Johannesburg has emerged as a critical hub for cybersecurity leadership in Africa, driven by rapid digital transformation, increased regulatory pressure, and an escalating threat landscape that demands both technical vigilance and strategic foresight. As the CISO role shifts from operational oversight to business enablement, security leaders across industries are influencing risk governance, shaping innovation, and safeguarding national-scale infrastructure.
This list highlights a group of Johannesburg-based cybersecurity leaders whose work exemplifies this evolution, demonstrating how cybersecurity has become a central pillar of operational resilience and sustainable growth in South Africa’s most dynamic economic center.
Galeboe Mogotsi — University of the Witwatersrand (Wits)
Galeboe Mogotsi was appointed CISO of Wits in February 2024, after serving as General Manager for ICT Strategy & Governance there. With over 18 years of experience across sectors including defence, public service, and higher education, he brings both technical depth and strategic governance capabilities. Under his leadership, Wits has embraced a “multi‑layered” security posture combining advanced email filtering, network monitoring, and managed SOC capabilities, all designed to preserve the open, collaborative nature of a university while safeguarding against phishing, ransomware, and data breaches.
Maletsema Phofu — University of Johannesburg (UJ)
In May 2024, Maletsema Phofu was appointed as UJ’s Director of Information Security (CISO). Later in 2024, she was named CIO‑designate, a transition scheduled for January 2025, reflecting her expanded remit beyond cybersecurity to overall IT strategy. Before joining UJ, her background included senior security roles at major South African entities, spanning telecom (MTN), banking (Absa, Equity Bank), and energy (Sasol Synfuels skom). Known also for her outreach efforts, she founded an initiative called “Cybersecurity Savvy Warriors,” dedicated to raising cyber‑awareness among pre‑teens, seniors, and the broader public.
Celia Mantshiyane — FirstRand
Celia Mantshiyane is among the recognized cybersecurity leaders in South Africa, having previously served as CISO at MTN South Africa. More recently, she has moved into a broader role, Group CISO at FirstRand, underscoring her growing influence across sectors. Over her long career, she has also held security and governance roles at a variety of organizations, including insurance and finance, as well as past stints in telecom and beverage (Coca‑Cola Africa). Mantshiyane has been featured among global top‑100 CISOs and Africa’s most influential women in digital transformation, a testament to both her technical acumen and leadership stature.
Darshan Lakha — Vodacom
With more than 20 years of telecommunications experience, Darshan Lakha serves as Vodacom’s Head of Technology/Cyber Security, overseeing the organisation’s security strategy across local markets and aligning it with global Vodafone standards. He leads Vodacom’s Cyber Intelligence Centre and CSIRT, manages risk reporting for the executive steering committee, and collaborates with global security architecture teams on strategic initiatives. His efforts include driving ISO 27001 certification, operational excellence, and enterprise-wide security awareness.
Ayanda Peta — Valterra Platinum
Ayanda Peta is a cybersecurity and cloud security leader currently serving as Head of Cybersecurity at Valterra Platinum, where he drives the organisation’s cybersecurity strategy and execution. His role builds on his tenure as Group Head of Cybersecurity at African Rainbow Minerals (ARM), where he led large-scale cybersecurity initiatives and oversaw programme implementation in a highly regulated industry environment.
Beyond corporate leadership, Peta plays a regional influence role as President and Chairperson of the Cloud Security Alliance (CSA) South Africa Chapter, advocating for secure cloud adoption and industry collaboration. He frequently contributes to the cybersecurity discourse through speaking engagements, sharing insights on emerging trends, risk management, and cloud security best practices.
Ishaaq Jacobs — Sasol
Ishaaq Jacobs serves as the global Chief Cyber Security Officer at Sasol, a major energy and chemicals company. With over two decades of experience spanning networking, application development, identity & access management, enterprise architecture, and global information management modernization, Jacobs brings a comprehensive, enterprise‑scale perspective to cyber resilience. In 2025, he was announced as a speaker at key South African security conferences, underscoring his active involvement in shaping industry discourse.
Hendrik Wiese — iMasFinance
With over 23 years of cybersecurity experience, Hendrik Wiese is the long-time CISO of iMasFinance, responsible for designing and leading enterprise-wide security strategies across a complex financial services environment. His work spans risk management, policy development, compliance, and the implementation of advanced security controls to safeguard critical assets and support organisational resilience.
Recognised as a thought leader in the industry, Wiese has frequently spoken at conferences on security trends and best practices, and has received multiple accolades, including being named one of the Top 100 CISOs by CISO Magazine. Known for promoting a strong organisational security culture, he advocates for continuous innovation and collaboration to stay ahead of emerging threats and evolving regulatory requirements.
Lineo Racoco — Coca‑Cola Beverages Africa
Lineo Racoco is named among the 2024 Cyber 50 leaders. As Group CISO for a multinational beverage company with operations across Africa and headquarters in Johannesburg, her role encompasses securing corporate operations, supply chain systems, and data infrastructure across a widely distributed, high‑volume enterprise environment. Her selection for Cyber 50 suggests recognition for leadership and cyber governance across a complex regional business footprint.
The Evolving Cybersecurity Leadership Landscape in Johannesburg
Watching the careers and initiatives of these CISOs offers insight into where cybersecurity in Johannesburg is heading. Some are shaping security cultures in higher education, balancing openness with protection. Others lead security for large, complex enterprises where resilience affects national‑scale operations. Together, they illustrate a maturing InfoSec landscape in Johannesburg, where security leadership is increasingly strategic, visible, and influential.