40 Cybersecurity Consultant jobs in South Africa

Management Level

Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively.

Driven by curiosity, you are a reliable, contributing member of a team. In our fast-paced environment, you are expected to adapt to working with a variety of clients and team members, each presenting varying challenges and scope. Every experience is an opportunity to learn and grow. You are expected to take ownership and consistently deliver quality work that drives value for our clients and success as a team. As you navigate through the Firm, you build a brand for yourself, opening doors to more opportunities.

Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:

• Apply a learning mindset and take ownership for your own development.
• Appreciate diverse perspectives, needs, and feelings of others.
• Adopt habits to sustain high performance and develop your potential.
• Actively listen, ask questions to check understanding, and clearly express ideas.
• Seek, reflect, act on, and give feedback.
• Gather information from a range of sources to analyse facts and discern patterns.
• Commit to understanding how the business works and building commercial awareness.
• Learn and apply professional and technical standards (e.g. refer to specific PwC tax and audit guidance), uphold the Firm's code of conduct and independence requirements.

Role summary:

As an Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues under the Cybersecurity Strategy pillar.

Qualifications / certifications required:

• Completed BCom /BSc degree in Information Systems/Information Technology/ or BSc Computer Science or Engineering, Honours/ Masters an advantage but not essential

• CompTIA Security + (Advantageous)

• ISO Advantageous)

Experience required:

Less than 2 years of work experience.

Responsibilities of role:

We are looking for a strategic, detail-oriented individual to join our team as a security consultant. Your responsibilities will include assessing and analysing security systems and measures, based on our go to market services:

• Capability Maturity Assessments - NIST, ISO 27001 , FFIEC , etc.

• Cyber Risk Management

• Cyber Value at Risk ( CyberVAR ) / Risk Quantification

• Third Party Risk Management

• Cloud Security

• IoT / ICS / OT

• Cybersecurity Strategy

• Awareness, Culture and Behaviour

• Cyber Attestation

• Ensure compliance with other regulatory requirements

• Perform due diligence on systems and controls

• Perform pre- and post-implementation system reviews

• Assess the privacy and protection of personal information

Skill sets required :

• Excellent verbal and written communication skills

• Sound judgment

• Innovative and adaptable

• Resilient

• Copes well under tight deadlines and works well under stress

• Is a strategic and big picture thinker

• Is curious – learning, sharing and innovating

• Is willing to continually learn and develop skills across a multitude of core competencies

• Approache s problem solving in a logical and structured manner with due consideration given to alternative solutions which may require the acquisition of new knowledge

• Ability to handle complex problems and apply appropriate judgement in evaluating solution inputs

• You have an eye for details and an affection for quality

• You are motivated to work in a team and flexible to travel

• You are open minded, curious by nature, able to prioritize tasks, creative in finding solutions and communicating them to clients

Role related attributes:

• Must be able to demonstrate and apply industry knowledge

• Must be able to work overtime when necessary

• Display sound leadership skills

• Self-motivated and pay attention to detail

• Must have valid driver's license

Industry experience required :

We're very proud of our unique culture and expect our people to demonstrate skills and behaviours that will support us in implementing our business strategy. This is important to the work we do, both for our business and our clients. These skills and behaviours are a strong component of our global leadership framework: The PwC Professional.

Travel Requirements

Up to 20%

Available for Work Visa Sponsorship?

No

Job Posting End Date

September 16, 2025

We're Hiring: Cybersecurity Sales Consultant / Lead Generator (Contract Role)

We are seeking a results-driven
Cybersecurity Sales Consultant / Lead Generator / Business Developer
to join our team on an initial contract basis. This role focuses on driving new business for our advanced cybersecurity solutions, including
SIEM, SOAR, and Adaptive MDR
, targeting mid-to-large enterprises.

The ideal candidate
combines strong technical knowledge of cybersecurity operations—particularly SIEM—with proven experience in enterprise sales.

Key Responsibilities

• Develop and execute strategic sales plans
• Identify and convert new enterprise opportunities
• Deliver product presentations and demos
• Align customer needs with our solutions (SIEM, SOAR, MDR)
• Lead negotiations and close deals
• Build relationships with key stakeholders and partners
• Stay informed on cybersecurity trends and technologies

Requirements

• Bachelor's degree in Business, Computer Science, Information Security, or related
• 3+ years of cybersecurity sales experience (enterprise focus)
• Strong knowledge of SIEM tools (e.g., Splunk, QRadar, Securonix)
• Excellent communication, presentation, and negotiation skills
• Proactive, self-motivated, and collaborative

If you're commercially driven, technically strong, and thrive in a flexible, remote environment, we'd love to hear from you.

Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title And Summary
Senior Managing Consultant, Cybersecurity Business Development

Overview
Mastercard has evolved into a comprehensive technology and services platform. By expanding into areas such as fraud prevention, loyalty, personalisation, and data analytics, Mastercard now supports banks, merchants, and governments in delivering smarter, more secure, and highly personalised customer experiences.

And as digital commerce has grown, so have the security challenges. Cyber threats now extend beyond individual transactions to entire digital ecosystems, requiring a broader approach to protection. Recognizing this, Mastercard strengthened its cybersecurity capabilities through strategic acquisitions, beginning with RiskRecon in 2019 and more recently Recorded Future, a global leader in threat intelligence. These additions enable Mastercard to offer advanced cyber risk assessment and real-time threat detection, helping clients safeguard their entire digital footprint—not just the payments themselves.

About The Role
The Senior Managing Consultant / Director - Cybersecurity Business Development Lead- will lead the growth of Mastercard's Cyber business in this key segment. As the P&L owner for Mastercard Cybersecurity within the segment, you will lead the strategic growth and commercial success of the cybersecurity business, driving revenue through both direct sales engagement and liaising across any relevant customer facing teams to maximize sales for Cybersecurity.

Responsibilities Will Include
Coordinate Internal Execution Across Teams

• Facilitate key client introductions across businesses

(cross-sell opportunities between Recorded Future, Risk Recong, Cyber-Consulting)

• Oversee sales enablement, especially for Services Business Leads (SBLs)

(sales collateral, pitch decks, training, pipeline visibility)

• Align product, sales, consulting and marketing teams around launches and revenue goals

Specialist Cyber Sales

• End-to-end ownership of sales, with focus on consulting bundles
• Recorded Future & Risk Recon referrals and lead generation for Mastercard managed Accounts

Identify issues, take improvement actions and communicate progress

• Report clearly on commercial integration progress
• Track lead funnel health and conversion efficiency: and take improvement actions
• Advise on integration risks

Success will be measured by sales performance, client impact, and contribution to the expansion of Mastercard's cybersecurity solutions footprint.

Required Qualifications
Cybersecurity experience:

• 10+ years' work experience which includes time spent in cybersecurity consulting or technology sales, with team management responsibility.
• Industry savvy, understanding emerging cyber trends and creatively leveraging market opportunities.
• Working experience with sales of security services, consulting and/or technologies such as cyber threat intelligence, security awareness and training, cloud security, crisis and incident response management, third party risk management, threat and vulnerability management, security in disruptive technologies such AI - Artificial Intelligence, CRQ – Cyber Risk Quantification, web application firewall, and identity theft protection.

Diverse stakeholder management

• Demonstrated experience managing cross-functional initiatives and aligning diverse stakeholders toward common goals
• Strong analytical and problem-solving skills, with a data-driven approach to decision-making and continuous improvement
• Exceptional communication skills, capable of influencing senior leaders and driving alignment without formal authority
• Track record of delivering results through structured planning, rigorous execution, and attention to detail
• Comfort navigating ambiguity and adapting quickly to evolving business priorities and market dynamics
• Ability to balance strategic thinking with detailed tactical execution skills to drive overall client impact and ability to make quick decisions in challenging, ambiguous situations.
• Experience working in a fast paced, dynamic environment with a flexibility to multitask and handle multiple requests with varying degrees of priority simultaneously.
• Experience in complex organization structures, managing and building effective relationships with internal and external stakeholders.

Commercial experience

• Excellent communication and presentation skills, capable of articulate storytelling and translating complex concepts into compelling narratives that resonate with clients.
• Direct selling or customer facing experience, identifying client needs and building cybersecurity proposals.
• Ability to identify new business development opportunities and experience drafting proposals and scoping new opportunities.
• Demonstrated ability to build trust-based relationships with both mid- and executive-level clients
• NOTE: No non-competes that prevent sales interactions with clients in the financial services sector.

Preferred Qualifications

• Experience with the application of information security standards and good practices (such as PCI-DSS, HIPAA, ISO27001, NIST, CIS, CSA).
• Experience with payment ecosystem security: understanding of security needs for potential customers within your segment (sales territory)
• Experience in managing P&L responsibility or similar business ownership roles, with a focus on growth and profitability

Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard's security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

Job Details

Are you a relationship-driven sales professional who thrives at the intersection of business strategy and cybersecurity innovation? Snode is seeking a consultative seller who can guide clients through complex digital risk environments with trust, expertise, and tailored solutions.

ABOUT SNODE:

Snode Technologies is built for the realities of modern digital risk. We go beyond traditional, reactive cybersecurity by delivering a data-driven model of cyber exposure management—helping organizations identify, understand, and contain threats before they escalate.

Our service-aligned platform integrates SIEM, SOAR, NDR, MDR, Cyber Professional Services, and comprehensive Exposure Management assessments into one cohesive ecosystem—engineered for scale, speed, and partnership.

Whether securing enterprise environments or enabling MSSPs and alliance partners, we help clients move from static compliance to dynamic resilience—defending not just infrastructure, but the trust their business depends on.

ABOUT THE ROLE:

Form part of a team that are reshaping how organizations secure their digital environments through data-driven exposure management. As a Sales Executive, you'll play a pivotal role in accelerating revenue growth, expanding our unique value proposition into new industries, and helping clients solve complex security challenges. This is more than a sales role—it's a strategic opportunity to co-create value with clients by aligning their needs to Snode's integrated solutions.

WHAT YOU WILL DO:

• Driving new business growth through strategic prospecting and engagement
• Deepening value with existing accounts by identifying cross-sell and upsell opportunities
• Translating complex client problems into measurable, high-impact solutions aligned to the Snode UVP.
• Positioning Snode's platform and services as the foundation of modern cyber exposure management.
• Collaborating with technical, marketing, and delivery teams to accelerate sales cycle.
• Representing Snode at key client, industry, and partner engagements.

WHAT YOU WILL BRING:

• 3–7+ years in B2B sales, preferably in cybersecurity, SaaS, or managed services
• Experience engaging CISOs, CIOs, and security decision-makers
• Ability to map business problems to solution narratives
• Strong commercial instincts with a consultative sales style
• Curiosity, grit, and a bias towards execution
• Excellent negotiation, presentation, and communication skills.
• Ability to build and nurture client relationships with a consultative selling approach.
• Goal-oriented mindset with a focus on driving revenue and exceeding sales targets.

CORE RESPONSIBILITIES:

• Product Knowledge:
   Gain a deep understanding of Snode's proprietary cybersecurity solutions and services, including Continuous Threat Exposure Management (CTEM), 24/7/365 Managed Detection and Response (MDR), and our AI-driven technologies.
• Sales Strategy:
   Collaborate with marketing and product teams to develop tailored sales strategies that align with client needs and industry trends.
• Market Insight:
   Stay informed about industry trends, emerging threats, and the competitive landscape to position Snode Technologies as a leader in cybersecurity solutions.
• Lead Generation & Client Acquisition:
  Proactively identify, engage, and close new business opportunities across high-impact verticals requiring exposure-led cybersecurity services.
• Client Relationship Management:
  Build and maintain trusted, strategic relationships with executive stakeholders, becoming a long-term advisor throughout their cyber maturity lifecycle.
• Solution Architecture & Value Mapping:
  Collaborate with technical architects and service teams to design integrated, outcome-driven cybersecurity solutions tailored to client environments, risk postures, and regulatory demands.
• Consultative Sales Leadership :
  Champion and continuously refine Snode's consultative sales methodology, ensuring engagements are led by client problem statements and focused on measurable resilience outcomes—not product push.
• Sales Strategy & Campaign Development :
  Work cross-functionally to develop vertical-specific campaigns and sales motions that align with market signals, threat trends, and regulatory shifts.
• Negotiation & Deal Closure :
  Own the full sales cycle—from discovery and scoping to proposal, negotiation, and handover—ensuring commercial clarity and alignment on deliverables.
• Partner & Channel Optimisation:
  Train, enable, and co-sell with MSSPs and partners, leveraging their ecosystems to expand market coverage and ensure repeatable service delivery.
• Thought Leadership & Market Insight :
  Stay current on threat landscape shifts, client industry changes, and competitor strategies. Feed insights back into GTM strategy, marketing narratives, and solution evolution.
• Client Success Handoff & Retention :
  Ensure smooth transitions into delivery and client success, remaining engaged during early onboarding phases and tracking against initial value metrics.
• Pipeline Governance & Forecasting :
  Maintain accurate pipeline health, close-rate forecasts, and CRM hygiene to support strategic decision-making and sales operations reporting.

• Who we're looking for: An experienced Information Security Manager to lead the implementation and ongoing maturity of our Information Security Management System (ISMS), ensure alignment with ISO 27001:2022, and manage risk across the business.
• The challenge: To own the ISMS documentation and audit programme, coordinate internal and external audits, oversee the risk register, and support internal teams on policy compliance and security awareness.
• Where you'll work: This role will be based in Cape Town, you'll be part of our global team, collaborating with colleagues and serving customers across the UK, USA, Australia, South Africa, and beyond. Our hybrid approach offers flexibility with regular team connection in our Cape Town office.

The Tillo Difference

We're in the business of rewards and incentives, so we know a thing or two about the importance of giving back. We can't grow as a business without growing as individuals, so we are committed to providing a workplace where passionate, driven individuals can thrive. We value collaboration, trust, positivity, and a willingness to learn - only by working as a team will we reach our goals.

We're the market leader in the UK and are active in a number of other markets including USA, Europe, Australia and India.

This role will be responsible for:

• ISMS Ownership & Audit Readiness

• Maintain and evolve the ISMS documentation and controls in line with ISO 27001:2022.

• Coordinate and lead internal audits (quarterly for TZ) and external certification audits.
• Write up audit findings and risk reports for SLT and the Board.
• Monitor ISMS KPIs and compliance metrics .

• Risk Management

• Own the company-wide risk register and associated documentation (excluding the risk framework itself).

• Support teams in identifying, assessing, and documenting risks.
• Track and ensure timely implementation of Risk Treatment Plans.
• Monitor and report on key risk metrics.

• Incident & Corrective Action Management

• Maintain the incident log, ensuring proper documentation, root cause analysis and closure.

• Drive corrective actions and improvements from internal/external audits and incidents.

• Security Policy & Training

• Maintain and develop ISO 27001-compliant security policies (non-Engineering).

• Coordinate business-wide security awareness training (e.g., KnowBe4).
• Champion InfoSec awareness and lead monthly security meetings.

• Client & Vendor Security Assurance

• Complete InfoSec and risk sections of client due diligence questionnaires.

• Support the development of a Trust Centre to streamline security responses.

What we're looking for

• 3+ years in an Information Security or Risk Management role with experience in ISO 27001 implementation and audits.
• A strong understanding of risk frameworks, internal controls, and compliance management.
• Experience with audit coordination and ISMS documentation.
• The ability to translate technical and regulatory language into business-friendly advice.
• Working knowledge of privacy, AML, and business continuity requirements.
• Familiarity with InfoSec tooling (e.g., Drata, Vanta, KnowBe4).
• Exceptional communication, reporting and organisational skills.

Benefits

We offer all our employees trust and empower our team to work with flexibility and autonomy. We're a close-knit team and love working collaboratively, with our hybrid model, our team can come together at our fantastic offices, but also focus in their own space. The Tillo team are a motivated bunch and we all work hard to push Tillo forwards, always innovating. We completely understand the importance of work/life balance and offer a supportive and collaborative working environment with the following benefits:

• 21 days holiday per annum
• Retirement Fund (5%)
• Health insurance contribution
• Employee Incentive Scheme
• Hybrid Working
• Top spec equipment including laptop, mouse, keyboard, monitor
• Anniversary gifts
• Monthly breakfasts, drinks, snacks and events
• Team Learning & Development budget

Tillo makes gift cards, rewards, and incentives simple, efficient, and profitable. Operating in over 37 markets and 25 currencies, Tillo processes billions in gift card transactions through a single, plug-and-go API, powering rewards and incentives for the world's leading businesses.

Backed by Tenzing, Tillo is setting the global standard for digital gift card infrastructure.

Diversity, Equity, and Inclusion Statement

We are committed to fostering a diverse and inclusive workplace where everyone feels valued and respected. We welcome applications from individuals of all backgrounds, regardless of age, disability, gender identity, marital status, race, ethnicity, religion or belief, sex, or sexual orientation.

If you require any reasonable adjustments during the recruitment process, please let us know, and we will be happy to accommodate your needs.

Job Overview

Business Segment: Group Functions

Location: ZA, GP, Johannesburg, 30 Baker Street

Job Type: Full-time

Job Ref ID: A-0001

Date Posted: 8/25/2025

Job Description

To implement the Group Cyber Resilience strategy securing platforms ecosystems 3rd party integration protecting sensitive data, applications and supporting infrastructure from infiltration or misuse guiding security capabilities in client segment and solutions. Facilitate security services ensuring that policies, standards and controls are embedded to prevent reputational, financial or other losses and compliance with regulatory requirements.Educate employees about their InfoSec responsibilities

Qualifications

A Degree in Business Commerce or Information Technology or Risk Management.

Experience Required:

5-7 years experience in an information security or Audit role within the banking and /or financial services sector. Experience working in a multi-vendor and outsourced and multi-system IT environment

5-7 years good working knowledge and experience with the implementation and management of information security policies and frameworks within a corporate environment. Management experience working with individuals and teams from diverse cultures

5-7 years strong IT understanding, gaining insight into digital and platform operating models and cyber security trends and solutions

Additional Information

Behavioural Competencies:

Adopting Practical Approaches

Articulating Information

Checking Things

Directing People

Examining Information

Exploring Possibilities

Interpreting Data

Making Decisions

Providing Insights

Pursuing Goals

Showing Composure

Upholding Standards

Technical Competencies:

Benefits Management

Information Security

Internal & External IT Environment

IT Risk Management

Knowledge of Banking & Financial Service

Stakeholder Management (IT)

Please note: All our recruitment processes comply with the applicable local laws and regulations. We will never ask for money or any from of payment as part of our recruitment process. If you experience this, please contact our Fraud line on or

Information Security Analyst

Acacium Group – Woodstock, Cape Town

Permanent, Full Time

Salary: R35 000 per month plus amazing benefits

Unlock Your Potential

Are you a technically minded individual with a passion for cybersecurity? Are you eager to grow and develop within a global organisation?

This is an excellent entry-level opportunity to launch your career in Information Security.

As an Information Security Analyst, you will play a key role in supporting our security operations and governance frameworks. You'll work closely with both technical teams—such as Infrastructure, Service Delivery, and Application Management—and non-technical teams including Legal, Compliance, HR, Audit, and Risk. You'll also engage with end users to promote best practices and ensure ongoing compliance across the organisation.

Every Day, You Will…

• Conduct threat hunting activities to proactively identify and mitigate risks.
• Assist in security incident management, including triaging alerts and coordinating responses.
• Support regular reviews of suppliers, project risks, and user access.
• Help update IT security policies and practices.
• Deliver and assess IT Security & Cyber Awareness training, audits, and testing.
• Contribute to maintaining compliance with standards like ISO 27001, Cyber Essentials Plus, NHS DSP Toolkit, and GDPR.
• Compile monthly and quarterly security reports.
• Assist in cyber incident response and business continuity efforts.

What's In It For You?

• Hands-on technical training and exposure to a wide range of systems
• Opportunities to earn certifications in the Information Security field
• Access to senior stakeholders and involvement in impactful corporate projects
• Mentorship from experienced professionals to guide your development
• A strong focus on your career growth, with the tools, support, and guidance to help you thrive
• Unmatched career progression, thanks to being part of a global group spanning healthcare, staffing, and life sciences
• Exciting events and incentives, both locally and across the wider group
• Employer contributions to medical aid
• Subsidised transport options

Join Us and Make a Difference

Acacium Group is a global healthcare solutions partner offering staffing, managed services, and innovative delivery models to health and social care systems and the life sciences industry. We are powered by the best people and have an unrivalled and diverse range of capabilities, all while incorporating our company values into everything we do:

Putting People First, Always by Your Side, Driven by Excellence.

Join us and play a key part in shaping the future of society and improving people's lives

To Thrive in This Role, You Must Have…

• A positive, logical, and proactive approach to problem-solving
• Strong organisational and time management skills
• The ability to prioritise tasks and deliver high-quality outcomes
• Clear written communication skills, especially when creating technical documentation for non-technical audiences
• The ability to identify and manage risks within the business and Information Security framework
• Confidence and strong verbal communication skills
• CompTIA Security+
• Microsoft Security Operations Analyst

Employment Equity

The Company's approved Employment Equity Plan and Targets will be considered as part of the recruitment process. As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.

Designation:

Information Security Manager | Waterfall, Midrand, Gauteng | Permanent

Category:

Information Technology

Job Level:

Professionally qualified and experienced specialists and mid-management

Posted by:

PSG Financial Services

Posted on:

03 Oct 2025

Reference Number:

POS08450

Closing date:

30-Oct-2025

Position Type:

Permanent

Location:

Waterfall Magwa Crescent

Overview:

VACANCY | INFORMATION SECURITY MANAGER | WATERFALL, MIDRAND, GAUTENG | PERMANENT

PSGs commitment to transform and embrace diversity is what drives us to achieve a diverse workplace with employment equity as a key goal to create an inclusive workforce. In achieving our employment equity goals, we give preference to applicants from designated groups, and we encourage people with disability to apply.

The Information Security Manager will lead PSG's cybersecurity strategy, governance, and operations across a hybrid cloud infrastructure. This includes managing Microsoft security capabilities, integrating firewall technologies, overseeing the Cyber Security Operations Center (SOC), and ensuring compliance with regulatory and industry standards. The role also includes managing BYOD risks, securing branch networks, and aligning with globally recognized frameworks such as the NIST Cybersecurity Framework and Joint Security Standards (JSS).

• Develop and maintain PSG's enterprise-wide cybersecurity strategy aligned with business objectives and regulatory requirements.
• Establish and enforce security governance frameworks, policies, and standards.
• Ensure alignment with the NIST Cybersecurity Framework (Identify, Protect, Detect, Respond, Recover) and Joint Security Standards.
• Lead the implementation of relevant security compliance initiatives.
• Collaborate with divisional CIOs and executive leadership to align security posture across business units.
• Monitor emerging threats, regulatory changes, and industry trends to inform strategic decisions.

• Design secure solutions for hybrid environments (on-prem + Azure).
• Integrate security into infrastructure and application projects.
• Manage identity and access controls, including Azure AD, MFA, and privileged access management.

• Manage day-to-day security monitoring, incident handling, and threat intelligence.
• Administer Microsoft 365 security features: Defender for Endpoint, Purview, Sentinel, Conditional Access, etc.
• Ensure endpoint, network, and cloud security controls are effectively implemented and monitored.
• Implement and enforce BYOD policies, including mobile device management (MDM), data loss prevention (DLP), and secure access controls.
• Secure branch office networks, including firewalls, VPNs, segmentation, and remote access protocols.

• Develop and manage the annual cybersecurity budget, including licensing, tools, training, and consulting services.
• Track and report on security-related expenditures, ROI, and risk mitigation outcomes.
• Support procurement and vendor management for security solutions.

• Oversee 24/7 SOC operations, ensuring effective threat detection, incident response, and escalation.
• Define SOC roles, workflows, and incident response playbooks.
• Integrate SIEM, SOAR, and threat intelligence platforms for proactive defense.
• Monitor and improve KPIs such as MTTD (Mean Time to Detect) and MTTR (Mean Time to Respond).
• Coordinate with external threat intelligence providers and law enforcement when necessary.

• Oversee the deployment, maintenance, and upgrade of security technologies including Microsoft 365 E3/E5 and Hailstone platforms.
• Ensure timely patching, configuration updates, and feature adoption.
• Maintain compatibility and integration of security tools with PSG's hybrid infrastructure.
• Document system configurations and update operational procedures regularly.

• Conduct regular risk assessments, vulnerability scans, and penetration tests.
• Ensure compliance with POPIA, GDPR, NIST CSF, JSS, and other relevant regulations and frameworks.
• Maintain a risk register and track mitigation actions.
• Coordinate internal and external audits and ensure timely remediation of findings.

• Lead organization-wide cybersecurity awareness programs.
• Deliver targeted training for IT, business, and executive teams.
• Promote secure behaviour and incident reporting culture.

• Build and lead a high-performing cybersecurity team, leveraging SOC analysts, engineers, and compliance specialists.
• Define clear roles, responsibilities, and performance expectations.
• Conduct regular coaching, performance reviews, and career development planning.
• Foster a culture of accountability, innovation, and continuous improvement.
• Promote cybersecurity awareness and ownership across all departments.

• Prepare operational, executive-level reports on security posture, risk exposure, and compliance status.

• Bachelor's degree in Computer Science, Information Technology, or related field.
• 8+ years of IT Security experience, with 5+ years in a leadership role.
• CISSP, CISM, or equivalent
• Microsoft Certified: Cybersecurity Architect Expert
• GIAC Security Operations (GSOM) or equivalent SOC certification
• Familiarity with scripting (PowerShell, Bash) and automation tools.

• Microsoft 365 and SharePoint Online
• Proven experience in cybersecurity leadership within hybrid cloud environments.
• Deep knowledge of Microsoft 365 E3/E5 security stack and Hailstone technologies.
• Strong understanding of SIEM, SOAR, threat intelligence, and SOC operations.
• Experience managing BYOD environments and securing distributed branch networks.
• Familiarity with ISO/IEC 27001, ISO/IEC 2000, NIST, and CIS controls.
• Excellent communication, stakeholder engagement, and team leadership skills.
• Technical documentation

• Strong leadership and problem-solving skills.
• Attention to detail
• Decision making
• Leadership
• Attention to detail
• Resilience
• Good verbal and written communication skills
• Time management skills
• Deadline driven

Candidates interested must apply here by no later than 30 October 2025 OR browse available PSG Careers vacancies

By submitting your application, you are giving PSG Financial Services implicit consent to the storage and processing of your personal information. If you are not contacted within 4 weeks of your application, please accept that your application was not successful. For more information about careers at PSG, visit