SANS training comes to SA
SECURITY| Aug. 30, 2012, 11:57 a.m.
Organisations are not prepared for the arrival of South Africa’s Protection of Personal Information (PoPI) Bill says a leading expert. With this in mind, globally recognised SANS training courses will be delivered in the country.
“It has been a long journey but South Africa’s first comprehensive information security and privacy legislation is at the final stages of becoming law,” comments Craig Rosewarne, Director EMEA - Africa region for the SANS Institute, “However, it is still not certain that many of the organisations that need to understand the ramifications of compliance with PoPI, in my opinion, are probably not yet ready.”
State law advisors have presented the 9th Draft of the Protection of Personal Information bill to the Committee to deliberate on a clause-by-clause basis. In short order, a potentially ‘final’ 10th version is likely to be referred to the National Assembly for a final vote then referral to the NCOP for that House’s approval.
“We are starting to have some interesting discussions with government departments, large private enterprises and consultants as to what they need to do to prepare themselves for PoPI which is probably less than a year away,” comments Rosewarne, “Information privacy is not just a regulatory issue but the arrival of the new law has accelerated the demand for training and certification and our upcoming event is in part a reaction to these specific drivers.”
SANS will be running its first full training conference in South Africa this October at the Radisson Blu Gautrain Hotel in Johannesburg. The programme will include courses covering essential security best practice, incident handling and computer forensics.
Of particular interest in relation to PoPI is the SANS Security 504: Hacker Techniques, Exploits & Incident Handling course. Taught by highly experienced SANS Certified Instructor James Tarala, an expert practitioner who has dealt with high profile incidents across the world; the six day course is aimed at helping information security professionals understand attackers' tactics and design a comprehensive incident handling plan. This plan includes the legal issues associated with responding to computer attacks, including employee monitoring, working with law enforcement, and handling evidence.
“We have negotiated a discount for government employees and members of the Information Security Group of Africa who wish to attend any of the courses as a further incentive to kick start the process,” explains Rosewarne, “PoPI is coming and organisations need to get ready sooner rather than later as the potential reputation damage and fines for breaches are significant.”
MORE SECURITY NEWS
Kaspersky Lab: Emerging Threats in the APT World - Predictions for 2015Kaspersky Lab experts have released a list of the top emerging threats in the APT world. Read More
“Visibility Void” represents potential threat to enterprisesCompanies must stay on top of a growing pool of cyber-threats says Andrew Potgieter, security solutions director at Westcon. Read More
The hackers’ bounty - how much do cybercriminals make from innocent users?Cybercriminals could be raking in profits 20 times greater than the cost of their attacks, according to figures compiled by Kaspersky Lab experts. Read More
Regin: a malicious platform capable of spying on GSM networksKaspersky Lab’s Global Research and Analysis Team has published its research on Regin – the first cyber-attack platform known to penetrate and monitor GSM networks in addition to other “standard” spying tasks. Read More
Security a top priority as Africa moves to LTESecuring the network is a top priority for telcos and carriers as LTE becomes increasingly mainstream across Africa, says Fortinet. Read More
Barclays ropes in ICT taskforce in anti-fraud warBarclays Bank of Botswana (BBB) has roped in experts in the field of Information Technology and cybercrime to give weight to its annual fraud awareness month. Read More
Kaspersky Lab: Most businesses use third-party services to manage virtualisationLess than one-third of businesses keep their virtualisation servers on-premises and managed entirely by their own internal IT staff, according to a Kaspersky Lab survey of 3,900 IT professionals worldwide. Read More
Cisco: Employee complacency increases riskResearch released by Cisco shows that critical company data is at risk in South Africa as a result of organisations focusing IT security policies and resources more on external threats and not enough on the threat from within. Read More
FEATURED STORYPWC: Optimism abounds but a bumpy journey ahead for some
PwC’s ‘Capital Projects & infrastructure in East Africa, Southern Africa and West Africa,’ report says infrastructure spend in the region is projected to reach $180bn per annum by 2025.
BEST READ NEWS
IN DEPTHAfrica lags on digital migration
Only three African countries have so far completed the digital migration process, and serious issues are hampering the migration in other nations.