Enable job alerts via email!
Manager in Cyber Forensic and Response
KPMG South Africa
Johannesburg
On-site
ZAR 700 000 - 900 000
Full time
Yesterday
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading consulting firm in Johannesburg is seeking a Manager in Cyber Forensic and Response to manage secure and efficient forensic infrastructure on Azure. The ideal candidate should have 4–8 years of experience in IT/security operations and at least 3 years managing Azure environments. Relevant Azure certifications and a degree in IT or related fields are preferred. This role is crucial for supporting incident response teams and ensuring compliance with security standards.
Qualifications
- B.Sc. or M.Sc. in IT, Computer Science, Cybersecurity, or related field is required.
- 4-8 years experience in IT/security operations, with 3+ years managing Azure environments.
- Relevant certifications in Microsoft Azure and forensic examination are preferred.
Responsibilities
- Manage cloud-based forensic infrastructure on Microsoft Azure.
- Administer forensic systems hosted on Azure for case management and data storage.
- Coordinate internal IT for connectivity and resilience of forensic systems.
- Evaluate new forensic tools within the Azure ecosystem.
Skills
Azure services expertise
KQL proficiency
PowerShell skills
Python knowledge
Understanding forensic workflows
Knowledge of compliance frameworks
Education
B.Sc. or M.Sc. in Information Technology
Tools
Azure Solutions Architect Expert certifications
Microsoft Certified: Azure Administrator Associate
Microsoft Certified: Azure Security Engineer Associate
GIAC Certified Forensic Examiner
Job description
Job title : Manager in Cyber Forensic and Response
Job Location : Gauteng, Johannesburg
Deadline : January 05, 2026
Quick Recommended Links
- Jobs by Location
- Job by industries
Job Purpose
Manage and maintain the cloud-based forensic and investigation infrastructure hosted on Microsoft Azure, ensuring secure, reliable, and efficient operation of digital forensics, data analytics, and evidence management platforms.
Responsibilities
- Administer and maintain all forensic and investigation systems hosted on Azure — including case management, data storage, analytics environments, and automation pipelines.
- Design and manage Azure-based forensic environments, such as isolated investigation VMs, Azure Sentinel workspaces, and secure evidence vaults.
- Support forensic and incident response teams with data ingestion, extraction, and queries from diverse sources (Azure logs, O365, endpoints, and third-party integrations).
- Automate data collection, enrichment, and correlation across Azure services using Logic Apps, PowerShell, and Azure Functions.
- Implement and enforce role-based access control (RBAC) and ensure compliance with evidence handling, retention, and privacy standards.
- Knowledge of configurations relating to RAG, Agentic AI and document analyser, Azure AI etc.
- Monitor and optimize Azure resource performance, cost, and security posture for forensic workloads.
- Coordinate with internal IT and security teams to maintain connectivity, patching, and resilience of forensic systems.
- Evaluate and integrate new forensic and data management tools within the Azure ecosystem to enhance investigative capabilities.
- Manage the Azure environment used by front end investigation teams.
Qualifications
Education
- B.Sc. or M.Sc. in Information Technology, Computer Science, Cybersecurity, or related field.
Certifications (Preferred)
- Microsoft Certified : Azure Administrator Associate (AZ-104)
- Microsoft Certified : Azure Security Engineer Associate (AZ-500)
- Azure Solutions Architect Expert (AZ-305)
- GIAC Certified Forensic Examiner (GCFE) or CHFI
- Splunk / Kusto Query Language (KQL) proficiency
Experience
- 4–8 years in IT or security operations, with 3+ years managing Azure environments for security, data analytics, or forensic purposes.
Skills
- Expert in Azure services such as Sentinel, Log Analytics, Defender for Cloud, Blob Storage, Key Vault, Logic Apps, RAG, Document Analyser and Azure Automation.
- Knowledge of proficiency in KQL, PowerShell, and Python for data extraction and automation.
- Understanding of forensic workflows, evidence integrity, and digital investigation processes.
- Knowledge of data retention, encryption, and compliance frameworks.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!