding Standards

Technical Competencies:

Benefits Management

Information Security

Internal & External IT Environment

IT Risk Management

Knowledge of Banking & Financial Service

Stakeholder Management (IT)

Please note: All our recruitment processes comply with the applicable local laws and regulations. We will never ask for money or any from of payment as part of our recruitment process. If you experience this, please contact our Fraud line on or

This advertiser has chosen not to accept applicants from your region.

Information Security Manager

Midrand, Gauteng R1200000 - R3600000 Y PSG Konsult

Posted today

Job Viewed

Tap Again To Close

Job Description

Designation:

Information Security Manager | Waterfall, Midrand, Gauteng | Permanent

Category:

Information Technology

Job Level:

Professionally qualified and experienced specialists and mid-management

Posted by:

PSG Financial Services

Posted on:

03 Oct 2025

Reference Number:

POS08450

Closing date:

30-Oct-2025

Position Type:

Permanent

Location:

Waterfall Magwa Crescent

Overview:

VACANCY | INFORMATION SECURITY MANAGER | WATERFALL, MIDRAND, GAUTENG | PERMANENT

PSGs commitment to transform and embrace diversity is what drives us to achieve a diverse workplace with employment equity as a key goal to create an inclusive workforce. In achieving our employment equity goals, we give preference to applicants from designated groups, and we encourage people with disability to apply.

Job description:

The Information Security Manager will lead PSG's cybersecurity strategy, governance, and operations across a hybrid cloud infrastructure. This includes managing Microsoft security capabilities, integrating firewall technologies, overseeing the Cyber Security Operations Center (SOC), and ensuring compliance with regulatory and industry standards. The role also includes managing BYOD risks, securing branch networks, and aligning with globally recognized frameworks such as the NIST Cybersecurity Framework and Joint Security Standards (JSS).

Responsibilities:
Strategic Leadership & Governance
  • Develop and maintain PSG's enterprise-wide cybersecurity strategy aligned with business objectives and regulatory requirements.
  • Establish and enforce security governance frameworks, policies, and standards.
  • Ensure alignment with the NIST Cybersecurity Framework (Identify, Protect, Detect, Respond, Recover) and Joint Security Standards.
  • Lead the implementation of relevant security compliance initiatives.
  • Collaborate with divisional CIOs and executive leadership to align security posture across business units.
  • Monitor emerging threats, regulatory changes, and industry trends to inform strategic decisions.
Architecture & Identity Management
  • Design secure solutions for hybrid environments (on-prem + Azure).
  • Integrate security into infrastructure and application projects.
  • Manage identity and access controls, including Azure AD, MFA, and privileged access management.
Security Operations
  • Manage day-to-day security monitoring, incident handling, and threat intelligence.
  • Administer Microsoft 365 security features: Defender for Endpoint, Purview, Sentinel, Conditional Access, etc.
  • Ensure endpoint, network, and cloud security controls are effectively implemented and monitored.
  • Implement and enforce BYOD policies, including mobile device management (MDM), data loss prevention (DLP), and secure access controls.
  • Secure branch office networks, including firewalls, VPNs, segmentation, and remote access protocols.
Financial Management
  • Develop and manage the annual cybersecurity budget, including licensing, tools, training, and consulting services.
  • Track and report on security-related expenditures, ROI, and risk mitigation outcomes.
  • Support procurement and vendor management for security solutions.
Cyber Security Operations Center (SOC) Oversight
  • Oversee 24/7 SOC operations, ensuring effective threat detection, incident response, and escalation.
  • Define SOC roles, workflows, and incident response playbooks.
  • Integrate SIEM, SOAR, and threat intelligence platforms for proactive defense.
  • Monitor and improve KPIs such as MTTD (Mean Time to Detect) and MTTR (Mean Time to Respond).
  • Coordinate with external threat intelligence providers and law enforcement when necessary.
Security Technology Lifecycle Management
  • Oversee the deployment, maintenance, and upgrade of security technologies including Microsoft 365 E3/E5 and Hailstone platforms.
  • Ensure timely patching, configuration updates, and feature adoption.
  • Maintain compatibility and integration of security tools with PSG's hybrid infrastructure.
  • Document system configurations and update operational procedures regularly.
Risk Management & Compliance
  • Conduct regular risk assessments, vulnerability scans, and penetration tests.
  • Ensure compliance with POPIA, GDPR, NIST CSF, JSS, and other relevant regulations and frameworks.
  • Maintain a risk register and track mitigation actions.
  • Coordinate internal and external audits and ensure timely remediation of findings.
Awareness, Education & Training
  • Lead organization-wide cybersecurity awareness programs.
  • Deliver targeted training for IT, business, and executive teams.
  • Promote secure behaviour and incident reporting culture.
Team Leadership & Culture
  • Build and lead a high-performing cybersecurity team, leveraging SOC analysts, engineers, and compliance specialists.
  • Define clear roles, responsibilities, and performance expectations.
  • Conduct regular coaching, performance reviews, and career development planning.
  • Foster a culture of accountability, innovation, and continuous improvement.
  • Promote cybersecurity awareness and ownership across all departments.
Reporting
  • Prepare operational, executive-level reports on security posture, risk exposure, and compliance status.
Minimum requirements:
  • Bachelor's degree in Computer Science, Information Technology, or related field.
  • 8+ years of IT Security experience, with 5+ years in a leadership role.
  • CISSP, CISM, or equivalent
  • Microsoft Certified: Cybersecurity Architect Expert
  • GIAC Security Operations (GSOM) or equivalent SOC certification
  • Familiarity with scripting (PowerShell, Bash) and automation tools.
Experience in the following technologies and concepts:
  • Microsoft 365 and SharePoint Online
  • Proven experience in cybersecurity leadership within hybrid cloud environments.
  • Deep knowledge of Microsoft 365 E3/E5 security stack and Hailstone technologies.
  • Strong understanding of SIEM, SOAR, threat intelligence, and SOC operations.
  • Experience managing BYOD environments and securing distributed branch networks.
  • Familiarity with ISO/IEC 27001, ISO/IEC 2000, NIST, and CIS controls.
  • Excellent communication, stakeholder engagement, and team leadership skills.
  • Technical documentation
Competencies required:
  • Strong leadership and problem-solving skills.
  • Attention to detail
  • Decision making
  • Leadership
  • Attention to detail
  • Resilience
  • Good verbal and written communication skills
  • Time management skills
  • Deadline driven
How to apply:

Candidates interested must apply here by no later than 30 October 2025 OR browse available PSG Careers vacancies

By submitting your application, you are giving PSG Financial Services implicit consent to the storage and processing of your personal information. If you are not contacted within 4 weeks of your application, please accept that your application was not successful. For more information about careers at PSG, visit

This advertiser has chosen not to accept applicants from your region.

Information Security Manager

R600000 - R1200000 Y PSG Wealth Menlyn

Posted today

Job Viewed

Tap Again To Close

Job Description

Designation: Information Security Manager | Waterfall, Midrand, Gauteng | Permanent

Category: Information Technology

Job Level: Professionally qualified and experienced specialists and mid-management

Posted by: PSG Financial Services

Posted on: 03 Oct 2025

Reference Number: POS08450

Closing date: 30-Oct-2025

Position Type: Permanent

Location: Waterfall Magwa Crescent

Overview
VACANCY | INFORMATION SECURITY MANAGER | WATERFALL, MIDRAND, GAUTENG | PERMANENT
PSGs commitment to transform and embrace diversity is what drives us to achieve a diverse workplace with employment equity as a key goal to create an inclusive workforce. In achieving our employment equity goals, we give preference to applicants from designated groups, and we encourage people with disability to apply.

Job Description
The Information Security Manager will lead PSG's cybersecurity strategy, governance, and operations across a hybrid cloud infrastructure. This includes managing Microsoft security capabilities, integrating firewall technologies, overseeing the Cyber Security Operations Center (SOC), and ensuring compliance with regulatory and industry standards. The role also includes managing BYOD risks, securing branch networks, and aligning with globally recognized frameworks such as the NIST Cybersecurity Framework and Joint Security Standards (JSS).

*Responsibilities:
Strategic Leadership & Governance *

  • Develop and maintain PSG's enterprise-wide cybersecurity strategy aligned with business objectives and regulatory requirements.
  • Establish and enforce security governance frameworks, policies, and standards.
  • Ensure alignment with the NIST Cybersecurity Framework (Identify, Protect, Detect, Respond, Recover) and Joint Security Standards.
  • Lead the implementation of relevant security compliance initiatives.
  • Collaborate with divisional CIOs and executive leadership to align security posture across business units.
  • Monitor emerging threats, regulatory changes, and industry trends to inform strategic decisions.

*Architecture & Identity Management *

  • Design secure solutions for hybrid environments (on-prem + Azure).
  • Integrate security into infrastructure and application projects.
  • Manage identity and access controls, including Azure AD, MFA, and privileged access management.

*Security Operations *

  • Manage day-to-day security monitoring, incident handling, and threat intelligence.
  • Administer Microsoft 365 security features: Defender for Endpoint, Purview, Sentinel, Conditional Access, etc.
  • Ensure endpoint, network, and cloud security controls are effectively implemented and monitored.
  • Implement and enforce BYOD policies, including mobile device management (MDM), data loss prevention (DLP), and secure access controls.
  • Secure branch office networks, including firewalls, VPNs, segmentation, and remote access protocols.

*Financial Management *

  • Develop and manage the annual cybersecurity budget, including licensing, tools, training, and consulting services.
  • Track and report on security-related expenditures, ROI, and risk mitigation outcomes.
  • Support procurement and vendor management for security solutions.

*Cyber Security Operations Center (SOC) Oversight *

  • Oversee 24/7 SOC operations, ensuring effective threat detection, incident response, and escalation.
  • Define SOC roles, workflows, and incident response playbooks.
  • Integrate SIEM, SOAR, and threat intelligence platforms for proactive defense.
  • Monitor and improve KPIs such as MTTD (Mean Time to Detect) and MTTR (Mean Time to Respond).
  • Coordinate with external threat intelligence providers and law enforcement when necessary.

*Security Technology Lifecycle Management *

  • Oversee the deployment, maintenance, and upgrade of security technologies including Microsoft 365 E3/E5 and Hailstone platforms.
  • Ensure timely patching, configuration updates, and feature adoption.
  • Maintain compatibility and integration of security tools with PSG's hybrid infrastructure.
  • Document system configurations and update operational procedures regularly.

*Risk Management & Compliance *

  • Conduct regular risk assessments, vulnerability scans, and penetration tests.
  • Ensure compliance with POPIA, GDPR, NIST CSF, JSS, and other relevant regulations and frameworks.
  • Maintain a risk register and track mitigation actions.
  • Coordinate internal and external audits and ensure timely remediation of findings.

*Awareness, Education & Training *

  • Lead organization-wide cybersecurity awareness programs.
  • Deliver targeted training for IT, business, and executive teams.
  • Promote secure behaviour and incident reporting culture.

*Team Leadership & Culture *

  • Build and lead a high-performing cybersecurity team, leveraging SOC analysts, engineers, and compliance specialists.
  • Define clear roles, responsibilities, and performance expectations.
  • Conduct regular coaching, performance reviews, and career development planning.
  • Foster a culture of accountability, innovation, and continuous improvement.
  • Promote cybersecurity awareness and ownership across all departments.

*Reporting *

  • Prepare operational, executive-level reports on security posture, risk exposure, and compliance status.

*Minimum requirements: *

  • Bachelor's degree in Computer Science, Information Technology, or related field.
  • 8+ years of IT Security experience, with 5+ years in a leadership role.
  • CISSP, CISM, or equivalent
  • Microsoft Certified: Cybersecurity Architect Expert
  • GIAC Security Operations (GSOM) or equivalent SOC certification
  • Familiarity with scripting (PowerShell, Bash) and automation tools.

*Experience in the following technologies and concepts: *

  • Microsoft 365 and SharePoint Online
  • Proven experience in cybersecurity leadership within hybrid cloud environments.
  • Deep knowledge of Microsoft 365 E3/E5 security stack and Hailstone technologies.
  • Strong understanding of SIEM, SOAR, threat intelligence, and SOC operations.
  • Experience managing BYOD environments and securing distributed branch networks.
  • Familiarity with ISO/IEC 27001, ISO/IEC 2000, NIST, and CIS controls.
  • Excellent communication, stakeholder engagement, and team leadership skills.
  • Technical documentation

*Competencies required: *

  • Strong leadership and problem-solving skills.
  • Attention to detail
  • Decision making
  • Leadership
  • Attention to detail
  • Resilience
  • Good verbal and written communication skills
  • Time management skills
  • Deadline driven

*How to apply: *
Candidates interested must apply here by no later than 30 October 2025 OR browse available PSG Careers vacancies .

By submitting your application, you are giving PSG Financial Services implicit consent to the storage and processing of your personal information. If you are not contacted within 4 weeks of your application, please accept that your application was not successful. For more information about careers at PSG, visit

This advertiser has chosen not to accept applicants from your region.
 

Nearby Locations

Other Jobs Near Me

Industry

  1. request_quote Accounting
  2. work Administrative
  3. eco Agriculture Forestry
  4. smart_toy AI & Emerging Technologies
  5. school Apprenticeships & Trainee
  6. apartment Architecture
  7. palette Arts & Entertainment
  8. directions_car Automotive
  9. flight_takeoff Aviation
  10. account_balance Banking & Finance
  11. local_florist Beauty & Wellness
  12. restaurant Catering
  13. volunteer_activism Charity & Voluntary
  14. science Chemical Engineering
  15. child_friendly Childcare
  16. foundation Civil Engineering
  17. clean_hands Cleaning & Sanitation
  18. diversity_3 Community & Social Care
  19. construction Construction
  20. brush Creative & Digital
  21. currency_bitcoin Crypto & Blockchain
  22. support_agent Customer Service & Helpdesk
  23. medical_services Dental
  24. medical_services Driving & Transport
  25. medical_services E Commerce & Social Media
  26. school Education & Teaching
  27. electrical_services Electrical Engineering
  28. bolt Energy
  29. local_mall Fmcg
  30. gavel Government & Non Profit
  31. emoji_events Graduate
  32. health_and_safety Healthcare
  33. beach_access Hospitality & Tourism
  34. groups Human Resources
  35. precision_manufacturing Industrial Engineering
  36. security Information Security
  37. handyman Installation & Maintenance
  38. policy Insurance
  39. code IT & Software
  40. gavel Legal
  41. sports_soccer Leisure & Sports
  42. inventory_2 Logistics & Warehousing
  43. supervisor_account Management
  44. supervisor_account Management Consultancy
  45. supervisor_account Manufacturing & Production
  46. campaign Marketing
  47. build Mechanical Engineering
  48. perm_media Media & PR
  49. local_hospital Medical
  50. local_hospital Military & Public Safety
  51. local_hospital Mining
  52. medical_services Nursing
  53. local_gas_station Oil & Gas
  54. biotech Pharmaceutical
  55. checklist_rtl Project Management
  56. shopping_bag Purchasing
  57. home_work Real Estate
  58. person_search Recruitment Consultancy
  59. store Retail
  60. point_of_sale Sales
  61. science Scientific Research & Development
  62. wifi Telecoms
  63. psychology Therapy
  64. pets Veterinary
View All Cyber Threats Jobs
© 2025 WhatJobs?
Cookies.
We use cookies on this site to enhance your user experience. More information
Understood