1,520 Senior Security Specialists jobs in South Africa

The Apex Group was established in Bermuda in 2003 and is now one of the world's largest fund administration and middle office solutions providers.

Our business is unique in its ability to reach globally, service locally and provide cross-jurisdictional services. With our clients at the heart of everything we do, our hard-working team has successfully delivered on an unprecedented growth and transformation journey, and we are now represented by over circa 13,000 employees across 112 offices worldwide.Your career with us should reflect your energy and passion.

That's why, at Apex Group, we will do more than simply 'empower' you. We will work to supercharge your unique skills and experience.

Take the lead and we'll give you the support you need to be at the top of your game. And we offer you the freedom to be a positive disrupter and turn big ideas into bold, industry-changing realities.

For our business, for clients, and for you

The Role
Apex is looking for an experienced Security Architect to join our growing Enterprise Security Architecture team. You'll play a key role in designing and guiding the implementation of secure technology solutions across the organization. This role contributes directly to building scalable, resilient, and secure systems that support Apex's business and regulatory commitments.

Key Responsibilities

• Design secure architecture patterns aligned to Apex's technology roadmap and business goals.
• Act as the security design authority for assigned projects, initiatives, or architectural domains.
• Translate security policies and standards into practical design controls and implementation guidance.
• Evaluate new technologies, products, and platforms for alignment with enterprise security strategy.
• Conduct architecture risk assessments and threat modelling to identify potential exposures.
• Engage with infrastructure, application, and data teams to support secure solution design and integration.
• Document and maintain security architecture artefacts including diagrams, control mappings, and design decisions.
• Contribute to the development of security reference architectures and reusable design templates.
• Stay current on emerging threats, vulnerabilities, and technology trends.

Areas of Specialization
You will focus on one or more of the following domains, depending on your expertise and business needs:

• Cloud & Infrastructure

• Secure design and integration across hybrid/multi-cloud environments.

• Network security, IaaS/PaaS/SaaS controls, and cloud governance.

• Application Security

• Secure software architecture, DevSecOps, API and identity design.

• Integration with CI/CD pipelines and secure development practices.

• Data, AI & Digital Assets

• Data classification, encryption, tokenization, and privacy-enhancing technologies.

• Secure design of digital asset platforms, including smart contracts, blockchain integration, and secure key management.

• AI governance and secure data pipeline architecture.

• Advisory Services

• Provides strategic and technical guidance across domains to align security architecture with business objectives.

• Focus areas include enterprise security design, zero trust principles, risk-based decision-making, and integration of security into digital transformation initiatives.

Required Experience & Skills

• 10+ years of experience in cybersecurity, infrastructure, or application roles, with 5–7 years in architecture or security design.
• Proven experience architecting secure systems in large or complex enterprise environments.
• Hands-on exposure to technologies such as AWS, Azure, GCP, Kubernetes, IAM, CI/CD, API gateways, SIEM/SOAR, and data security platforms.
• Strong understanding of security principles, architecture patterns, and defense-in-depth strategies.
• Familiarity with security standards and frameworks (e.g., NIST, ISO 27001, CSA CCM, MITRE ATT&CK).
• Ability to communicate complex technical risks and architectural decisions to both technical and non-technical stakeholders.
• Experience with blockchain platforms (e.g., Ethereum, Hyperledger), smart contract security, and token standards (e.g., ERC-20, ERC-721).
• Understanding of digital identity, secure wallet design, and regulatory frameworks for digital assets (e.g., MiCA, FATF, SEC).
• Architectural qualifications (e.g., SABSA, TOGAF) are highly desirable.
• Professional certifications such as CISSP, CCSP, AWS/Azure/GCP Architect, or blockchain security credentials are a plus.

What will you get in return:

• Opportunity to work with senior security professionals across multiple global teams.
• Exposure to modern technologies and enterprise-scale transformation projects.
• Flexible work options and a strong focus on team collaboration and growth.
• A chance to help shape the security architecture function within a growing organisation.

Disclaimer: Unsolicited CVs sent to Apex (Talent Acquisition Team or Hiring Managers) by recruitment agencies will not be accepted for this position. Apex operates a direct sourcing model and where agency assistance is required, the Talent Acquisition team will engage directly with our exclusive recruitment partners.

Job Role: Security Domain Architect

Location: Johannesburg, South Africa

Role Type: Contract

Mode: Hybrid

Requirements

Qualification:

• Minimum of 3 years tertiary qualification in Information Technology/ Engineering
• CISSP/CISM/CGEIT certification (one of)
• SABSA , Cloud Security and/or TOGAF qualification will be an advantage
• Business analysis/architecture qualifications
• Other qualifications (CompTIA Security+, ITIL, COBIT) advantage
• Fluent in English

Experience:

• Minimum of
  3+ years of relevant work experience in Information Security
• Experience in
  designing and implementing cybersecurity systems architectures
• Experience in managing and implementing large scale security projects
• Advanced working understanding of the information technology environment of a telecom company
• Understanding of security infrastructure in Public and Private Cloud, e.g. virtual network infrastructure, hybrid IaaS/PaaS/SaaS solutions.
• Other security experience such NAC, Cisco ISE, CASB Solution Netscope, Web security technologies, architecture, operations, GRC, OWASP, etc
• Able to provide the Project and existing Security teams the necessary guidance to build policies, standards, risks and controls frameworks that meet MTN Group and operational requirements of the business
• Good experience in security architecture design in Cloud and on-premDesign and implementation of NGFW PA / Fortinet /, IOT, End point protection, multi-factor authentication
• Understanding of authentication and authorisation technologies (SAML, LDAP, PKI, etc) and other IAM technologies
• Understanding of the implementation, operation and maintenance of SIEM, boundary protection technologies (firewalls, mail gateways), Antivirus and AD security products
• Knowledge of web application architectures
• Knowledge of threat modelling

Location

City of Ekurhuleni

Remuneration

R 957,408 to R 1,313,316 - Basic salary per annum (plus benefits)

Assignment Type

Permanent

Minimum Requirements:

• B Degree in Computer Science / Information Systems / Technology and Engineering or relevant equivalent NQF Level 7 qualification
• TOGAF / SABSA Certification
• 5 years' experience in security architecture, including strategic, tactical and operational thinking and leadership with strong abilities in relationship management, developing and management of security architecture artefacts, established a track record of managing ICT staff and ICT services, and demonstrated project management competency and the execution of multiple projects, including managing resources across multiple projects
• A valid driver's license

Core Responsibilities:

• Design security structures that prevent malware and hacker intrusions to the CoE's computer system, test for any weaknesses and audit the entire IT system. Assess and make recommendations to update and improve the security system through software and hardware. Ensure that user policies and protocols are set, monitored and enforced. Set up countermeasures that will protect the City's computer system when an unauthorised user attempts to gain access
• Provide input to strategic capability and leadership to ensure alignment with the City's and ICT strategy
• Ensure effective operational processes to ensure effective and efficient execution of assigned tasks related to the delivery of architecture projects and thereby contribute towards the achievement of performance goals by the Department
• Perform governance and risk management function by maintaining compliance with policies and procedures to ensure promotion of good governance, compliance with applicable legislative and policy prescripts and effective and efficient management of risks by the Department
• Manage effective financial processes by performing assessment of the potential of emerging technologies and innovation ideas to contribute towards prudent financial management by the Department at large
• Ensure customer service orientation to promote people centered and efficient service delivery by the Department in line with the Batho Pele principles

Enquiries: Tel:

The successful candidate will be required to sign a performance contract as per Council resolution.

Candidates may be requested to submit proof of the NQF level applicable to the qualifications they have obtained.

Should candidates not be informed of the outcome of the application within six weeks of the closing date, it should be regarded as having been unsuccessful. The City of Ekurhuleni subscribes to the principles of the Employment Equity Act and reserves the right to appoint, not appoint or to appoint laterally.

Sign up to Apply for this Job

1 week ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from LSA Recruit

This role is responsible for comprehensively reviewing and embedding technical security architecture and controls requirements in digital, cloud, mobile money, IOT and new products and application areas. This includes planning and preparing solution designs, reference architectures, standards and configurations, and engagement models to be implemented across all business areas, core systems, third-party interfaces, and the internal core network interfaces. This role will be a valued partner to development and engineering teams to ensure secure architectures, patterns, and solutions are created and maintained for Cloud, digital, IoT and Fintech environments.

Technical Excellence:

• Participate in and lead the security design and implementation of all products across Consumer, Enterprise, Technology, Digital and Financial Services - design phase security architecture and post implementation.

• Experience with Cloud Security platform vendors and technologies such as Azure, and GCP Drive the design and implementation of secure technologies and applications in support of Enterprise-wide and Business Unit applications.

• Partner with IT and risk management to develop a comprehensive set of cyber-security policies and procedures governing hosted and SaaS environments.

• Provide security architectural guidance and review on business and technology products/ solutions

• Model threats and risks as well as the controls necessary to mitigate them, on both an organisational and technical level – thinking like a malicious hacker, understanding and anticipating the moves and tactics that a hacker might use to attack MTN systems.

• Follow the architecture analysis process, which consists of research, validation and evaluation of all new initiatives, with phase gates reviews presented to all stakeholders during the process

• Ensure that third party solutions and products follow MTN Controls standards.

• Review the security architecture design of MTN applications and products, for cloud and on-prem. Perform best-practices risk assessment of MTN’s products’ security stacks

• Build security into MTN Software Development Lifecycle, creating secure software development methodology (secure application development and coding practices; security testing), defining processes and establishing meaningful metrics for management 3 Sensitivity:

• Work with the product and existing Security teams to identify and assist with the building and implementation of policies, standards, processes, risk and control frameworks that meet MTNSA’s business requirements

• Evaluate and oversee the security of outsourced / third-party technologies and hosting environments to ensure they provide adequate protection for the processing, transmission, and storage of MTN’s information: − Implement reference architecture for integrating with third parties and partners − Implement mechanisms for vetting and implementing integration with cloud providers − Develop and implement architectural and development standards for third party technologies

• Act as a subject matter expert and provide consistant interpretation of security controls and requirements to MTNSA security teams ,application development and support personnel. This includes enterprise operational staff and business unit personnel.

• Evaluate outsourced mobile money integration points to ensure they provide adequate protection for the processing, transmission, and storage of transactions.

Minimum Requirements Education:

• Minimum of 3 years tertiary qualification in Information Technology/ Engineering

• SABSA , Cloud Security and/or TOGAF qualification will be an advantage

• Other qualifications (CompTIA Security+, ITIL, COBIT) advantage

• Fluent in English Experience:

• Minimum of 3+ years of relevant work experience in Information Security

• Experience in designing and implementing cybersecurity systems architectures

• Experience in managing and implementing large scale security projects

• Advanced working understanding of the information technology environment of a telecom company

• Understanding of security infrastructure in Public and Private Cloud, e.g. virtual network infrastructure, hybrid IaaS/PaaS/SaaS solutions.

• Other security experience such NAC, Cisco ISE, CASB Solution Netscope, Web security technologies, architecture, operations, GRC, OWASP, etc

• Able to provide the Project and existing Security teams the necessary guidance to build policies, standards, risks and controls frameworks that meet MTN Group and operational requirements of the business

• Good experience in security architecture design in Cloud and on-premDesign and implementation of NGFW PA / Fortinet /, IOT, End point protection, multi-factor authentication

• Understanding of authentication and authorisation technologies (SAML, LDAP, PKI, etc) and other IAM technologies

• Understanding of the implementation, operation and maintenance of SIEM, boundary protection technologies (firewalls, mail gateways), Antivirus and AD security products

• Knowledge of web application architectures

• Knowledge of threat modelling

For more info, please contact

• Seniority level Mid-Senior level

• Employment type Contract

• Job function Engineering, Information Technology, and Distribution
• Industries IT Services and IT Consulting, IT System Data Services, and IT System Installation and Disposal

Referrals increase your chances of interviewing at LSA Recruit by 2x

Get notified about new Cyber Security Architect jobs in Johannesburg Metropolitan Area .

Johannesburg, Gauteng, South Africa 1 week ago

Johannesburg Metropolitan Area 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

PeopleSolved is currently recruiting for a Security Architect to operate at a Group level for one of SA's leading private hospital groups.

This hybrid position is offering around R1.2m per annum, and located in Stellenbosch.

Exciting opportunity for a Group Security Architect to design, implement, and maintain secure architecture for cloud and hybrid IT systems. This role has a strong focus on Microsoft 365 and Azure platforms, while ensuring enterprise-wide security alignment with organisational policies, regulatory obligations, and risk frameworks.

This is an unique opportunity to work at enterprise scale in the healthcare industry — protecting sensitive data, driving digital resilience, and contributing to the mission of improving patient care through secure, innovative technology.

• Design and govern secure cloud architecture (Azure, M365, hybrid).
• Define and enforce enterprise-wide security standards and frameworks, following Zero Trust principles.
• Lead technical risk assessments, threat modelling, and solution evaluations.
• Drive implementation of Identity & Access Management (IAM) in collaboration with group architects.
• Evaluate, select, and optimise security tools (EDR, SIEM, CASB, etc.).
• Provide implementation guidelines on network security.

• Bachelor's degree in Information Systems, Cybersecurity, or Engineering (essential).
• Microsoft Certified: Cybersecurity Architect Expert, CISSP, or CCSP (advantageous).

• Minimum 10 years' experience in information security, with at least 5 years in security architecture.
• Hands-on expertise in designing and implementing Microsoft 365 and Azure security.
• Experience in healthcare regulatory compliance (e.g. POPIA, GDPR) preferred.
• Knowledge of CSPM, SASE, third-party risk, DevSecOps, and identity governance desirable.
• Container security (Kubernetes, Docker) is advantageous.

• Cloud Security (Azure, M365).
• Security frameworks (NIST, ISO 27001, CIS Controls).
• SIEM/SOAR platforms (Sentinel).
• Data protection (DLP, MIP, MCAS).
• Solid understanding of secure design principles.

Senior Cyber Security Specialist – Architecture

Location: Cape Town (Hybrid, 3 days in office)
Type: Full-time, permanent
Recruiter: Redherd (on behalf of a major South African enterprise)

We are hiring a Senior Cyber Security Specialist to join a small, highly technical architecture and engineering team within a mature cyber security function. This role focuses on designing, maintaining, and evolving enterprise security architecture across both cloud and on-premise environments. You’ll help define and drive security by design, zero trust principles, reference architecture standards, and proactive threat modelling across technology teams.

The ideal candidate is experienced in enterprise architecture, collaborative across business and engineering domains, and able to translate strategy into scalable, secure solutions.

• Maintain and improve cybersecurity architecture for both on-premise and cloud environments

• Contribute to the development of security reference architecture and reusable security patterns

• Identify architecture enhancements (e.g. improved visibility, automation, noise reduction, consolidation)

• Drive implementation of security by design across projects and business enablement

• Conduct security architecture reviews and proactively identify design gaps

• Support enterprise threat modelling activities and advise on technical risk

• Own and promote security architecture principles and standards across teams

• Contribute to security policies, guidelines, and procedures

• Stay up to date with global security trends and incorporate them into team strategy

• Collaborate across cyber, technology, and business stakeholders to align security architecture with strategic goals

• 8+ years experience in cyber and information security

• 3+ years in security engineering

• 3+ years in security architecture

• Strong knowledge of cloud security architecture and enterprise infrastructure

• Familiarity with security operations tools, frameworks, and processes

• 4-year IT qualification or relevant degree

• Experience driving architectural reviews, risk assessments, and secure design

• Ability to work independently and collaborate across technical and business functions

• Programming and scripting (e.g. Python, Bash)

• Industry certifications such as AWS, Google Cloud, Palo Alto, Qualys

• Experience maturing SOC capabilities or working with security automation

• Exposure to AI/ML in security tooling

• Practical experience with frameworks like MITRE ATT&CK

• Understanding of PCI-DSS and regulatory requirements

• Hands-on experience with cloud platforms (AWS, GCP, Azure)

You enjoy solving complex architectural problems, translating business needs into secure technical designs, and influencing secure-by-default practices across an organisation. You're comfortable navigating between strategic and hands-on work, and bring both leadership and technical depth to a role that supports real transformation.

To apply, contact Redherd or follow the application link.

About the Role:

Exciting opportunity for a Group Security Architect to design, implement, and maintain secure architecture for cloud and hybrid IT systems. This role has a strong focus on Microsoft 365 and Azure platforms, while ensuring enterprise-wide security alignment with organisational policies, regulatory obligations, and risk frameworks.

This is an unique opportunity to work at enterprise scale in the healthcare industry protecting sensitive data, driving digital resilience, and contributing to the mission of improving patient care through secure, innovative technology.

Key Responsibilities:

• Design and govern secure cloud architecture (Azure, M365, hybrid).
• Define and enforce enterprise-wide security standards and frameworks, following Zero Trust principles.
• Lead technical risk assessments, threat modelling, and solution evaluations.
• Drive implementation of Identity & Access Management (IAM) in collaboration with group architects.
• Evaluate, select, and optimise security tools (EDR, SIEM, CASB, etc.).
• Provide implementation guidelines on network security.

Education:

• Bachelors degree in Information Systems, Cybersecurity, or Engineering (essential).
• Microsoft Certified: Cybersecurity Architect Expert, CISSP, or CCSP (advantageous).

Experience:

• Minimum 10 years experience in information security, with at least 5 years in security architecture.
• Hands-on expertise in designing and implementing Microsoft 365 and Azure security.
• Experience in healthcare regulatory compliance (e.g. POPIA, GDPR) preferred.
• Knowledge of CSPM, SASE, third-party risk, DevSecOps, and identity governance desirable.
• Container security (Kubernetes, Docker) is advantageous.

Skills:

• Cloud Security (Azure, M365).
• IAM (Entra ID, RBAC).
• Security frameworks (NIST, ISO 27001, CIS Controls).
• Network segmentation, Zero Trust.
• SIEM/SOAR platforms (Sentinel).
• Data protection (DLP, MIP, MCAS).
• Solid understanding of secure design principles.

Job Title: Group Security Architect

Mediclinic Group Services | Stellenbosch | South Africa

Closing date: 29/08/2025

Number of positions: 1

Recruiter name: Gaylin Daniels

Reference number: 6222

Workplace Type: Hybrid

Permanent

Please note if you are an internal employee on a fixed term contract please apply using an external candidate profile and not your employee profile

MAIN PURPOSE OF JOB

Design, implement, and maintain secure architecture for cloud and hybrid IT systems across the Mediclinic Group, with a strong focus on Microsoft 365 and Azure platforms. Support strategic security initiatives on the Group and cross divisions by ensuring that all infrastructure, network, data, and application layers are protected in line with the organisation's security policies, regulatory obligations, and enterprise risk appetite. Stay updated on emerging security trends, especially in healthcare.

KEY RESPONSIBILITY AREAS

Design and govern secure cloud architecture (Azure, M365, hybrid)

Define and enforce cloud and enterprise security standards, frameworks, following Zero Trust Principles

Lead technical risk assessments and threat modelling for cloud and on-prem deployments and new solution selections

Lead the IADM implementation in collaboration with the group architects and divisions

Evaluate, select, and optimise security tools (EDR, SIEM, CASB, etc.)

Implementation and guidelines on network security

REQUIRED EDUCATION

ESSENTIAL EDUCATION

Relevant Bachelor's degree in Information Systems, Cybersecurity or Engineering

DESIRED EDUCATION

Microsoft Certified: Cybersecurity Architect Expert

CISSP / CCSP / Azure Security Engineer Associate, Microsoft Cyber Security Architect Expert Certification

REQUIRED EXPERIENCE

ESSENTIAL MINIMUM EXPERIENCE

Minimum 10 years relevant experience in information security, with at least 5 years in a security architecture role.

Hands-on experience in designing and implementing Microsoft 365 and Azure security.

DESIRED EXPERIENCE

Relevant experience with regulatory compliance in healthcare (e.g. GDPR, ADHICS, POPIA)

A working knowledge of cloud security posture management (CSPM), SASE.

Knowledge of third-party risk, DevSecOps, and identity governance.

Container Security Experience with Kubernetes, Docker

REQUIRED JOB SKILLS AND KNOWLEDGE

• Cloud Security Architecture (Azure, M365)
• Identity & Access Management (Entra ID, RBAC)
• Security frameworks (NIST, ISO, CIS)
• Network segmentation, Zero Trust
• Information protection (DLP, MIP, MCAS)
• SIEM/SOAR platforms (e.g., Sentinel)
• Strong understanding of N/W security, including SASE, Cloud, On-premises, and SD-WAN environments
• Solid understanding of secure design principles, including Zero Trust Architecture and a solid understanding of security frameworks such as NIST, ISO 27001, and CIS Controls
• An understanding of working with AI and large language models in the context of security