Job Description

SUMMARY:
The Head of Cybersecurity is a strategic leadership rolePOSITION INFO:Dotcom Cybersecurity was launched in 2020 to help companies achieve actual value, insight, and risk mitigation from their cybersecurity investments. Our business-first philosophy successfully secures medium, large, and global enterprise customers in , retail, state-owned enterprises, and other major sectors.We stake our reputation on trust and collaboration, working with Chief Information Security Officers (CISOs), Chief Information Officers (CIOs), Chief Executive Officers (CEOs), the board, and business owners in sectors including banking, financial services and , technology and telecommunications, the public sector, and manufacturing. Dotcom Cybersecurity is a level 1 BBBEE company, committed to growing South Africa.An exiciting new permanent opportunity has been created for a Head of Cybersecurity. This role will be based full time at our offices in Centurion.The Head of Cybersecurity is a strategic leadership role responsible for developing, implementing, and managing the organisation's cybersecurity vision, ensuring robust protection against cyber threats, and aligning security initiatives with business objectives. This role requires expertise in managed services, cybersecurity solutions, cybersecurity products, and financial & budget management, including budgeting, cost controls, accruals, and deferrals. The individual will lead a team of cybersecurity professionals, and drive innovation in security technologies and services.Key Responsibilities:Cybersecurity Strategy & Governance

• Develop and implement the organization's cybersecurity strategy, policies, and frameworks.
• Ensure alignment of cybersecurity initiatives with business goals, regulatory requirements, and industry best practices.
• Establish risk management processes to identify, assess, and mitigate cybersecurity risks effectively.
• Define and implement cybersecurity standards, ensuring compliance with frameworks such as NIST, ISO 27001, and CIS.

Financial & Budget Management

• Budget Ownership & Planning: Own and manage the cybersecurity budget, ensuring accurate financial forecasting, cost control, and resource allocation in alignment with business objectives, working closely with Group

and the Managing (MD). * Cost Management: Oversee cost of sales, deferrals, accruals, and other financial transactions to maintain compliance with financial reporting standards, in collaboration with Group Finance.

• Investment Optimization: Work with Group Finance and Procurement to optimize cybersecurity investments, ensuring cost-effective risk management and maximum ROI.
• Vendor & Contract Management: Manage cybersecurity vendor contracts, licensing agreements, and third-party service providers in coordination with Group Finance and MD to ensure financial efficiency and contractual compliance.
• Financial Reporting & Insights: Provide regular financial reports, analysis, and insights on cybersecurity expenditure, tracking actual vs. forecasted spend, and identifying areas for optimization, keeping Group Finance and MD informed.
• Strategic Cost Allocation: Develop and implement cost allocation models in consultation with Group Finance and MD to ensure cybersecurity expenses are properly distributed across business units and aligned with organizational goals.
• Risk & Compliance Alignment: Ensure cybersecurity budget decisions align with risk management strategies, compliance requirements, and industry best practices, with oversight from Group Finance and MD.
• Capital Expenditure (CapEx) & Operating Expense (OpEx) Management: Balance long-term strategic investments (CapEx) with day-to-day operational costs (OpEx), working closely with Group Finance and MD to maintain financial efficiency.
• Stakeholder Collaboration: Partner with Group Finance, MD, and executive leadership to align cybersecurity

with overall corporate strategy and business growth.Managed Security Services (MSS)

• Oversee Managed Security Services Providers (MSSPs) and ensure effective monitoring, detection, and response to security threats.
• Define service-level agreements (SLAs) and key performance indicators (KPIs) for managed security services.
• Ensure the effective deployment of outsourced security operations, vulnerability management, and incident response.
• Evaluate the effectiveness of third-party security services and drive continuous improvement.

Cybersecurity Solutions & Technologies

• Lead the design, implementation, and operation of enterprise-wide cybersecurity solutions.
• Ensure robust security architecture for network security, endpoint protection, identity and access management (IAM), and cloud security.
• Drive the adoption of emerging security technologies such as Zero Trust, Extended Detection & Response (XDR), and AI-driven security analytics.
• Work closely with IT and DevSecOps teams to inte