Keeping information systems secure is a complex calculus in today’s fast-changing landscape. Malicious attacks aren’t just perpetrated by disgruntled employees or random hackers. State-sponsored or supported attacks are a constant threat to many countries, companies and individuals.
Cybercrime is difficult to contain, partly because cryptocurrencies — as opposed to normal currencies — are used to pay for ransomware and other attack tools. To protect against these modern-day threats, small and large organisations must always remain vigilant.
Vigilance requires a regular audit of information systems, the ecosystem in which they operate and a periodic review of potential threats and vulnerabilities that attackers could exploit.
Cybercrime
Threats like these are not hypothetical or imagined; they are real. Cybercrime costs Africa $4 billion a year, according to conservative estimates. Losing $4 billion to cybercrime is a significant loss for a continent with an estimated GDP of $3 trillion.
There are more costs to cybercrime than just financial ones. An organisation’s reputation can be damaged, stolen data may be too costly to recover, and so is compromised intellectual property. Additionally, when critical systems, such as national election systems, are infiltrated or manipulated, or when healthcare systems are laced with malware that causes havoc for health workers, it can pose a national crisis.
The surest way to know what lies under the hood of information systems is by carrying out regular cybersecurity audits. Cybersecurity audits test compliance with an organisation’s security policies, security safeguards and standards that an organisation has put in place.
The audit exercise is comprehensive, reviewing an organisation’s IT infrastructure. Audits ascertain that appropriate policies and procedures have been implemented and are working effectively. It helps the management to understand the security and confidentiality of the information within the system, and whether the data is accurate, reliable and timely.
Malicious actors
This process informs the management of any weaknesses that could open the doors for malicious actors to gain access to sensitive information. It highlights poor internal practices that might result in employees accidentally or negligently breaching sensitive information; and can point out how an information system and allied processes are compromised to aid fraud.
Armed with audit findings, the management can embark on an exercise to seal any loopholes and build a moat around its critical IT systems.
It’s good practice that, with increased reliance on information technology, organisations conduct cybersecurity audits annually. More frequent audits may be necessary depending on the organisation’s size, the criticality of its functions and available resources.
Organisations should also conduct a cybersecurity audit whenever they make significant operational changes, such as migrating to a new system or when different systems are integrated after organisations merge.
Notably, every organisation needs a competent, relevant and effective information systems audit function to verify, report and offer guidance about the efficient functioning of the cybersecurity function.
Share this news
This Year’s Most Read News Stories
‘Pilot error’ caused Precision Air crash
Reports says prevailing poor weather led to the pilots failing to heed warning signals.Continue Reading
Africa: Rwanda Gets a Grip Of Marburg, But Mpox ‘Not Yet Under Control’
Monrovia — The Rwanda Minister of State responsible for Health, Dr. Yvan Butera, cautioned that while the country is beginning to see positive signals in its fight against the Marburg virus, the outbreak is “not yet over”. He, however, expressed hope that “we are headed in that direction”. The minister said the epidemiology trend, since the disease was first discovered in the country more than a month ago, is moving towards fewer cases.
Dr. Butera, who was giving updates during an online briefing yesterday, said in the past two weeks, only two deaths were recorded while 14 people recovered from the disease. He said Rwanda was expanding its testing capacity with 16,000 people already inoculated against the disease.
The priority right now, Butera said, is “rapid testing and detection”.
Marburg is a highly virulent disease transmitted through human-to-human contact or contact with an infected animal. The fatality rate of cases, which has varied over the period, is more than 50%, according to the World Health Organization. WHO said the highest number of new confirmed cases in Rwanda were reported in the first two weeks of the outbreak. There’s been a “sharp decline” in the last few weeks, with the country now tackling over 60 cases.
At Thursday’s briefing, a senior official of the Africa Centers for Disease Control, Dr. Ngashi Ngongo, said mpox – the other infectious disease outbreak that countries in the region are fighting – was been reported in 19 countries, with Mauritius being the latest country to confirm a case. He said although no new cases have been recorded in recent weeks in several countries where outbreaks occurred previously – including Cameroon, South Africa, Guinea, and Gabon – Uganda confirmed its first Mpox death. This, he said, is one of two fatalities reported outside Central Africa.
Dr. Ngashi revealed that there was an increase in cases in Liberia and Uganda. He said mpox cases were still on an upward trend.
“The situation is not yet under control.”
Source: allafrica.com
Tanzania’s opposition party ACT Wazalendo honours veteran politician under new policy
Unguja. Opposition party ACT Wazalendo today officially bids farewell to its former Chairman, Juma Duni Haji, also known as Babu Duni, as part of a new policy designed to honor retired senior leaders at a ceremony held at Kiembesamaki, Zanzibar.
The initiative highlights the party’s commitment to recognizing and supporting individuals who have served with dedication and integrity.
Babu Duni, who stepped down earlier this year, was succeeded by Othman Masoud, now the First Vice President of Zanzibar.
The policy aims to provide ongoing respect and support to retired leaders, ensuring their continued recognition and contribution to the party’s development.
“Recognizing their significant contributions to the development and prosperity of the party, this policy ensures that retired leaders continue to be acknowledged and respected by both the party and the community,” the policy states.
To benefit from this policy, leaders must not have left or been expelled from the party. They must have served the party with honor and dedication. The national leadership committee will determine whether a leader has fulfilled these criteria.
The policy seeks to honor retired leaders, protect their dignity, acknowledge their contributions, leverage their ideas for the party’s growth, and support them to the best of the party’s ability.
In honoring these leaders, the party will provide a vehicle, the type of which will be determined by the national leadership committee. Additionally, they will receive a monthly allowance, with the amount also set by this committee.
Other benefits include health insurance. If a leader does not own a home, the party will cover their rent at a rate decided by the committee.
The leadership committee may also grant special recognition based on the leader’s contributions. Retired leaders will participate in decision-making meetings according to procedures outlined in the party’s constitution.
Depending on the party’s resources at the time, the policy may also apply to retired deputy chairpersons for both the mainland and Zanzibar, the Secretary-General, Deputy Secretary-General for both mainland and Zanzibar, and the party’s Attorney General.
Additionally, leaders, executives, or members with exceptional contributions to the party’s protection, advocacy, and defense may also benefit, as determined by the leadership committee.
Currently, those who are eligible for benefits under this policy include Juma Duni Haji (retired party Chairman) and Zitto Kabwe (retired party leader).Continue Reading
