Chief Information Security Officer _Pretoria_(Ref 8000)

The Information Security Officer will be responsible for enterprise-wide security in the Group

Key Duties and Responsibilities 

• Develop and execute the Company’s enterprise-wide information and cyber security strategy aligned with business objectives and digital innovation.
• Serve as a trusted cyber risk advisor to executive leadership, balancing innovation with security and risk management.
• Lead the secure adoption of digital technologies including cloud, data analytics, and emerging technologies.
• Identify, assess, and mitigate cyber security threats such as ransomware, data breaches, and insider threats.
• Oversee Security Operations, cyber incident response, threat investigations, and vulnerability management.
• Develop, maintain, and test the Cyber Incident Response Plan (CIRP).
• Oversee disaster recovery, business continuity, and organisational cyber resilience.
• Ensure compliance with POPIA, GDPR, ISO 27001, and recognised industry frameworks including NIST and PCI-DSS.
• Lead security audits, risk assessments, regulatory engagements, and assurance activities.
• Manage enterprise-wide cyber risk in collaboration with ICT, PMO, and Group Risk.
• Oversee third-party, vendor, and contract security risk management.
• Provide executive reporting, dashboards, and insights on cyber risk posture and incidents.
• Drive cyber security awareness, training, and a culture of shared accountability across the organisation.
• Build, lead, and develop a high-performing information security function.

Qualifications, Experience and Competencies 

• Degree in Information Technology, Business Administration, or a related field.
• Minimum of 7+ years’ experience in cyber security, risk management, and IT leadership.
• At least 5–7 years’ experience in a senior information security management or executive role.
• Professional certifications such as CISSP, CISM, CISA, CCSP, or equivalent.
• Strong working knowledge of security frameworks including ISO 27001, NIST, PCI-DSS, and SSAE 18.
• Experience within financial services, insurance, or similarly regulated industries.
• Proven experience with modern security tools and technologies (IAM, SOC, IDS/IPS, DLP, cloud security).
• Demonstrated ability to lead complex initiatives in a matrixed, multi-stakeholder environment.
• Strong vendor, third-party, and contract security management experience.
• Exceptional leadership, communication, analytical, and stakeholder engagement skills.
• Strong report writing, executive dashboarding, and presentation capability.
• Strategic mindset with the ability to coach, mentor, and develop high-performing teams.

Salary offered : R 1 million – R1.3 million p.a per experience to be discussed during interview process

Apply : By e-mail with your CV, photo added to your CV,to admin1@smartplacements.co.za

Tagged as: CCSP, Chief Information Security Officer, CISA, CISM, CISO, CISSP, Cybersecurity