206 Cybersecurity Specialist jobs in South Africa

The ideal candidate will be responsible for protecting enterprise systems, networks, and client environments from internal and external threats. This role involves proactive threat detection, vulnerability assessments, incident response, and security architecture reviews across hybrid and cloud platforms.

· Monitor, analyze, and respond to security incidents across on-premises, cloud, and hybrid environments.

· Perform vulnerability assessments, threat modeling, and penetration testing using industry tools and frameworks.

· Implement and manage endpoint protection platforms, EDR, and SIEM systems (e.g., SentinelOne, Sophos, FortiSIEM, Microsoft Defender).

· Develop and enforce IT security policies, procedures, and awareness training programs.

· Coordinate incident response efforts and lead investigations, containment, and remediation.

· Manage firewall policies, VPN configurations, and access control across networks.

· Conduct security reviews of applications, systems, and infrastructure for compliance and best practices.

· Assist in client cybersecurity onboarding and provide expert advisory support to clients and internal teams.

· Stay current on evolving cyber threats, vulnerabilities, and regulatory compliance standards (e.g., POPIA, GDPR, ISO 27001).

· Document risks, controls, and maintain reports for audits and management dashboards.

· Minimum 4 years' experience in cybersecurity, network security, or information security roles.

· Proficiency in configuring and maintaining firewalls, EDR, SIEM, anti-virus, and threat detection systems.

· Hands-on experience with security audits, vulnerability scanners, and compliance frameworks.

· Understanding of TCP/IP, DNS, IDS/IPS, email security, and authentication protocols.

· Experience with Microsoft 365 and Azure security tools (Defender for Endpoint, Purview, Conditional Access).

· Ability to manage and respond to incidents under pressure with clear documentation and communication.

· Strong analytical, troubleshooting, and reporting skills.

· Relevant certifications such as CompTIA Security+, CEH, Microsoft SC-200/SC-300, or CISSP.

· Familiarity with MDR/XDR platforms and cybersecurity frameworks (NIST, MITRE ATT&CK).

· Experience supporting cybersecurity in an MSP or client-facing environment.

Our Client:

A Top Employer Financial Services organisation has taken extensive measures to strengthen the protection of its IT systems and implement a robust Cyber Security programme. To achieve this, the company has implemented and operates several advanced security solutions. The Cyber Security Specialist is responsible for developing and implementing security architecture strategies, ensuring operational resilience, and managing risk by conducting assessments and penetration testing. This role also involves overseeing identity management, responding to security breaches, and continuously improving the cybersecurity framework.

Key Responsibilities:

• Identifying vulnerabilities in systems, infrastructure, and applications.
• Implementing effective security controls to protect against threats.
• Developing and implementing security architecture strategies, including traditional network and micro-segmentation, defense-in-depth, remote access, encryption technologies, backup and replication, Software Defined Networking (SDN), network function virtualization, zero trust models, Secure Access Service Edge (SASE)/Secure Service Edge (SSE), overlay networks, and secure enclaves.
• Managing risk by conducting risk assessments and penetration testing.
• Ensuring security operations resilience through:
• Threat prevention via network and application firewalls, access management, SaaS detection, and encryption (SSL, PKI).
• Threat detection, including log analysis and correlation, threat hunting, insider threat detection, integration with Managed Security Service Providers (MSSP), integration of Threat Intelligence Platform (TIP), utilization of deception technologies, full packet inspection, and misconfiguration detection.
• Managing identities by overseeing identity credentialing, account creation and deletion, Single Sign On (SSO), and privileged access management (PAM).
• Timely and proficient handling of security breaches, employing rapid response protocols and comprehensive remediation strategies.
• Testing and assessing security products to ensure alignment with specific operational requirements and standards.
• Monitoring network traffic and user activity to detect potential security breaches and insider threats.
• Implementing and maintaining firewalls to protect network infrastructures from unauthorized access.
• Ensuring cloud security by carefully managing access and permissions.
• Implementing endpoint security measures to secure individual devices.
• Using intrusion detection and prevention tools to identify and stop potential threats.
• Preparing detailed reports that document security incidents and response actions.
• Researching new security technologies and proactive strategies to ensure protection against evolving threats.

Key Competencies:

• Creating specifications and conducting technical and operational reviews.
• Implementing and engineering solutions, including deployment, configuration, and testing.
• Managing security operations, changes, and incidents.
• Conducting operations using security solutions such as IAM and DLP.
• Providing support and guidance to business entities for installing and operating security solutions.
• Designing and producing indicators, reporting documents, and performance reports on security solutions.
• Implementing security controls, alerts, and monitoring systems.
• Leading working groups related to cybersecurity initiatives.
• Creating comprehensive user, technical, and operational documentation.

Experience:

• At least 10 years of experience in a technical hands-on administrative or engineering role responsible for cybersecurity toolsets, including IAM, PAM, firewall, NAC, WAF, DDoS, MFA, MDM, endpoint protection, DLP, vulnerability scanning, AD, Windows OS, Linux OS, network, and Wi-Fi administration.
• Proven experience with security architecture, risk management, and security operations.
• Strong background in security monitoring, threat intelligence, and penetration testing.
• Expertise in cloud security, endpoint security, and network security frameworks.

Qualifications:

• Relevant Degree or Diploma in Cybersecurity, Information Technology, or related field.
• Industry Certifications (e.g., CompTIA Security+, CISSP, CISM, CEH) are advantageous.
• Vendor Certifications (e.g., Fortinet, Cisco, Microsoft, Palo Alto) are beneficial

Overview

ENVIRONMENT: A reputable Financial Services Group seeks the technical expertise of a Cybersecurity Specialist with at least 5-10 years’ experience in a technical hands-on administrative or engineering role responsible for Cybersecurity toolsets. Your role will include specifying the parameters that the security solutions require to function properly, contributing to the engineering of the security solutions, carrying out operations with the support of the security solutions, operating the security solutions in functional and technical terms, and providing help and support to users. Your Cybersecurity toolset knowledge should include IAM, PAM, Firewall, NAC, WAF, DDoS, MFA, MDM, Endpoint Protection, DLP, Vulnerability Scanning, AD, Windows OS, Linux OS, Network and Wi-Fi Administration.

• Implementation of business enablement through securing IoT, 5G and Edge Computing.
• Develop and implement security architecture strategies encompassing traditional network and micro segmentation, defence-in-depth, remote access, encryption technologies, backup and replication, Software Defined Networking (SDN), network function virtualization, zero trust models, Secure Access Service Edge (SASE)/Secure Service Edge (SSE), and overlay networks and secure enclaves.
• Management of risk by conducting risk assessments and Penetration Testing.
• Ensure security operations resilience through threat prevention involving network and application firewalls, assess management, SaaS detection, and encryption (SSL, PKI).
• Ensure security operations resilience through threat detection, including log analysis and correlation, threat hunting, insider threat detection, integration with Managed Security Service Providers (MSSP), integration of Threat Intelligence Platform (TIP), utilisation of deception technologies for breach detection, full packet inspection, and detection of misconfigurations.
• Management of identities by providing oversight of identity credentialing, account creation and deletion, Single Sign On (SSO), and privileged access management (PAM).
• Timely and proficient handling of security breaches, employing rapid response protocols and comprehensive remediation strategies.
• Methodically test and assess security products to guarantee alignment with specific operational requirements and standards.
• Compile comprehensive reports meticulously documenting security incidents and the corresponding course of action.
• Research cutting-edge security technologies and proactive strategies to ensure current and proactive protection against evolving threats.

• Create specifications and conduct technical and operational reviews.
• Implement and engineer solutions, including deployment, configuration, and testing.
• Manage operations, changes, and incidents.
• Conduct operations using security solutions such as IAM, DLP, DSPM, PAM and TPRM.
• Provide support and guidance to entities for installing and operating security solutions.
• Design and produce indicators, reporting documents, and reports on the performance of security solutions.
• Implement warranties such as alerts and controls.
• Lead working groups.
• Create user, technical, and operational documentation.

• Qualifications – Grade 12 / Matric.
• Relevant degree/diploma – desirable.
• Industry Certification will be advantageous (CompTIA, ISC2, etc.).
• Vendor Certification will be advantageous (Fortinet, Cisco, Microsoft, etc.).

• At least 5-10 years’ experience in a technical hands-on administrative or engineering role responsible for Cybersecurity toolsets including IAM, PAM, Firewall, NAC, WAF, DDoS, MFA, MDM, Endpoint Protection, DLP, Vulnerability Scanning, AD, Windows OS, Linux OS, Network and Wi-Fi administration.
• IT knowledge.
• IT infrastructure
• IT development
• Production operations steering.
• IT Security and Cybersecurity.
• Ability to manage/facilitate meetings, seminars, committees, and training.
• Can setup relevant performance indicators.

• Creativity & Innovation/Problem Solving.
• Ability to collaborate/Teamwork.
• Adaptability.
• Able to share/pass on knowledge.
• Analytical ability.

Our clients are seeking a highly skilled Cybersecurity Specialist with expertise in Darktrace to join their dynamic team. As a Cybersecurity Specialist, you will be responsible for designing, implementing, and managing cybersecurity solutions, with a focus on leveraging Darktrace technology to detect and respond to emerging threats. Your role will involve collaborating with internal teams to assess cybersecurity risks, develop strategies for threat mitigation, and provide technical guidance to enhance our clients' organization's overall security posture.

• Design and implement cybersecurity strategies and measures to protect the organization's networks, systems, and data from cyber threats.
• Deploy and configure Darktrace technology to monitor network traffic, analyze anomalies, and detect potential security breaches in real-time.
• Utilize Darktrace's AI-driven threat detection capabilities to identify advanced and evolving cyber threats, including insider threats, zero-day attacks, and targeted malware.
• Investigate security incidents and alerts generated by Darktrace, conducting thorough analysis to determine the nature and scope of the threat.
• Develop and implement incident response procedures and protocols to effectively mitigate cybersecurity incidents identified through Darktrace and other security tools.
• Collaborate with internal teams, including IT, network operations, and software development, to implement security best practices and ensure compliance with cybersecurity policies and regulations.
• Provide technical expertise and guidance to stakeholders on cybersecurity issues, including risk assessment, vulnerability management, and security awareness training.
• Stay abreast of emerging cybersecurity threats, trends, and technologies, including updates and new features of Darktrace, to continuously improve the organization's security posture.
• Conduct regular assessments and audits of cybersecurity controls and processes, recommending enhancements and improvements based on industry best practices and standards.
• Participate in cybersecurity incident response exercises and drills to test the effectiveness of security measures and refine incident response procedures.

• Relevant certifications (e.g., CISSP, CEH, Darktrace Certified Administrator) preferred.
• Proven experience in cybersecurity roles, with specific expertise in deploying and managing Darktrace technology in enterprise environments.
• In-depth knowledge of cybersecurity principles, technologies, and best practices, including network security, endpoint protection, threat intelligence, and incident response.
• Hands-on experience with configuring and administering Darktrace appliances, including deployment, tuning, and customization of detection rules and policies.
• Strong analytical and problem-solving skills, with the ability to analyze complex security incidents and recommend effective countermeasures.
• Excellent communication and interpersonal skills, with the ability to communicate technical concepts to non-technical stakeholders and collaborate effectively with cross-functional teams.
• Ability to work independently and as part of a team in a fast-paced and dynamic environment, prioritizing tasks and managing multiple projects simultaneously.
• Strong commitment to continuous learning and professional development in the field of cybersecurity, including staying current on emerging threats and technologies.

The Cybersecurity Specialist with Darktrace expertise plays a critical role in safeguarding the organization's assets and maintaining a secure and resilient cybersecurity posture against evolving cyber threats. If you have the necessary skillset for this position, we encourage you to apply for this available position.

About the job Cybersecurity Sales Specialist

Key purpose:

Our company has a market-leading position within the Security marketplace and has the highest market share for network security. This opportunity is for an experienced Security sales professional within Cisco's Global Security Sales Organization (GSSO) to drive the Security Business in South Africa.

As Cybersecurity Sales Specialist (CSS) you will be responsible for developing and executing Security opportunities in South Africa, working closely with our sales teams across customer segments.

Duties and responsibilities:

• Identify new sales opportunities within existing company clients, work with the Account Teams to qualify opportunities, and priorities activities.
• Work with the company field sales team to develop a sales plan for the assigned territory.
• Leverage and nurture the company partner base, work with the Partner sales teams to win new business deals.
• Control the sales process and driving leads to closure - generating new revenues, bringing new customers.
• Drive sales campaigns into target prospect base, working with company field sales and Partner sales teams.
• Develop deep understanding of Security product capabilities and value proposition, be able to present that in a highly effective manner.
• Forecast revenue and products, report your sales activities to management.
• Attending industry forums, tradeshows and events as required.

Qualifications, skills and experience:

• You should be passionate about sales and security.
• You should come with deep knowledge of Cybersecurity market in South Africa
• You must be able to demonstrate the ability to sell in a consultative style, show understanding of customer requirements, discuss solutions, and sell CISCO Security value proposition.
• You should be effective in recognizing and generating opportunities, delivering technical presentations, as well as closing deals.
• Experience with security solutions (Next Gen Firewalls, IPS/IDS, Email security, Web security, VPN) and an understanding of the threat landscape is highly desired.
• Established network of contacts and successful track record in Security sales in South Africa is a huge plus.
• A business diploma/degree is preferred although experience is also valued highly.

Overview

Our client is looking a Data Protection Specialist with CIPPE Certification. You must be a subject matter expert in POPIA data protection legislation, knowledge in commercial application of Data Protection Act 2018, General Data Protection Regulation and working with OneTrust.

• Relevant Degree / Legal Degree preferred.
• CIPP / E qualification essential. If not currently certificated, this would need to be attained to stay in role.
• Experience in working with OneTrust
• Available daily for collaboration across UK, South Africa, Brazil and Chile time zones.
• Detailed knowledge and commercial application of Data Protection Act 2018 and General Data Protection Regulation.
• Working understanding of IT governance and risk management techniques
• Excellent written and spoken English essential for board level papers
• Poise and communication skill to present at CorpCo and Audit Committee
• Strong working experience and subject matter expertise in POPIA data protection legislation and regulatory guidance.
• Experience of interpreting legislation, understanding the impact and communicating and implementing required changes.
• Ability to develop strategy and apply a proportionate and risk-based approach in a principle based regulatory environment
• Demonstrable ability to engage and influence third parties and key stakeholders, including senior management.
• The ability to define and collect evidence under pressure and ensure appropriate action is taken in a timely and effective manner.

• You will required to :
• Drive a positive culture of data protection compliance and provide proactive advice and guidance of data protection matters relevant to operations and stakeholders.
• Engage with business stakeholders to manage privacy risks, working with and guiding business stakeholders to help them implement the Data Privacy policies and procedures, learning materials and ensure personal data processing activities are compliant with the Group Data Privacy Policy.

Qualifications

• Relevant Degree / Legal Degree preferred.
• CIPP / E qualification essential. If not currently certificated, this would need to be attained to stay in role.
• Experience in working with OneTrust
• Available daily for collaboration across UK, South Africa, Brazil and Chile time zones.
• Detailed knowledge and commercial application of Data Protection Act 2018 and General Data Protection Regulation.
• Working understanding of IT governance and risk management techniques
• Excellent written and spoken English essential for board level papers
• Poise and communication skill to present at CorpCo and Audit Committee
• Strong working experience and subject matter expertise in POPIA data protection legislation and regulatory guidance.
• Experience of interpreting legislation, understanding the impact and communicating and implementing required changes.
• Ability to develop strategy and apply a proportionate and risk-based approach in a principle based regulatory environment
• Demonstrable ability to engage and influence third parties and key stakeholders, including senior management.
• The ability to define and collect evidence under pressure and ensure appropriate action is taken in a timely and effective manner.

• Drive a positive culture of data protection compliance and provide proactive advice and guidance of data protection matters relevant to operations and stakeholders.
• To engage with business stakeholders to manage privacy risks, working with and guiding business stakeholders to help them implement the Data Privacy policies and procedures, learning materials and ensure personal data processing activities are compliant with the Group Data Privacy Policy.