SANS training comes to SA
SECURITY| Aug. 30, 2012, 11:57 a.m.
Organisations are not prepared for the arrival of South Africa’s Protection of Personal Information (PoPI) Bill says a leading expert. With this in mind, globally recognised SANS training courses will be delivered in the country.
“It has been a long journey but South Africa’s first comprehensive information security and privacy legislation is at the final stages of becoming law,” comments Craig Rosewarne, Director EMEA - Africa region for the SANS Institute, “However, it is still not certain that many of the organisations that need to understand the ramifications of compliance with PoPI, in my opinion, are probably not yet ready.”
State law advisors have presented the 9th Draft of the Protection of Personal Information bill to the Committee to deliberate on a clause-by-clause basis. In short order, a potentially ‘final’ 10th version is likely to be referred to the National Assembly for a final vote then referral to the NCOP for that House’s approval.
“We are starting to have some interesting discussions with government departments, large private enterprises and consultants as to what they need to do to prepare themselves for PoPI which is probably less than a year away,” comments Rosewarne, “Information privacy is not just a regulatory issue but the arrival of the new law has accelerated the demand for training and certification and our upcoming event is in part a reaction to these specific drivers.”
SANS will be running its first full training conference in South Africa this October at the Radisson Blu Gautrain Hotel in Johannesburg. The programme will include courses covering essential security best practice, incident handling and computer forensics.
Of particular interest in relation to PoPI is the SANS Security 504: Hacker Techniques, Exploits & Incident Handling course. Taught by highly experienced SANS Certified Instructor James Tarala, an expert practitioner who has dealt with high profile incidents across the world; the six day course is aimed at helping information security professionals understand attackers' tactics and design a comprehensive incident handling plan. This plan includes the legal issues associated with responding to computer attacks, including employee monitoring, working with law enforcement, and handling evidence.
“We have negotiated a discount for government employees and members of the Information Security Group of Africa who wish to attend any of the courses as a further incentive to kick start the process,” explains Rosewarne, “PoPI is coming and organisations need to get ready sooner rather than later as the potential reputation damage and fines for breaches are significant.”
MORE SECURITY NEWS
Safe Deposit: Defeating cyber-attacks against banksWith online heists once again hitting the headlines, how should banks and their customers protect themselves against similar attacks? Read More
Large organisations gear up to address aggressive cyber-security business disruption attacksAlthough the frequency of a cyber-security attack on a large scale is low, by 2018, 40 per cent of large organisations will have formal plans to address aggressive cyber-security business disruption attacks, up from none this year, says Gartner. Read More
Identity and access management trends for 2015CA Technologies has identified five key trends for security and identity and access management (IAM) that will impact organisations and security professionals in 2015 as they compete in the application economy. Read More
Leading newspaper site hackedBotswana is seeing unprecedented cases of internet hacking with one of the latest attacks targeting one of the country’s leading private newspapers, Mmegi. Read More
Senegal hit by wave of cyber attacksSenegal has been hit by a wave of hackings in the past two weeks, two of which hit the popular news website Seneweb.com and ADIE. Read More
Cyber attacks may get more virulent, Cisco, Kaspersky warnCyber attackers are using more subtle methods to infiltrate corporate networks with the aim of stealing vital information or simply causing mayhem. This is according Kaspersky Lab and Cisco, who say IT security experts should up their game in educating users how to ward off potential attackers. Read More
SIM box task team steps up successes with help from ICT firmGhana’s efforts to crack down on SIM boxing fraud have been given a boost by the efforts of Subah Infosolutions Ghana Limited, which now partners with the authorities in the fight against this crime. Read More
Software vulnerability led to Ghana govt site hackA software vulnerability and failure to update software led to the hacking of some websites on the government of Ghana’s official portal. Read More
CBN issues directive on two factor authentication for internal banking processesThe Central Bank of Nigeria has issued a directive requiring all deposit money banks (DMBs) to implement two factor authentication for internal processes this year. Read More
SA: 57% could not recover money stolen in online fraudA recent survey conducted by Kaspersky Lab and B2B International found that more than half of those respondents in South Africa who lost money in fraudulent online transactions did not get all – or sometimes any – of their funds back. Read More
FEATURED STORY2bn priced out of internet access
A new report from the Alliance for Affordable Internet shows that the price of broadband remains prohibitive for billions in developing and emerging countries, with women and rural dwellers hardest hit.
BEST READ NEWS
IN DEPTHKenya’s digital TV battle hots up
Kenya’s journey to Digital TV broadcasting took a new turn this week, when the Communication Authority of Kenya (CAK) accused three local media firms of intent to disrupt the process.