Keeping information systems secure is a complex calculus in today’s fast-changing landscape. Malicious attacks aren’t just perpetrated by disgruntled employees or random hackers. State-sponsored or supported attacks are a constant threat to many countries, companies and individuals.
Cybercrime is difficult to contain, partly because cryptocurrencies — as opposed to normal currencies — are used to pay for ransomware and other attack tools. To protect against these modern-day threats, small and large organisations must always remain vigilant.
Vigilance requires a regular audit of information systems, the ecosystem in which they operate and a periodic review of potential threats and vulnerabilities that attackers could exploit.
Cybercrime
Threats like these are not hypothetical or imagined; they are real. Cybercrime costs Africa $4 billion a year, according to conservative estimates. Losing $4 billion to cybercrime is a significant loss for a continent with an estimated GDP of $3 trillion.
There are more costs to cybercrime than just financial ones. An organisation’s reputation can be damaged, stolen data may be too costly to recover, and so is compromised intellectual property. Additionally, when critical systems, such as national election systems, are infiltrated or manipulated, or when healthcare systems are laced with malware that causes havoc for health workers, it can pose a national crisis.
The surest way to know what lies under the hood of information systems is by carrying out regular cybersecurity audits. Cybersecurity audits test compliance with an organisation’s security policies, security safeguards and standards that an organisation has put in place.
The audit exercise is comprehensive, reviewing an organisation’s IT infrastructure. Audits ascertain that appropriate policies and procedures have been implemented and are working effectively. It helps the management to understand the security and confidentiality of the information within the system, and whether the data is accurate, reliable and timely.
Malicious actors
This process informs the management of any weaknesses that could open the doors for malicious actors to gain access to sensitive information. It highlights poor internal practices that might result in employees accidentally or negligently breaching sensitive information; and can point out how an information system and allied processes are compromised to aid fraud.
Armed with audit findings, the management can embark on an exercise to seal any loopholes and build a moat around its critical IT systems.
It’s good practice that, with increased reliance on information technology, organisations conduct cybersecurity audits annually. More frequent audits may be necessary depending on the organisation’s size, the criticality of its functions and available resources.
Organisations should also conduct a cybersecurity audit whenever they make significant operational changes, such as migrating to a new system or when different systems are integrated after organisations merge.
Notably, every organisation needs a competent, relevant and effective information systems audit function to verify, report and offer guidance about the efficient functioning of the cybersecurity function.
Share this news
This Year’s Most Read News Stories
Tanzania: Exim to Raise Fund for Mental Health Facilities Upgrades
EXIM Bank to raise 300m/- over the next three years for financing essential services and infrastructure upgrades in mental health facilities.
The bank’s Head of Marketing and Communications Stanley Kafu unveiled this when introducing Exim Bima Festival 2024 as a platform for bringing together individuals, organisations and various sectors for raising the funds.
“Exim’s initiative aligns with the government’s broader goals to ensure that every citizen has access to quality healthcare, including mental health services,” he said.
The initiative, which is one of the events for celebrating the bank’s 27th anniversary is scheduled for Wednesday this week in Dar es Salaam.
Mr Kafu highlights that this year’s festival is not only about raising awareness of the importance of insurance in the society but also focuses on enhancing access to mental health services and improving the overall well-being of the nation.
Statistics from the Ministry of Health shows a staggering 82 per cent increase in mental health cases over the past decade.
Mental cases have risen from 386,358 in 2012 to 2,102,726 in 2021, making the need for mental health services more urgent than ever.
ALSO READ: NBC’s Saving Campaign Empowers Customers Nationwide
Unfortunately, the country’s ability to address this growing challenge is hindered by a shortage of mental health professionals, infrastructure, medical equipment and essential medication.
For example, out of the 28 regions in the country, only five have facilities that provide adequate mental health services.
The most affected group is the youth aged 15 to 39, who represent the nation’s workforce, underscoring the need for intensified efforts to safeguard this generation for Tanzania’s future well-being and development.
Mr Kafu said by improving mental health services, Exim aims to contribute to the creation of a network of communities that can access care quickly and affordably.
Exim Insurance Department Manager Tike Mwakyoma said they are appreciating the support from partners in the insurance industry, who have stood by them since the last festival.
“Let’s continue this unity for the development of all Tanzanians and our nation as a whole,” the manager said.
Source: allafrica.com
Muslims in Pemba conduct special prayer against ZAA decision
ZANZIBAR: More than 200 Muslims in Vitongoji Village, South Pemba Region over the weekend conducted a special prayer to condemn the Zanzibar Airports Authority (ZAA) move to appoint DNATA as the sole ground handler in Terminal III of the International Airport of Zanzibar. Abeid Amani Karume.Continue Reading
Fast Satellite Internet in Kenya by June
Elon Musk’s satellite Internet firm Starlink announced it will launch in Kenya in the second quarter of this year.Continue Reading
