Open to opportunities

Isheakudzwe Jonathan

@isheakudzwejonathan

Message

Cybersecurity specialist with expertise in risk assessment and compliance.

South Africa

Message

What I'm looking for

I am looking for a role that challenges me and allows for growth in cybersecurity, with a focus on risk management and compliance.

I am a seasoned cybersecurity professional with extensive experience in leading security strategies and implementing robust protection measures for digital platforms. My journey in cybersecurity has equipped me with a deep understanding of risk assessment, vulnerability management, and compliance with industry standards. I have successfully designed and implemented security frameworks aligned with ISO 27001, NIST, and GDPR, ensuring that organizations can effectively mitigate threats and safeguard their data.

Throughout my career, I have held pivotal roles, including Senior Cyber Security Specialist and Cyber Security Auditor, where I evaluated security controls, conducted penetration tests, and managed security incident responses. My collaborative approach with DevSecOps teams has allowed me to integrate security into the software development lifecycle, enhancing the overall security posture of the organizations I have worked with. I am passionate about driving cyber resilience initiatives and educating stakeholders on best practices to foster a culture of security awareness.

Experience

Work history, roles, and key accomplishments

Snr Cyber Security Specialist

Vodacom

Jul 2024 - Mar 2025 (8 months)

Led the cybersecurity strategy for Digital Lifestyle Services, ensuring robust protection for digital platforms, applications, and customer data. Collaborated with DevSecOps teams to integrate security into the software development lifecycle and cloud-based applications, while also managing security compliance and governance.

Snr Cyber Security Auditor

Auditor-General of South Africa (AGSA)

Apr 2023 - Apr 2024 (1 year)

Evaluated an organization's security controls, policies, and procedures to identify vulnerabilities and gaps in the security infrastructure. Conducted vulnerability assessments and penetration tests, and reviewed security documentation to ensure alignment with industry standards.

Security Auditing Vulnerability Assessment Infrastructure Security Penetration Testing System Configuration

CyberSecurity Specialist

Vodacom

Jan 2022 - Dec 2023 (1 year 11 months)

Oversaw the selection, implementation, and management of security tools and technologies, including antivirus, intrusion detection systems, and SIEM systems. Integrated Microsoft Sentinel with other security tools to provide a holistic view of the security posture, designing custom detection rules and correlations.

Intrusion Detection Systems SIEM Privacy And Assurance Azure Security Center Security Posture

Cyber Security Risk Analyst

Roan Security

Jan 2020 - Dec 2022 (2 years 11 months)

Conducted comprehensive risk assessments to identify and analyze potential security threats and vulnerabilities within IT environments. Performed regular vulnerability assessments and scans, and evaluated the effectiveness of existing security controls.

Risk Assessment Vulnerability Assessment IT Security Firewalls Risk Mitigation

System Security Analyst

Liquid Telecommunications

Jan 2015 - Dec 2020 (5 years 11 months)

Implemented and maintained security policies, standards, and procedures aligned with industry best practices and regulatory requirements. Identified, assessed, and prioritized security risks and vulnerabilities within the IT infrastructure and applications, while also developing and maintaining an incident response plan.

Security Policies Industry Best Practices Regulatory Compliance Vulnerability Assessment Application Security Incident Response Security Awareness Phishing Penetration Testing

Education

Degrees, certifications, and relevant coursework

EC Council

Certified Ethical Hacker (CEH), Cybersecurity

Completed certifications in Certified Ethical Hacker (CEH), Deep Web and Cybersecurity, and DevSecOps. Gained expertise in Cloud Security, Ethical Hacking Essentials (EHE), Cisco Certified CyberOps Associate (200-201), Digital Forensics Essentials (DFE), and Network Defense Essentials (NDE).

Trust Academy

Diploma, Management Information Systems

Obtained a Diploma in Management Information Systems (MIS).

Pluralsight

Certified Cloud Security Professional (CCSP), Cloud Security

Achieved certifications including Certified Cloud Security Professional (CCSP), Systems Security Certified Practitioner (SSCP), and Certified Information Security Manager (CISM). Also completed AWS Cloud Security training.

Oracle Cloud Infrastructure Architect Associate, Cloud Infrastructure and Networking

Completed certifications in Oracle Cloud Infrastructure Architect Associate, Oracle Cloud Infrastructure Architect Professional, and CompTIA Network+ (N10-007).

Alison

Linux Network Administrator, Network Administration and Security

Earned certifications as a Linux Network Administrator, Certified Information Systems Security Professional (CISSP), CompTIA Security +, CompTIA Cloud + Intermediate, and CompTIA Cloud + Advanced.

Cybrary

Corporate Cybersecurity Management, Cybersecurity Management and Operations

Completed training in Corporate Cybersecurity Management and Chief Information Security Officer (CISO) roles. Gained expertise in Splunk, Network Performance Monitoring with Splunk Network Explorer, Data and Tools for Defense Analysts, and Security Operations and the Defense Analyst.