Developing a cyber threat intelligence sharing platform for South African organisations

Mutemwa, Muyowa; Mtsweni, Jabu; Mkhonto, Njabulo

doi:10.1109/ictas.2017.7920657

Cited by 25 publications

(13 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Perhaps when the CIPA regulations are gazetted, the roles, responsibilities, and accountability of different parties will be defined to also include cyber resilience. As argued by Mutemwa [66], a good cybersecurity strategy should also include cyber resilience in addition to cyber defence policies and capabilities. A cyber resilience strategy helps shift from a retroactive to a more proactive approach [95].…”

Section: Discussionmentioning

confidence: 99%

“…The domestic stakeholders relevant to the national cybersecurity endeavours as reviewed in Appendix A are as follows: The key national and domestic stakeholders as defined in the NCPF can be represented, as shown in Figure 1. As shown in Figure 1 and delineated in the NCPF, the key organs of state that play a critical role in the implementation of the cybersecurity strategy [65] are dominated by the Justice, Crime Prevention and Security (JCPS) cluster [66]. According to the Government of South Africa [67] All other organs of state, including but not limited to those listed above, are required to align their cybersecurity and Information and Communications Technology (ICT) policies and practices with the NCPF [65].…”

Section: National Cybersecurity Stakeholdersmentioning

confidence: 99%

See 1 more Smart Citation

Cybersecurity Policy and the Legislative Context of the Water and Wastewater Sector in South Africa

Malatji

Solms

2020

Sustainability

View full text Add to dashboard Cite

The water and wastewater sector is an important lifeline upon which other economic sectors depend. Securing the sector’s critical infrastructure is therefore important for any country’s economy. Like many other nations, South Africa has an overarching national cybersecurity strategy aimed at addressing cyber terrorism, cybercriminal activities, cyber vandalism, and cyber sabotage. The aim of this study is to contextualise the water and wastewater sector’s cybersecurity responsibilities within the national cybersecurity legislative and policy environment. This is achieved by conducting a detailed analysis of the international, national and sector cybersecurity stakeholders; legislation and policies; and challenges pertaining to the protection of the water and wastewater sector. The study found some concerning challenges and improvement gaps regarding the complex manner in which the national government is implementing the cybersecurity strategy. The study also found that, along with the National Cybersecurity Policy Framework (the national cybersecurity strategy of South Africa), the Electronic Communications and Transactions Act, Critical Infrastructure Protection Act, and other supporting legislation and policies make provision for the water and wastewater sector’s computer security incidents response team to be established without the need to propose any new laws or amend existing ones. This is conducive for the immediate development of the sector-specific cybersecurity governance framework and resilience strategy to protect the water and wastewater assets.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: National Cybersecurity Stakeholdersmentioning

confidence: 99%

Cybersecurity Policy and the Legislative Context of the Water and Wastewater Sector in South Africa

Malatji

Solms

2020

Sustainability

View full text Add to dashboard Cite

show abstract

“…[1] Cyber crime atau kejahatan siber marak terjadi terutama pada website yang di kelola oleh Pemerintah [2] (kementrian, lembaga maupun pemerintah daerah/kota) termasuk website milik Pemerintah DKI Jakarta, adapun aksi pegerusakan ataupun Hacking biasanya dikarenakan ketidak puasan sekelompok golongan, uji coba kerentanan sistem keamanan atau bisa juga dikarenakan isu politik yang menimbulkan marak terjadi kejahatan siber (Cyber Crime) dan web tidak aman. [3] Dengan belum adanya pengelolaan pusat layanan keamanan informasi (PUSDALOPS KAMI) seperti Security Awareness, pencegahan, konsultasi, mitigasi dan layanan kemanan informasi lainnya.Serangan dunia maya terus meningkat komplektifitas dan frekuensi berbanding lurus dengan jumlah pertumbuhan perangkat teknologi informasi dan komunikasi yang terhubung ke internet berdampak negatif [4] pada masyarakat, pemerintah dan bisnis sangat merugikan terkait keamanan dan pertahanan nasional khususnya roda pemerintahan daerah provinsi DKI Jakarta. Badan Standarisasi Nasional menetapkan SNI ISO/IEC 71: sebagai standar nasional dalam teknologi dan keamanan informasi serta manajemen keamanan informasi Badan Siber dan Sandi Negara (BSSN) mengeluarkan aplikasi yang digunakan sebagai alat bantu untuk menganalisa dan mengevaluasi tingkat kesiapan penerapan SNI ISO/IEC 27001:2013 yaitu indeks KAMI (Keamanan Informasi).…”

Section: Pendahuluanunclassified

Pembangunan Pusat Pengendalian Operasional Keamanan Informasi (Pusdalops Kami) guna Meningkatkan Pelayanan E-Gov dari Ancaman Kejahatan Siber

Yuswanto

Wibowo

2021

FORMAT

View full text Add to dashboard Cite

Isu strategis pengelolaan keamanan informasi pada layanan e-Government di Pemprov DKI Jakarta saat ini merupakan hal terpenting seiring dengan kejahatan siber/cyber crime yang semakin meningkat, oleh karena itu diperlukan Sistem Informasi Jaringan dan Keamanan Informasi (SIJAKI). Tujuan dari inovasi ini adalah membangun web layanan informasi melalui SIJAKI, IT Security Operation Centre (SOC) atau Pusat Pengendalian Operasi Keamanan Informasi (PUSDALOPS KAMI) dan Live Chat/open ticket untuk media konsultasi terkait keamanan informasi. Untuk mewujudkan tujuan inovasi dilakukan beberapa tahapan jangka pendek antara lain: pembentukan tim efektif, pengumpulan data, pembuatan sistem, uji coba sistem, implementasi, pelatihan dan monitoring evaluasi pada proyek perubahan yang sudah di lakukan. SIJAKI yang telah dilaksanakan dan diimplemetasikan berhasil menekan jumlah peretasan website layanan e-Government milik Pemprov DKI Jakarta dan kejahatan siber lainnya sehingga layanan e-Government yang diberikan menjadi aman, lancar dan terjaga kerahasiannya

show abstract

“…However, such tools are expensive and only a limited number of organizations can afford to invest in such tools; often smaller organizations are not able to participate in the threat intelligence market [9]. Time and effort to implement are some of the leading challenges experienced with this function [2,12,18].…”

Section: Challenges For the Adoption Of A Cti Function Adoptionmentioning

confidence: 99%

Exploring the Value of a Cyber Threat Intelligence Function in an Organization

Berndt¹,

Ophoff²

2020

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

Organizations can struggle to cope with the rapidly advancing threat landscape. A cyber threat intelligence (CTI) function broadly aims to understand how threats operate to better protect the organization from future attacks. This seems like a natural step to take in hardening security. However, CTI is understood and experienced differently across organizations. To explore the value of this function this study used a qualitative method, guided by the Socio-Technical Framework, to understand how the CTI function is interpreted by organizations in South Africa. Thematic analysis was used to provide an in-depth view of how each organization implemented its CTI function and what benefits and challenges they've experienced. Findings show that CTI tasks tend to be more manual and resource-intensive, but these challenges can be resolved through automation. It was noted that only larger organizations seem to have the budget and resources available to implement the CTI function, whereas smaller organizations put more reliance on tools. It was observed that skills for the CTI function can be learned on the job, but that formal education provides a good foundation. The findings illustrate the value the CTI function can provide an organization but also the challenges, thereby enabling other organizations to improve preparation before such a function is adopted.

show abstract

Developing a cyber threat intelligence sharing platform for South African organisations

Cited by 25 publications

References 1 publication

Cybersecurity Policy and the Legislative Context of the Water and Wastewater Sector in South Africa

Cybersecurity Policy and the Legislative Context of the Water and Wastewater Sector in South Africa

Pembangunan Pusat Pengendalian Operasional Keamanan Informasi (Pusdalops Kami) guna Meningkatkan Pelayanan E-Gov dari Ancaman Kejahatan Siber

Exploring the Value of a Cyber Threat Intelligence Function in an Organization

Contact Info

Product

Resources

About