The 2012/3 SA Cyber Threat Barometer. Craig Rosewarne

Transcription

1 The 2012/3 SA Cyber Threat Barometer Craig Rosewarne

2 An improved cyber security framework for South Africa Research - Initiatives

3 South Africa (Pty) Ltd Stakeholder Risk Management / Alignment to business objectives

4 Key programmes:

5 Information Technology Infrastructure

6 Top Internet Countries In Africa 12th highest penetration % in Africa (Dec 2011)

7 However The Internet is a tool that can be used for both good and evil...

8 Its also unfortunately about this! 341 organised crime groups are known to be operating in SA (11th United Nations Congress of crime prevention and criminal justice)

9 And this Corruption facilitates organised crime & is integral to every type of criminal activity surveyed (Institute for Security Studies)

10 Corruption s price tag R25-billion of government s annual procurement budget alone was lost to corruption etc. (Willie Hofmeyr, prior head of Special Investigating Unit - October 2011 )

11 And closer to the topic

12 And closer to the topic

13 But most importantly

14 Take this lollipop!

15 How are we dealing with the cyber threat?

16 Implementing a National Cyber Security Framework Quality Risk Management Training? CSIRT Compliance Critical resources Technology explosion Policy / Standards Regulation of Inception of Communications? Vulnerability ECT management Act?? Constitution Requirements??? Budgets Promotion of Access to Information? Process Staff retention Legislative Review Standards National priorities Corporate Governance Threat Management? Strategy? Partnerships

17 2012 SA Cyber Threat Barometer International Africa South Africa Government Financial Telecommunications Educational & Industry bodies Specialist review / Steering committee

18 A 5 minute walkthrough of the report

19 KEY ISSUES IDENTIFIED From Stakeholder Interviews

20 Summary: PREVENT DETECT Vulnerability & Threat management (Eg Log monitoring / Secure coding) Skills Technical / Constable / Prosecutors Awareness Weak fraud detection mechanisms No National CSIRT Cross-industry collaboration INVESTIGATE Improved /streamlined processes needed Smaller cases neglected easy victims Lack of cybercrime stats / cases reported PROSECUTE ECT Act needs updating Dilution of cybercrime cases with common law

21 Key initiatives proposed

22 SA Cyber / Information Security Academy Red Team Entry Baseline Elite Skills assessment Blue Team Program Entry Minimum skills Specialist skills Expert skills

23 NetWars: How would your security team handle a real attack? Test the experience and skills of your current security team (or new hires) and assess areas where further training is needed. Won White House award for the most important innovation in security education

24 Defining specific skill areas for SA

25 Key measurement areas

26 Security Awareness

27 We need serious innovation in this area to grab peoples attention!

28 National CSIRT / Cyber Threat Command Centre (Cybercom) (Concept) Capabilities Cyber Threat early warning Cyber Forensics Lab Incident Management Training & Awareness Research Business & Information Security Communities Universities Assist Industry Bodies & Government Training, Awareness & Research Partnerships

29 BRINGING COMMUNITIES ACROSS AFRICA TOGETHER Wolfpack Community Regular interaction with professionals via , web, social media & events Media Partnerships Online African IT Media company with IT commuity European Security magazine publication with EMEA community Strategic Partnerships: ISG Africa community SANS Africa community SACCI Business community Partnership Community Reciprocal partnership agreements with organisations across Africa TOTAL Community African IT & Information Security Stakeholders

30 Africa community information security magazine

31 Next steps? Call to action: SA 2012 Cyber Threat Barometer report review Get behind various initiatives underway: Training Awareness Research CSIRT

32 Respect the elders, teach the young, be loyal to the pack (Ancient wolf credo) Craig Rosewarne Office Mobile Web / /