79 Data Security jobs in South Africa

Business Segment: Personal & Private Banking

Location: ZA, GP, Johannesburg, 30 Baker Street

• Manage and fine-tune Microsoft Purview DLP policies for endpoints, SharePoint, OneDrive & Teams
• Investigate DLP alerts, coordinate incident response with stakeholders, and document outcomes.
• Work closely with Legal, Risk, and Compliance teams to align DLP policies with regulatory and internal requirements (e.g., POPIA, GDPR, PCI-DSS).
• Tune policy exceptions and reduce false positives without compromising security.

Email Security (Microsoft Defender for Office 365)

• Administer and optimize anti-phishing, anti-malware, and anti-spoofing policies.
• Monitor mail flow, quarantine, and threat reports to detect patterns and enhance protection.
• Configure Safe Links, Safe Attachments, and ATP policies.
• Support investigations of email-based threats and data leakage attempts.

Web Security (Forcepoint and DMARC)

• Maintain and support the Forcepoint Web Security environment, including URL filtering, content categorization, and user policies.
• Investigate web-based threat alerts and policy violations.
• Assist in integration of web security controls with broader DLP and SIEM tools.
• Provide guidance for policy tuning and user experience improvements.
• Manage, Maintain and Support DMARC to ensure Email is protected against spoofing.

SSE / Cloud Access Controls (Cato Networks)

• Configure and monitor policies on Cato Networks’ SSE platform for secure internet access and cloud app control.
• Help define Zero Trust Network Access (ZTNA) policies for remote users and sensitive resources.
• Review access logs, user behaviour, and cloud application usage for anomalies.
• Coordinate with network and identity teams to streamline SSE enforcement.
• Triage alerts across DLP, email, web, and SSE tools; escalate or respond as needed.
• Provide weekly/monthly reports to leadership on data protection metrics, incident trends, and policy effectiveness.
• Collaborate with SOC and Blue Teams on threat correlation and data security posture assessments.
• Maintain documentation and support audit readiness.

Technical Skills

• Strong hands-on experience with Microsoft Purview DLP (E5).
• Proficient in Microsoft Defender for Office 365 (email hygiene, ATP, threat management).
• Experience with Forcepoint Web Security policy design, deployment, and management.
• Working knowledge of Secure Service Edge (SSE) and ZTNA concepts; Cato Networks experience preferred.
• Familiarity with security incident workflows, SIEMs (e.g., Sentinel), and PowerShell scripting.

Experience

• 5+ years in IT Security roles, with at least 2–3 focused on data security.
• Direct involvement in policy design, incident triage, and ongoing tuning of DLP/email/web security tools.
• Exposure to regulated environments with compliance reporting (e.g., financial services)
• Soft Skills
• Detail-driven with strong analytical skills.
• Clear communicator, especially when engaging end-users on policy violations or tuning.
• Able to balance risk mitigation with operational practicality.
• Comfortable working across InfoSec, Infrastructure, Legal, and Business teams.

Preferred Certifications

• Bachelors Degree in Computer Science (advantageous)
• Microsoft Certified: Information Protection Administrator Associate (SC-400)
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• General security certifications (e.g., CompTIA Security+, CISM, CISSP) are a plus

Business Segment: Personal & Private Banking

Location: ZA, GP, Johannesburg, 30 Baker Street

• Manage and fine-tune Microsoft Purview DLP policies for endpoints, SharePoint, OneDrive & Teams
• Investigate DLP alerts, coordinate incident response with stakeholders, and document outcomes.
• Work closely with Legal, Risk, and Compliance teams to align DLP policies with regulatory and internal requirements (e.g., POPIA, GDPR, PCI-DSS).
• Tune policy exceptions and reduce false positives without compromising security.

Email Security (Microsoft Defender for Office 365)

• Administer and optimize anti-phishing, anti-malware, and anti-spoofing policies.
• Monitor mail flow, quarantine, and threat reports to detect patterns and enhance protection.
• Configure Safe Links, Safe Attachments, and ATP policies.
• Support investigations of email-based threats and data leakage attempts.

Web Security (Forcepoint and DMARC)

• Maintain and support the Forcepoint Web Security environment, including URL filtering, content categorization, and user policies.
• Investigate web-based threat alerts and policy violations.
• Assist in integration of web security controls with broader DLP and SIEM tools.
• Provide guidance for policy tuning and user experience improvements.
• Manage, Maintain and Support DMARC to ensure Email is protected against spoofing.

SSE / Cloud Access Controls (Cato Networks)

• Configure and monitor policies on Cato Networks’ SSE platform for secure internet access and cloud app control.
• Help define Zero Trust Network Access (ZTNA) policies for remote users and sensitive resources.
• Review access logs, user behaviour, and cloud application usage for anomalies.
• Coordinate with network and identity teams to streamline SSE enforcement.
• Triage alerts across DLP, email, web, and SSE tools; escalate or respond as needed.
• Provide weekly/monthly reports to leadership on data protection metrics, incident trends, and policy effectiveness.
• Collaborate with SOC and Blue Teams on threat correlation and data security posture assessments.
• Maintain documentation and support audit readiness.

Technical Skills

• Strong hands-on experience with Microsoft Purview DLP (E5).
• Proficient in Microsoft Defender for Office 365 (email hygiene, ATP, threat management).
• Experience with Forcepoint Web Security policy design, deployment, and management.
• Working knowledge of Secure Service Edge (SSE) and ZTNA concepts; Cato Networks experience preferred.
• Familiarity with security incident workflows, SIEMs (e.g., Sentinel), and PowerShell scripting.

Experience

• 5+ years in IT Security roles, with at least 2–3 focused on data security.
• Direct involvement in policy design, incident triage, and ongoing tuning of DLP/email/web security tools.
• Exposure to regulated environments with compliance reporting (e.g., financial services)
• Soft Skills
• Detail-driven with strong analytical skills.
• Clear communicator, especially when engaging end-users on policy violations or tuning.
• Able to balance risk mitigation with operational practicality.
• Comfortable working across InfoSec, Infrastructure, Legal, and Business teams.

Preferred Certifications

• Bachelors Degree in Computer Science (advantageous)
• Microsoft Certified: Information Protection Administrator Associate (SC-400)
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• General security certifications (e.g., CompTIA Security+, CISM, CISSP) are a plus

What you’ll be doing:

You will be part of a growing Product team that is defining Camunda’s product strategy and transforming the Process Automation market. The team embraces Camunda’s collaborative and accountable culture alongside an emphasis on “failing fast” to succeed. We value customer-centricity and work closely with customers and internal teams to bring Camunda’s products to the next level.

Your responsibilities will include:

• Define market-driven vision, strategy, and product requirements focused on improving the Camunda product portfolio.
• Manage community, customer, partner, and internal feedback with an emphasis on successfully driving innovation to improve data handling, identity and access management, and security across Camunda’s product portfolio.
• Fully evaluate and prioritize incoming feature requests.
• Keep the core Identity team equipped to work on the appropriate user stories.
• Continuous assessment of Camunda demand, market differentiation and the competitive landscape as well as close collaboration with our Pre-Sales Engineers, Solution Architects, and other Field teams.

• Ability and/or willingness to use our product.
• 5+ years product management experience in Enterprise software (e.g. knowledge about enterprise buying centers, subscription-based pricing model, enterprise software buying journey and sales cycles).
• 2+ years product management experience in a product area with focus on identity, data management, security, GDPR, cloud certifications.
• Experience of OKRs, customer research techniques, product design, Go-To-Market planning, backlog management, and working in Agile teams.
• Technical knowledge of cloud-native applications, SaaS security concerns, identity, data and privacy concerns, SaaS infrastructure.
• Strong communication skills – internally collaborating with others and externally presenting to customers.

• Have experience managing a product used by IT departments (Software Developers, Operations, etc.).
• Have experience working with a platform product that is available as SaaS and on-prem.

If you don’t think you meet all of the criteria but are still interested in the job, please apply. Nobody checks every box – we’re looking for candidates that are particularly strong in a few areas, and have some interest and capabilities in others.

Below is the annual Total Target Cash Compensation (Total Cash) range for Camundi located in one of our entities. Total Cash refers to base salary and 100% attainment of variable target, where applicable. Actual Total Cash offered will depend on factors such as skills and qualifications related to the role. To comprise the Total Rewards package, Camunda also offers equity (where applicable) in the form of a Virtual Employee Stock Option Plan and benefits based on the country of residence.

The annual Total Cash range for this position for Camundi in our entities is as follows:

• United States: $126,800.00 to $90,100.00
• Germany: €84,300.00 to €26,500.00
• United Kingdom: £82,200.00 to £23,200.00
• Singapore: S$157,4 0.00 to S 236,100.00

If you are outside one of these countries, you would be employed by our Preferred Employer Organization (PEO), Remote. After applying for the role and speaking with one of our Talent Acquisition Partners, you will be provided a link to access the Camunda Total Rewards Calculator which will outline the Total Cash range for your country.

• A remote by design culture, we believe talent is global!
• We support our employees in maintaining a healthy work/life balance, so we offer and encourage flexible time off at Camunda.
• A home office equipment budget and the choice of hardware. Mac, Windows, Linux – you choose what works best for you or/and you can work from a coworking space.
• Social interactions are important to us! Each year, Camunda hosts a company-wide get-together in new and exciting locations.
• We are committed to fostering a nurturing workplace where your health is prioritized and we help you to thrive.
• Power your self-driven learning journey and elevate your skills by unlocking up to 1000 $/ /£ nually with the Professional Growth Benefit.
• We understand our employees contribute immeasurably to Camunda’s success. To allow employees to benefit from that success, every Camunda employee is offered virtual shares from our Virtual Stock Option Plan (VSOP).

“Everyone is welcome at Camunda” — this is a celebrated component of our culture. We strive to create an inclusive environment that empowers our people. At Camunda, we honour diverse cultures and backgrounds and are proud to be an equal opportunity employer.

Did we pique your interest? Apply now and learn more.

What you’ll be doing:

You will be part of a growing Product team that is defining Camunda’s product strategy and transforming the Process Automation market. The team embraces Camunda’s collaborative and accountable culture alongside an emphasis on “failing fast” to succeed. We value customer-centricity and work closely with customers and internal teams to bring Camunda’s products to the next level.

Your responsibilities will include:

• Define market-driven vision, strategy, and product requirements focused on improving the Camunda product portfolio.
• Manage community, customer, partner, and internal feedback with an emphasis on successfully driving innovation to improve data handling, identity and access management, and security across Camunda’s product portfolio.
• Fully evaluate and prioritize incoming feature requests.
• Keep the core Identity team equipped to work on the appropriate user stories.
• Continuous assessment of Camunda demand, market differentiation and the competitive landscape as well as close collaboration with our Pre-Sales Engineers, Solution Architects, and other Field teams.

• Ability and/or willingness to use our product.
• 5+ years product management experience in Enterprise software (e.g. knowledge about enterprise buying centers, subscription-based pricing model, enterprise software buying journey and sales cycles).
• 2+ years product management experience in a product area with focus on identity, data management, security, GDPR, cloud certifications.
• Experience of OKRs, customer research techniques, product design, Go-To-Market planning, backlog management, and working in Agile teams.
• Technical knowledge of cloud-native applications, SaaS security concerns, identity, data and privacy concerns, SaaS infrastructure.
• Strong communication skills – internally collaborating with others and externally presenting to customers.

• Have experience managing a product used by IT departments (Software Developers, Operations, etc.).
• Have experience working with a platform product that is available as SaaS and on-prem.

If you don’t think you meet all of the criteria but are still interested in the job, please apply. Nobody checks every box – we’re looking for candidates that are particularly strong in a few areas, and have some interest and capabilities in others.

Below is the annual Total Target Cash Compensation (Total Cash) range for Camundi located in one of our entities. Total Cash refers to base salary and 100% attainment of variable target, where applicable. Actual Total Cash offered will depend on factors such as skills and qualifications related to the role. To comprise the Total Rewards package, Camunda also offers equity (where applicable) in the form of a Virtual Employee Stock Option Plan and benefits based on the country of residence.

The annual Total Cash range for this position for Camundi in our entities is as follows:

• United States: $126,800.00 to $90,100.00
• Germany: €84,300.00 to €26,500.00
• United Kingdom: £82,200.00 to £23,200.00
• Singapore: S$157,4 0.00 to S 236,100.00

If you are outside one of these countries, you would be employed by our Preferred Employer Organization (PEO), Remote. After applying for the role and speaking with one of our Talent Acquisition Partners, you will be provided a link to access the Camunda Total Rewards Calculator which will outline the Total Cash range for your country.

• A remote by design culture, we believe talent is global!
• We support our employees in maintaining a healthy work/life balance, so we offer and encourage flexible time off at Camunda.
• A home office equipment budget and the choice of hardware. Mac, Windows, Linux – you choose what works best for you or/and you can work from a coworking space.
• Social interactions are important to us! Each year, Camunda hosts a company-wide get-together in new and exciting locations.
• We are committed to fostering a nurturing workplace where your health is prioritized and we help you to thrive.
• Power your self-driven learning journey and elevate your skills by unlocking up to 1000 $/ /£ nually with the Professional Growth Benefit.
• We understand our employees contribute immeasurably to Camunda’s success. To allow employees to benefit from that success, every Camunda employee is offered virtual shares from our Virtual Stock Option Plan (VSOP).

“Everyone is welcome at Camunda” — this is a celebrated component of our culture. We strive to create an inclusive environment that empowers our people. At Camunda, we honour diverse cultures and backgrounds and are proud to be an equal opportunity employer.

Did we pique your interest? Apply now and learn more.

Kempton Park, South Africa | Posted on 03/20/2025

MUSE is a consulting company, specialising in resourcing, recruitment and outsourcing of software development teams.

MUSE was founded and is run by experienced developers who are passionate about technology and innovation. We have a vision to be the best in the industry and to provide software development skills that are cutting-edge and high-quality.

We work with some of the leading companies in South Africa and we help them build software products and solutions that are game-changing and future-oriented. We are also at the forefront of applying AI, AR and Machine-Learning concepts to real-world problems.

Our main goal is to help our clients get the most value from their technology investments. We do this by understanding their needs and providing them with the best talent available. We aim to be a vital part of the SDLC.

The Compliance and Data Security Expert will be responsible for developing, implementing, and maintaining a robust compliance and data security program. This role requires a deep understanding of relevant regulations, industry best practices, and security technologies. The ideal candidate will be a proactive problem solver with excellent communication skills and a passion for ensuring the confidentiality, integrity, and availability of our data.

Responsibilities:

1. Develop and maintain policies and procedures to ensure compliance with relevant regulations (e.g., POPIA, GDPR, ISO 27001, industry-specific regulations).
2. Conduct regular compliance audits and risk assessments.
3. Monitor and report on compliance status.
4. Stay up-to-date with changes in regulations and industry standards.
5. Provide guidance and training to employees on compliance requirements.
6. Develop and implement data security policies and procedures.
7. Conduct security risk assessments and vulnerability scans.
8. Implement and manage security controls (e.g., access control, encryption, intrusion detection).
9. Monitor and respond to security incidents.
10. Manage data loss prevention and data backup/recovery processes.
11. Implement and maintain data governance frameworks.
12. Identify and assess potential compliance and security risks.
13. Develop and implement risk mitigation strategies.
14. Maintain a risk register.
15. Conduct business impact analysis.
16. Develop and maintain an incident response plan.
17. Lead incident response activities.
18. Communicate effectively with stakeholders on compliance and security matters.
19. Provide regular reports to management.
20. Liaise with external auditors and regulatory bodies.

Qualifications and Skills:

1. Bachelor's degree in Computer Science, Information Security, Law, or a related field (or equivalent experience).
2. Relevant certifications (e.g., CISSP, CISM, CISA, CDPO/DPO).
3. Proven experience in compliance and data security management.
4. Deep understanding of relevant regulations (POPIA, GDPR, ISO 27001, etc.).
5. Experience with security risk assessments and vulnerability scanning.
6. Knowledge of security technologies and best practices.
7. Strong analytical and problem-solving skills.
8. Excellent communication and interpersonal skills.
9. Ability to work independently and as part of a team.
10. Experience with data governance frameworks.
11. Experience with cloud security.

Desired Attributes:

1. Proactive and detail-oriented.
2. Strong ethical principles.
3. Ability to manage multiple priorities.

Kempton Park, South Africa | Posted on 03/20/2025

MUSE is a consulting company, specialising in resourcing, recruitment and outsourcing of software development teams.

MUSE was founded and is run by experienced developers who are passionate about technology and innovation. We have a vision to be the best in the industry and to provide software development skills that are cutting-edge and high-quality.

We work with some of the leading companies in South Africa and we help them build software products and solutions that are game-changing and future-oriented. We are also at the forefront of applying AI, AR and Machine-Learning concepts to real-world problems.

Our main goal is to help our clients get the most value from their technology investments. We do this by understanding their needs and providing them with the best talent available. We aim to be a vital part of the SDLC.

The Compliance and Data Security Expert will be responsible for developing, implementing, and maintaining a robust compliance and data security program. This role requires a deep understanding of relevant regulations, industry best practices, and security technologies. The ideal candidate will be a proactive problem solver with excellent communication skills and a passion for ensuring the confidentiality, integrity, and availability of our data.

Responsibilities:

1. Develop and maintain policies and procedures to ensure compliance with relevant regulations (e.g., POPIA, GDPR, ISO 27001, industry-specific regulations).
2. Conduct regular compliance audits and risk assessments.
3. Monitor and report on compliance status.
4. Stay up-to-date with changes in regulations and industry standards.
5. Provide guidance and training to employees on compliance requirements.
6. Develop and implement data security policies and procedures.
7. Conduct security risk assessments and vulnerability scans.
8. Implement and manage security controls (e.g., access control, encryption, intrusion detection).
9. Monitor and respond to security incidents.
10. Manage data loss prevention and data backup/recovery processes.
11. Implement and maintain data governance frameworks.
12. Identify and assess potential compliance and security risks.
13. Develop and implement risk mitigation strategies.
14. Maintain a risk register.
15. Conduct business impact analysis.
16. Develop and maintain an incident response plan.
17. Lead incident response activities.
18. Communicate effectively with stakeholders on compliance and security matters.
19. Provide regular reports to management.
20. Liaise with external auditors and regulatory bodies.

Qualifications and Skills:

1. Bachelor's degree in Computer Science, Information Security, Law, or a related field (or equivalent experience).
2. Relevant certifications (e.g., CISSP, CISM, CISA, CDPO/DPO).
3. Proven experience in compliance and data security management.
4. Deep understanding of relevant regulations (POPIA, GDPR, ISO 27001, etc.).
5. Experience with security risk assessments and vulnerability scanning.
6. Knowledge of security technologies and best practices.
7. Strong analytical and problem-solving skills.
8. Excellent communication and interpersonal skills.
9. Ability to work independently and as part of a team.
10. Experience with data governance frameworks.
11. Experience with cloud security.

Desired Attributes:

1. Proactive and detail-oriented.
2. Strong ethical principles.
3. Ability to manage multiple priorities.

Managed Talent Solutions client in the mining sector is looking for a Information Security Analyst on a 12 month fixed term contract. Must have +6 years experience in conducting risk assessments that rely on outside penetration testing support and application of common Information Security Frameworks such as the ISO27000 series, SANS20, NIST and the ISF control framework.

POSITION INFO : Requirements :

• An undergraduate or postgraduate qualification in computer science, business informatics, / technology or equivalent Â
• Professional certifications and experience in Information Security from industry standard security frameworks : ISACA, BCS, CIPP, ITIL, Crest, ISC2, COMPTIA and key security vendors including Microsoft, Crowdstrike, Qualys, IBM.
• Must have experience in appliocation of Information Security frameworks such as the ISO27000 series, SANS20, NIST and the ISF control framework
• Conducting risk assessments that rely on outside penetration testing support
• Information security training and awareness concepts and delivery
• Incident response and crisis management concepts experience

 Key responsibilities :

• Support and monitor cybersecurity initiatives and controls in the region
• Collaborate with regional IT and security teams to implement security measures and protocols
• Conduct security assessments and risk analyses for regional assets and systems
• Facilitate security awareness training for regional employees
• Respond to and investigate security incidents in the region
• Stay updated with regional cybersecurity regulations and compliance requirements

Security Analyst • Johannesburg, South Africa

Managed Talent Solutions client in the mining sector is looking for a Information Security Analyst on a 12-month fixed-term contract. Must have more than 6 years of experience in conducting risk assessments that rely on outside penetration testing support and application of common Information Security Frameworks such as the ISO27000 series, SANS20, NIST, and the ISF control framework.

Requirements:

• An undergraduate or postgraduate qualification in computer science, business informatics, engineering/technology, or equivalent.
• Professional certifications and experience in Information Security from industry-standard security frameworks: ISACA, BCS, CIPP, ITIL, Crest, ISC2, COMPTIA, and key security vendors including Microsoft, Crowdstrike, Qualys, IBM.
• Experience in application of Information Security frameworks such as the ISO27000 series, SANS20, NIST, and the ISF control framework.
• Experience in conducting risk assessments that rely on outside penetration testing support.
• Knowledge of information security training and awareness concepts and delivery.
• Experience with incident response and crisis management concepts.

Key responsibilities:

• Support and monitor cybersecurity initiatives and controls in the region.
• Collaborate with regional IT and security teams to implement security measures and protocols.
• Conduct security assessments and risk analyses for regional assets and systems.
• Facilitate security awareness training for regional employees.
• Respond to and investigate security incidents in the region.
• Stay updated with regional cybersecurity regulations and compliance requirements.

Managed Talent Solutions client in the mining sector is looking for a Information Security Analyst on a 12-month fixed-term contract. Must have more than 6 years of experience in conducting risk assessments that rely on outside penetration testing support and application of common Information Security Frameworks such as the ISO27000 series, SANS20, NIST, and the ISF control framework.

Requirements:

• An undergraduate or postgraduate qualification in computer science, business informatics, engineering/technology, or equivalent.
• Professional certifications and experience in Information Security from industry-standard security frameworks: ISACA, BCS, CIPP, ITIL, Crest, ISC2, COMPTIA, and key security vendors including Microsoft, Crowdstrike, Qualys, IBM.
• Experience in application of Information Security frameworks such as the ISO27000 series, SANS20, NIST, and the ISF control framework.
• Experience in conducting risk assessments that rely on outside penetration testing support.
• Knowledge of information security training and awareness concepts and delivery.
• Experience with incident response and crisis management concepts.

Key responsibilities:

• Support and monitor cybersecurity initiatives and controls in the region.
• Collaborate with regional IT and security teams to implement security measures and protocols.
• Conduct security assessments and risk analyses for regional assets and systems.
• Facilitate security awareness training for regional employees.
• Respond to and investigate security incidents in the region.
• Stay updated with regional cybersecurity regulations and compliance requirements.