Dotcom Cybersecurity was launched in 2020 to help companies achieve actual value, insight, and risk mitigation from their cybersecurity investments. Our business-first philosophy successfully secures medium, large, and global enterprise customers in banking, retail, state-owned enterprises, and other major sectors.

We stake our reputation on trust and collaboration, working with Chief Information Security Officers (CISOs), Chief Information Officers (CIOs), Chief Executive Officers (CEOs), the board, and business owners in sectors including banking, financial services and insurance, technology and telecommunications, the public sector, and manufacturing. Dotcom Cybersecurity is a level 1 BBBEE company, committed to growing South Africa.

An exiciting new permanent opportunity has been created for a Head of Cybersecurity. This role will be based full time at our offices in Centurion.

The Head of Cybersecurity is a strategic leadership role responsible for developing, implementing, and managing the organisation's cybersecurity vision, ensuring robust protection against cyber threats, and aligning security initiatives with business objectives. This role requires expertise in managed services, cybersecurity solutions, cybersecurity products, and financial & budget management, including budgeting, cost controls, accruals, and deferrals. The individual will lead a team of cybersecurity professionals, and drive innovation in security technologies and services.

Key Responsibilities:

Cybersecurity Strategy & Governance

• Develop and implement the organization's cybersecurity strategy, policies, and frameworks.
• Ensure alignment of cybersecurity initiatives with business goals, regulatory requirements, and industry best practices.
• Establish risk management processes to identify, assess, and mitigate cybersecurity risks effectively.
• Define and implement cybersecurity standards, ensuring compliance with frameworks such as NIST, ISO 27001, and CIS.

Financial & Budget Management

• Budget Ownership & Planning: Own and manage the cybersecurity budget, ensuring accurate financial forecasting, cost control, and resource allocation in alignment with business objectives, working closely with Group Finance and the Managing Director (MD).
• Cost Management: Oversee cost of sales, deferrals, accruals, and other financial transactions to maintain compliance with financial reporting standards, in collaboration with Group Finance.
• Investment Optimization: Work with Group Finance and Procurement to optimize cybersecurity investments, ensuring cost-effective risk management and maximum ROI.
• Vendor & Contract Management: Manage cybersecurity vendor contracts, licensing agreements, and third-party service providers in coordination with Group Finance and MD to ensure financial efficiency and contractual compliance.
• Financial Reporting & Insights: Provide regular financial reports, analysis, and insights on cybersecurity expenditure, tracking actual vs. forecasted spend, and identifying areas for optimization, keeping Group Finance and MD informed.
• Strategic Cost Allocation: Develop and implement cost allocation models in consultation with Group Finance and MD to ensure cybersecurity expenses are properly distributed across business units and aligned with organizational goals.
• Risk & Compliance Alignment: Ensure cybersecurity budget decisions align with risk management strategies, compliance requirements, and industry best practices, with oversight from Group Finance and MD.
• Capital Expenditure (CapEx) & Operating Expense (OpEx) Management: Balance long-term strategic investments (CapEx) with day-to-day operational costs (OpEx), working closely with Group Finance and MD to maintain financial efficiency.
• Stakeholder Collaboration: Partner with Group Finance, MD, and executive leadership to align cybersecurity financial planning with overall corporate strategy and business growth.

Managed Security Services (MSS)

• Oversee Managed Security Services Providers (MSSPs) and ensure effective monitoring, detection, and response to security threats.
• Define service-level agreements (SLAs) and key performance indicators (KPIs) for managed security services.
• Ensure the effective deployment of outsourced security operations, vulnerability management, and incident response.
• Evaluate the effectiveness of third-party security services and drive continuous improvement.

Cybersecurity Solutions & Technologies

• Lead the design, implementation, and operation of enterprise-wide cybersecurity solutions.
• Ensure robust security architecture for network security, endpoint protection, identity and access management (IAM), and cloud security.
• Drive the adoption of emerging security technologies such as Zero Trust, Extended Detection & Response (XDR), and AI-driven security analytics.
• Work closely with IT and DevSecOps teams to integrate security into application development and cloud environments.

Cybersecurity Product Management

• Manage the lifecycle of cybersecurity products, ensuring alignment with business security needs.
• Evaluate and select cybersecurity tools and solutions to enhance security posture.
• Oversee product development initiatives in security software, data protection, and encryption solutions.
• Partner with vendors and suppliers to ensure cutting-edge security capabilities.

Threat Intelligence & Incident Response

• Lead the Security Operations Center (SOC) to proactively detect, investigate, and mitigate security threats.
• Develop and maintain incident response plans, ensuring swift and effective handling of security breaches.
• Conduct regular security audits, vulnerability assessments, and penetration testing.

Compliance & Risk Management

• Ensure compliance with global cybersecurity regulations (e.g., GDPR, HIPAA, CCPA, PCI-DSS, etc.).
• Conduct security risk assessments and audits to identify and mitigate vulnerabilities.
• Develop security awareness programs to educate employees on cybersecurity best practices.
• Work with legal and compliance teams to address data protection and privacy concerns.

Required Skills & Qualifications:

Technical & Cybersecurity Expertise

• Extensive experience in cybersecurity strategy, governance, and risk management.
• Strong knowledge of security technologies, frameworks, and best practices.
• Experience managing cybersecurity solutions, cybersecurity products, and managed services.
• Expertise in network security, cloud security, application security, and identity & access management.

Financial & Budget Management

• Strong understanding of financial principles, including budgeting, cost control, deferrals, accruals, and cost of sales.
• Ability to report and present financial metrics to executive leadership.
• Experience optimizing cybersecurity investments while maintaining a strong security posture.

Leadership & Stakeholder Management

• Proven experience leading cybersecurity teams, including SOC, security engineering, and GRC functions.
• Ability to collaborate with C-level executives, IT leaders, and external partners.
• Strong project management skills with the ability to drive security initiatives across an organization.

Education & Certifications

• Bachelor’s or Master’s degree in Cybersecurity, Information Security, Computer Science, or a related field.
• Industry certifications such as CISSP, CISM, CISA, CCSP, CRISC, or equivalent are highly desirable.

Preferred Qualifications:

• Experience working in regulated industries (e.g., finance, healthcare, government, insurance).
• Background in managing security within cloud environments (AWS, Azure, Google Cloud).
• Familiarity with DevSecOps and integrating security into CI/CD pipelines.
• Experience with AI and machine learning applications in cybersecurity.