59 Information Security Manager jobs in Johannesburg

Role Overview

As Manager – AI Information Security, you would be responsible for designing and implementing advanced information security frameworks focused on AI systems. The role ensures the protection of sensitive data, compliance with regulations, and integration of security into AI development workflows. You'll collaborate with AI/ML engineering and data science teams to embed security practices and manage incidents, vulnerabilities, and third-party risks.

• Develop AI-specific information security strategies, policies, and governance frameworks.
• Embed risk management best practices and update organisation’s security posture with emerging threat intelligence.
• Implement AI incident response frameworks in line with organisation's information security standards.
• Guide AI/ML engineers and data scientists on secure coding, threat modeling, and secure data workflows.
• Ensure compliance with global data privacy laws and evolving security regulations.
• Lead training initiatives to increase security awareness among AI teams.
• Oversee deployment and optimization of security monitoring tools for continuous AI ecosystem surveillance.
• Manage penetration testing, threat & vulnerability assessments, and drive resilience programs.
• Report security metrics, incidents, and compliance activities to senior leadership and AI Department.
• Align security processes with audit, ethics, and compliance standards.
• Coordinate third-party security assessments on AI tools and platforms.

• Education: Bachelor’s degree in Computer Science, IT, Cybersecurity, or related field. Information Security certifications are preferred.
• Experience:
  • Minimum of 4+ years in information or cybersecurity roles.
  • Demonstrated experience securing AI/ML-driven environments, ideally within telecom or similar sectors.
  • Proficiency in managing security incidents, risk assessments, vulnerabilities, and compliance audits.
• Skills:
  • Expertise in cybersecurity frameworks, AI/ML security, data privacy, and cloud platforms.
  • Proficient in vulnerability scanning, penetration testing, and incident response methodologies.
  • Strong stakeholder engagement and communication capabilities.

Role Overview:

As Manager – AI Information Security, you would be responsible for designing and implementing advanced information security frameworks focused on AI systems. The role ensures the protection of sensitive data, compliance with regulations, and integration of security into AI development workflows. You'll collaborate with AI/ML engineering and data science teams to embed security practices and manage incidents, vulnerabilities, and third-party risks.

Key Responsibilities:

• Develop AI-specific information security strategies, policies, and governance frameworks.
• Embed risk management best practices and update organisation’s security posture with emerging threat intelligence.
• Implement AI incident response frameworks in line with organisation's information security standards.
• Guide AI/ML engineers and data scientists on secure coding, threat modeling, and secure data workflows.
• Ensure compliance with global data privacy laws and evolving security regulations.
• Lead training initiatives to increase security awareness among AI teams.
• Oversee deployment and optimization of security monitoring tools for continuous AI ecosystem surveillance.
• Manage penetration testing, threat & vulnerability assessments, and drive resilience programs.
• Report security metrics, incidents, and compliance activities to senior leadership and AI Department.
• Align security processes with audit, ethics, and compliance standards.
• Coordinate third-party security assessments on AI tools and platforms.
  
  

Qualifications & Experience:

• Education: Bachelor’s degree in Computer Science, IT, Cybersecurity, or related field. Information Security certifications are preferred.

• Experience:
  • Minimum of 4+ years in information or cybersecurity roles.
  • Demonstrated experience securing AI/ML-driven environments, ideally within telecom or similar sectors.
  • Proficiency in managing security incidents, risk assessments, vulnerabilities, and compliance audits.

• Skills:
  • Expertise in cybersecurity frameworks, AI/ML security, data privacy, and cloud platforms.
  • Proficient in vulnerability scanning, penetration testing, and incident response methodologies.
  • Strong stakeholder engagement and communication capabilities.

Overview

Information Security Manager | Waterfall, Midrand, Gauteng | Permanent

Join to apply for the Information Security Manager role at PSG Wealth Menlyn. This is a permanent position based in Waterfall Magwa Crescent, Midrand, Gauteng.

The Information Security Manager will lead PSG’s cybersecurity strategy, governance, and operations across a hybrid cloud infrastructure. This includes managing Microsoft security capabilities, integrating firewall technologies, overseeing the Cyber Security Operations Center (SOC), and ensuring compliance with regulatory and industry standards. The role also includes managing BYOD risks, securing branch networks, and aligning with globally recognized frameworks such as the NIST Cybersecurity Framework and Joint Security Standards (JSS).

• Develop and maintain PSG’s enterprise-wide cybersecurity strategy aligned with business objectives and regulatory requirements.
• Establish and enforce security governance frameworks, policies, and standards.
• Ensure alignment with the NIST Cybersecurity Framework (Identify, Protect, Detect, Respond, Recover) and Joint Security Standards.
• Lead the implementation of relevant security compliance initiatives.
• Collaborate with divisional CIOs and executive leadership to align security posture across business units.
• Monitor emerging threats, regulatory changes, and industry trends to inform strategic decisions.
• Design secure solutions for hybrid environments (on-prem + Azure).
• Integrate security into infrastructure and application projects.
• Manage identity and access controls, including Azure AD, MFA, and privileged access management.
• Manage day-to-day security monitoring, incident handling, and threat intelligence.
• Administer Microsoft 365 security features: Defender for Endpoint, Purview, Sentinel, Conditional Access, etc.
• Ensure endpoint, network, and cloud security controls are effectively implemented and monitored.
• Implement and enforce BYOD policies, including mobile device management (MDM), data loss prevention (DLP), and secure access controls.
• Secure branch office networks, including firewalls, VPNs, segmentation, and remote access protocols.
• Develop and manage the annual cybersecurity budget, including licensing, tools, training, and consulting services.
• Track and report on security-related expenditures, ROI, and risk mitigation outcomes.
• Support procurement and vendor management for security solutions.
• Oversee 24/7 SOC operations, ensuring effective threat detection, incident response, and escalation.
• Define SOC roles, workflows, and incident response playbooks.
• Integrate SIEM, SOAR, and threat intelligence platforms for proactive defense.
• Monitor and improve KPIs such as Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).
• Coordinate with external threat intelligence providers and law enforcement when necessary.
• Oversee deployment, maintenance, and upgrade of security technologies including Microsoft 365 E3/E5 and Hailstone platforms.
• Ensure timely patching, configuration updates, and feature adoption.
• Maintain compatibility and integration of security tools with PSG’s hybrid infrastructure.
• Document system configurations and update operational procedures regularly.
• Conduct regular risk assessments, vulnerability scans, and penetration tests.
• Ensure compliance with POPIA, GDPR, NIST CSF, JSS, and other relevant regulations and frameworks.
• Maintain a risk register and track mitigation actions.
• Coordinate internal and external audits and ensure timely remediation of findings.
• Lead organization-wide cybersecurity awareness programs.
• Deliver targeted training for IT, business, and executive teams.
• Promote secure behaviour and incident reporting culture.
• Build and lead a high-performing cybersecurity team, leveraging SOC analysts, engineers, and compliance specialists.
• Define clear roles, responsibilities, and performance expectations.
• Conduct regular coaching, performance reviews, and career development planning.
• Foster a culture of accountability, innovation, and continuous improvement.
• Promote cybersecurity awareness and ownership across all departments.
• Prepare operational, executive-level reports on security posture, risk exposure, and compliance status.

• Bachelor’s degree in Computer Science, Information Technology, or related field.
• 8+ years of IT Security experience, with 5+ years in a leadership role.
• CISSP, CISM, or equivalent.
• Microsoft Certified: Cybersecurity Architect Expert.
• GIAC Security Operations (GSOM) or equivalent SOC certification.
• Familiarity with scripting (PowerShell, Bash) and automation tools.

• Microsoft 365 and SharePoint Online
• Proven leadership in cybersecurity within hybrid cloud environments.
• Deep knowledge of Microsoft 365 E3/E5 security stack and Hailstone technologies.
• Strong understanding of SIEM, SOAR, threat intelligence, and SOC operations.
• Experience managing BYOD environments and securing distributed branch networks.
• Familiarity with ISO/IEC 27001, ISO/IEC 2000, NIST, and CIS controls.
• Excellent communication, stakeholder engagement, and team leadership skills.

Candidates interested must apply here by no later than 30 October 2025 or browse available PSG Careers vacancies at

By submitting your application, you are giving PSG Financial Services implicit consent to the storage and processing of your personal information. If you are not contacted within 4 weeks of your application, please accept that your application was not successful. For more information about careers at PSG, visit

Overview

Implementing solutions with a focus on MS Data Protection, Dell Data Protection, Veeam, and Druva. Designing and deploying data protection systems tailored to organizational needs. Troubleshooting and resolving backup issues promptly to minimize downtime. Managing and monitoring backup and recovering operations to ensure data availability. Creating and enforcing data protection policies compliant with government and industry regulations. Providing training and supporting staff on backup and recovery solutions.

• Design and deployment of data protection systems aligned with organizational needs
• Troubleshoot and resolve backup issues to minimize downtime
• Manage and monitor backup and recovery operations to ensure data availability
• Create and enforce data protection policies compliant with government and industry regulations
• Provide training and support for staff on backup and recovery solutions

• Bachelor’s degree in information technology, Computer Science, Business Administration, or a related field
• 5+ years of experience in data protection and backup technologies
• Proficiency in Dell Data Protection, Veeam, and Druva solutions
• Strong understanding of data protection principles, disaster recovery, and compliance
• Familiarity with HCI, VMware, and enterprise storage technologies
• Microsoft Certified: Information Protection and Compliance Administrator Associate will be an advantage
• Certification in data protection or relevant tools (e.g., Veeam Certified Engineer, Druva, Dell Data Protection Specialist)

Job Description

Implementing solutions with a focus on MS Data Protection, Dell Data Protection, Veeam, and Druva.

Designing and deploying data protection systems tailored to organizational needs.

Troubleshooting and resolving backup issues promptly to minimize downtime.

Managing and monitoring backup and recovering operations to ensure data availability.

Creating and enforcing data protection policies compliant with government and industry regulations.

Providing training and supporting staff on backup and recovery solutions.

Qualification & Skills 

Bachelor’s degree in information technology, Computer Science, Business Administration, or a related field

5+ years of experience in data protection and backup technologies

Proficiency in Dell Data Protection, Veeam, and Druva solutions.

Strong understanding of data protection principles, disaster recovery, and compliance

Familiarity with HCI, VMware, and enterprise storage technologies.

Microsoft Certified: Information Protection and Compliance Administrator Associate will be an advantage

Certification in data protection or relevant tools (e.g., Veeam Certified Engineer, Druva, Dell Data Protection Specialist

Suitable candidates will be contacted. If you do not get a response within 14 days, please consider your application unsuccessful.

Job Description:

Implementing solutions with a focus on MS Data Protection, Dell Data Protection, Veeam, and Druva.

Creating and enforcing data protection policies compliant with government and industry regulations.

Troubleshooting and resolving backup issues promptly to minimize downtime.

Managing and monitoring backup and recovering operations to ensure data availability.

Providing training and supporting staff on backup and recovery solutions.

Designing and deploying data protection systems tailored to organizational needs.

Qualification & Skills

Bachelor’s degree in information technology, Computer Science, Business Administration, or a related field

5+ years of experience in data protection and backup technologies

Proficiency in Dell Data Protection, Veeam, and Druva solutions.

Must have these certifications (Non-negotiable):

PowerProtect Data Manager Deploy

PowerProtect DD Deploy

Avamar Deploy

PowerProtect DD Operate

Avamar Operate

Specialist – Technology Architect, Data Protection Version 2.0 (DES-3612)

Desired certification: Veeam (Veeam Certified Engineer) and Druva (Druva Certified Cloud Professional)  

Suitable candidates will be contacted. If you do not get a response within 14 days, please consider your application unsuccessful.

• Bachelors Degree in Information Technology, Computer Science, Business Administration, or a related field.
• Certification in data protection or relevant tools (e.g., Veeam Certified Engineer, Druva, Dell Data Protection Specialist)
• Microsoft Certified: Information Protection and Compliance Administrator Associate will be an advantage.

• 5+ years of experience in data protection and backup technologies.
• Proficiency in Dell Data Protection, Veeam, and Druva solutions.
• Strong understanding of data protection principles, disaster recovery, and compliance.
• Familiarity with HCI, VMware, and enterprise storage technologies.

• Strong analytical and troubleshooting skills.
• Excellent organisational and time-management abilities.
• Effective communication and collaboration skills.
• Attention to detail with a focus on accuracy and reliability.
• Proficiency in creating and enforcing data protection policies compliant with regulatory requirements.

• Design and deploy data protection systems tailored to organizational needs.
• Implement solutions with a focus on MS Data Protection, Dell Data Protection, Veeam, and Druva.
• Provide recommendations for improving existing data protection infrastructure.

• Manage and monitor backup and recovery operations to ensure data availability.
• Troubleshoot and resolve backup issues promptly to minimize downtime.
• Regularly test recovery procedures to validate effectiveness.

• Create and enforce data protection policies compliant with government and industry regulations.
• Ensure compliance with data retention policies and contractual obligations.

• Create and enforce data protection policies compliant with government and industry regulations.
• Ensure compliance with data retention policies and contractual obligations.

• Work with account managers, infrastructure teams, and business units to identify data protection needs.
• Provide training and support to staff on backup and recovery solutions.
• Liaise with vendors for technical support and system upgrades.

• Create and enforce data protection policies compliant with government and industry regulations.
• Ensure compliance with data retention policies and contractual obligations.