SANS training comes to SA
SECURITY| Aug. 30, 2012, 11:57 a.m.
Organisations are not prepared for the arrival of South Africa’s Protection of Personal Information (PoPI) Bill says a leading expert. With this in mind, globally recognised SANS training courses will be delivered in the country.
“It has been a long journey but South Africa’s first comprehensive information security and privacy legislation is at the final stages of becoming law,” comments Craig Rosewarne, Director EMEA - Africa region for the SANS Institute, “However, it is still not certain that many of the organisations that need to understand the ramifications of compliance with PoPI, in my opinion, are probably not yet ready.”
State law advisors have presented the 9th Draft of the Protection of Personal Information bill to the Committee to deliberate on a clause-by-clause basis. In short order, a potentially ‘final’ 10th version is likely to be referred to the National Assembly for a final vote then referral to the NCOP for that House’s approval.
“We are starting to have some interesting discussions with government departments, large private enterprises and consultants as to what they need to do to prepare themselves for PoPI which is probably less than a year away,” comments Rosewarne, “Information privacy is not just a regulatory issue but the arrival of the new law has accelerated the demand for training and certification and our upcoming event is in part a reaction to these specific drivers.”
SANS will be running its first full training conference in South Africa this October at the Radisson Blu Gautrain Hotel in Johannesburg. The programme will include courses covering essential security best practice, incident handling and computer forensics.
Of particular interest in relation to PoPI is the SANS Security 504: Hacker Techniques, Exploits & Incident Handling course. Taught by highly experienced SANS Certified Instructor James Tarala, an expert practitioner who has dealt with high profile incidents across the world; the six day course is aimed at helping information security professionals understand attackers' tactics and design a comprehensive incident handling plan. This plan includes the legal issues associated with responding to computer attacks, including employee monitoring, working with law enforcement, and handling evidence.
“We have negotiated a discount for government employees and members of the Information Security Group of Africa who wish to attend any of the courses as a further incentive to kick start the process,” explains Rosewarne, “PoPI is coming and organisations need to get ready sooner rather than later as the potential reputation damage and fines for breaches are significant.”
MORE SECURITY NEWS
F5 introduces standalone security products to defend against targeted attacksF5 DDoS Hybrid Defender provides superior infrastructure protection by combining multilayered DDoS defence across network, session, and application layers. Read More
Ethical Hacking students can’t get a heck of a jobBotswana ethical hacking students report that they are failing to break into the local job market. Read More
Pokémon GO: Sophos warns against malicious copycatsResearchers at IT security company Sophos have warned mobile users to be cautious when downloading augmented reality (AR) mobile games. Read More
New PCI multifactor authentication rules: Is it too late?The PCI (Payment Card Industry) Security Council has extended its requirements for multi-factor authentication to anyone who has access to credit card data. Read More
Web apps, a leading cause of security breachesWeb applications are the leading cause of security incidents for financial services, according to the 2016 Verizon Data Breach Investigation Report; this is up from 31 percent from last year’s report. Read More
Analyst firm Ovum publishes SWOT analysis of Arbor Networks Spectrum v2.1Arbor Networks has announced that leading global telecoms analyst firm, Ovum, had published a strengths, weaknesses, opportunities and threats (SWOT) analysis of version 2.1 of Arbor Networks Spectrum. Read More
New RSA Via solution innovations strengthen identity assurance and governanceRSA, The Security Division of EMC, has announced new, innovative identity assurance and identity governance capabilities in RSA Via, designed to help organisations effectively balance security and user convenience as they assure identities and better govern and manage privileged access. Read More
Study affirms the DDoS challengeThe threat of DDoS is becoming ever more ubiquitous and attackers continue to ramp up in both scale and frequency. Read More
The sum of details at hand equals the quality of a cyber threat investigationJust like any detective investigating a crime scene, security analysts need to be able to access all the information pertaining to any threat incident they are investigating. Read More
FEATURED STORYFirst-ever Africa Barclays Accelerator programme concludes
Ten fintech companies have concluded the first-ever Barclays Accelerator, powered by Techstars in Africa.
BEST READ NEWS
IN DEPTHEthical Hacking students can’t get a heck of a job
Botswana ethical hacking students report that they are failing to break into the local job market.