Johannesburg: Information Security Manager

This is a senior leadership role responsible for shaping security architecture, overseeing SOC operations, ensuring regulatory compliance, managing distributed networks and BYOD environments, and driving a proactive security culture across the business. This opportunity is ideal for a seasoned cybersecurity leader who combines strategic oversight with strong technical depth and operational execution. Key Responsibilities Strategic Leadership & Governance Develop and maintain the organisations enterprise cybersecurity strategy aligned to business objectives. Establish and enforce governance frameworks, policies, and security standards. Ensure alignment with globally recognised frameworks (NIST CSF, JSS, ISO standards). Partner with executive leadership and divisional IT heads to align security posture across business units. Monitor emerging threats, regulatory changes, and industry trends to guide strategic decisions. Architecture & Identity Management Design secure solutions across hybrid environments (on-prem Azure) . Integrate security into infrastructure and application initiatives. Manage enterprise identity and access controls (Azure AD / Entra ID, MFA, PAM). Security Operations & SOC Oversight Lead 24/7 SOC operations, ensuring effective monitoring, detection, response, and escalation. Oversee SIEM, SOAR, threat intelligence platforms, and automation initiatives. Define incident response workflows, playbooks, and KPIs (MTTD / MTTR). Manage Microsoft 365 security stack (Defender, Sentinel, Purview, Conditional Access). Secure distributed branch networks (firewalls, VPNs, segmentation, remote access). Implement and enforce secure BYOD frameworks (MDM, DLP, secure access controls). Risk Management & Compliance Conduct enterprise risk assessments, vulnerability management, and penetration testing. Maintain risk registers and oversee remediation tracking. Ensure compliance with POPIA, GDPR, NIST CSF, and related regulatory frameworks. Lead internal and external audit engagements. Financial & Vendor Management Manage annual cybersecurity budget (licensing, tooling, consulting, training). Track security ROI and risk mitigation metrics. Oversee vendor and security solution procurement. Awareness & Team Leadership Lead enterprise-wide security awareness programmes. Build and mentor a high-performing cybersecurity team. Define clear performance expectations and career development pathways. Promote a culture of accountability, ownership, and continuous improvement. Minimum Requirements Bachelors degree in Computer Science, IT, or related field. 8 years IT security experience , with at least 5 years in a leadership capacity . CISSP, CISM, or equivalent senior-level certification. Microsoft Cybersecurity Architect Expert (or equivalent). SOC-related certification (e.g., GSOM or similar) advantageous. Familiarity with scripting and automation (PowerShell, Bash). Technical Expertise Hybrid cloud security (Azure on-prem environments). Microsoft 365 E3/E5 security stack. SIEM, SOAR, threat intelligence, and SOC operations. Identity governance, MFA, PAM, and zero-trust models. BYOD security and distributed branch network protection. Knowledge of ISO 27001, ISO 20000, NIST, CIS Controls. Strong technical documentation capability. Competencies Strong leadership and decision-making ability. Strategic and analytical thinker. Excellent stakeholder engagement and executive communication skills. High resilience and ability to operate in high-pressure environments. Detail-oriented and deadline-driven. Strong time management and organisational capability. Whats On Offer Permanent leadership opportunity within a growing financial services environment. Strategic influence over enterprise security direction. Hybrid working model. Competitive, market-related remuneration aligned to seniority. Opportunity to build and shape a mature cybersecurity function. Apply Now! For more information contact: Raees Sadek IT Recruitment Researcher