About EntropiSec

Enterprise expertise. Built for South African SMEs.

We spent two decades securing airlines, hospitality groups and financial services firms across Africa and the Middle East. Then we built something smaller businesses could actually afford.

Our Story

Cybersecurity made simple for businesses that can't afford to get it wrong

EntropiSec was founded by professionals who spent more than two decades in the trenches — securing international airlines, major hospitality groups and financial services firms across Africa and the Middle East. We saw what a properly protected organisation looks like. And we saw how few South African small businesses ever got close to that standard.

Not because they didn't care — but because enterprise-grade security always came with an enterprise-grade price tag, enterprise-grade complexity, and an enterprise-grade assumption that you had an internal IT team to manage it all. Most SMEs have neither.

So we built EntropiSec differently. We distilled everything we learned from securing large, complex organisations into a managed service that smaller businesses can actually implement, understand and afford. You get big-company expertise, without the big-company overhead.

Above all, we believe good security should empower your business — not slow it down, not confuse your staff, and not require a degree in cybersecurity to understand what's happening.

See our services Talk to us
20+
Years of enterprise security experience across Africa and the Middle East
150+
South African SMEs currently protected under managed services

"We believe every business — no matter the size — deserves enterprise-grade protection. Good security should empower your business, not slow it down."

Our Background

Industries we've secured — before we built EntropiSec

The experience behind EntropiSec comes from real-world environments where a security failure meant grounded flights, frozen transactions, or breached patient records. We've applied that discipline to SME-scale services.

Aviation & Airlines

Securing operational systems, passenger data and ground infrastructure for international airline operations across the African continent.

Hospitality Groups

End-to-end IT security for hotel groups and hospitality operations — protecting guest data, point-of-sale systems and management networks.

Financial Services

Compliance-driven security for financial institutions operating under strict regulatory frameworks across South Africa and the Middle East.

How We Work

What you can expect from us

We hold ourselves to the same standards we'd apply to a multinational client — because a breach at an SME hurts just as much as one at a corporate.

01

Proactive, not reactive

We don't wait for something to break. Continuous monitoring, patch management and threat intelligence mean we're addressing risks before they become incidents.

02

One accountable partner

No finger-pointing between your IT vendor and your security vendor. We own the whole picture — and that single point of accountability is deliberate.

03

Transparent, plain-language reporting

You don't need to speak cybersecurity. Our reporting tells you what we did, what we found and what it means for your business — in language your whole team can understand.

04

Right-sized, not oversold

We'll never sell you a service you don't need. Our recommendations are based on your actual risk profile — not on upselling opportunity.

The Team

People you can actually reach

We're a Johannesburg-based team with deep technical expertise and real-world enterprise experience. When you call, you get someone who knows your business.

MG

Mark Grunebaum

Founder & Managing Director

Over 20 years in operations, IT management and cybersecurity across aviation, hospitality and financial services in South Africa and the Middle East. TCM Security certified. Production Management and Industrial Engineering diplomas.

ES

Engineering Team

Security & Infrastructure

Certified security and infrastructure engineers with hands-on experience across Microsoft 365, endpoint security, network protection and compliance frameworks. ThreatDown (Malwarebytes) MSSP partners.

ThreatDown MSSP Partnership

EntropiSec is an official ThreatDown (Malwarebytes) Managed Security Service Provider. This means our clients get access to enterprise-grade endpoint protection at SME-appropriate pricing, with the full backing of one of the world's leading threat intelligence platforms.

Learn about our endpoint protection →

POPIA compliance is not optional — and we can help.

Every South African business handling personal data must comply with POPIA. We make that straightforward.

See POPIA services

Ready to talk to a real person about your IT?

Book a free 30-minute IT Risk Review and get a clear picture of where your business stands — no jargon, no obligation.

Book Your Free IT Risk Review See our services first