Cybersecurity Tenders in South Africa: Technical Requirements and Certification Standards (2026) — May 2026 Update

By Kabelo Molefe

As the cybersecurity landscape in South Africa continues to evolve, Security contractors in Gauteng must remain vigilant in meeting the technical requirements and certification standards demanded by tendering bodies. In 2026, the regulatory environment governing Security services is more complex than ever, with multiple Acts and regulatory bodies exerting influence over the industry. This update provides a comprehensive guide to the compliance and regulatory layer, ensuring that Security suppliers in Gauteng are equipped to navigate the intricacies of the tendering process.

The Regulatory Framework

The Public-Private Partnership Financial Assistance Act (PPPFA) of 2005 is a key piece of legislation governing public procurement in South Africa. The Act requires all bidders to comply with the Broad-Based Black Economic Empowerment (BBBEE) Act of 2003, which aims to promote economic transformation and redress the imbalances of the past. In addition, the Construction Industry Development Board (CIDB) Act of 2000 regulates the construction industry, including Security services.

The Provincial Treasury in Gauteng, in line with the Municipal Finance Management Act (MFMA) of 2003, also plays a significant role in shaping the regulatory environment. The Province's Treasury is responsible for ensuring that all Security suppliers comply with the PFMA and MFMA, which regulate public financial management and control.

What Security Suppliers in Gauteng Must Have in Place

To comply with the regulatory requirements, Security suppliers in Gauteng must have the following in place:

• PSIRA Registration: All Security companies and guards must be registered with the Private Security Industry Regulatory Authority (PSIRA). The registration must be current for the company and every deployed guard. A single expired guard certificate can void the entire contract. Verify at psira.co.za
  before submitting.
• CSD Registration: Security suppliers must register with the Central Supplier Database (CSD). The CSD is a database of all registered suppliers in South Africa, and registration is mandatory for all suppliers.
• BBBEE Certification: Security suppliers must comply with the BBBEE Act and obtain a BBBEE certificate. The certificate must be issued by a recognized verification agency and must be current.
• SARS TCS Registration: Security suppliers must register for a Tax Compliance Status (TCS) with the South African Revenue Service (SARS). The TCS is a unique identification number assigned to each supplier.
• COIDA Letter of Good Standing: Security suppliers must obtain a letter of good standing from the Compensation Fund. The letter must be issued by the Fund and must be current.

Step-by-Step Compliance Approach

To ensure compliance with the regulatory requirements, follow these steps:

1. Verify PSIRA Registration: Verify the PSIRA registration of the company and all deployed guards at psira.co.za
   before submitting any tenders.
2. Register with CSD: Register with the Central Supplier Database (CSD) and ensure that your registration is current.
3. Obtain BBBEE Certification: Obtain a BBBEE certificate from a recognized verification agency and ensure that it is current.
4. Register for SARS TCS: Register for a Tax Compliance Status (TCS) with the South African Revenue Service (SARS) and ensure that your registration is current.
5. Obtain COIDA Letter of Good Standing: Obtain a letter of good standing from the Compensation Fund and ensure that it is current.

The Most Common Compliance Failures

The most common compliance failures among Security suppliers in Gauteng include:

• SBD Form Errors: Failure to complete the Standard Bid Document (SBD) form correctly can lead to rejection of the tender.
• BBBEE Affidavit Rules: Failure to comply with the BBBEE affidavit rules can lead to rejection of the tender.
• CSD Verification: Failure to verify the CSD registration before submitting the tender can lead to rejection of the tender.
• Compulsory Briefing Session Requirements: Failure to attend the compulsory briefing session or failure to submit the required documentation can lead to rejection of the tender.

2026 Context: What Security Suppliers Should Focus On

In 2026, the government's priorities for Security suppliers in Gauteng include:

• Cybersecurity: The government is placing increased emphasis on cybersecurity, and Security suppliers must be able to demonstrate their ability to protect against cyber threats.
• Compliance: The government is increasing its focus on compliance, and Security suppliers must ensure that they are in compliance with all relevant Acts and regulations.

How Tenders-SA.org Helps

Tenders-SA.org provides a range of tools and resources to help Security suppliers in Gauteng comply with the regulatory requirements and navigate the tendering process. These include:

• AI Matching: Our AI matching technology matches Security suppliers with tenders that align with their compliance profile.
• Company Profile Builder: Our Company Profile Builder allows Security suppliers to capture their PSIRA registration (company and all guards), CSD registration, BBBEE certification, SARS TCS registration, and COIDA letter of good standing.
• Tender Alerts: Our Tender Alerts service provides Security suppliers with real-time updates on tenders that match their compliance profile.

Browse Security tenders

ICT & Smart City Analyst specializing in digital transformation and security technology for South African municipalities.