Problematizing the South African cybersecurity policy landscape
Date
2022-04
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
Stellenbosch : Stellenbosch University
Abstract
ENGLISH SUMMARY: This study focused on the challenges experienced in South Africa’s cybersecurity landscape, based on a constructivist paradigm, phenomenological research and qualitative research approach. A total of ten (10) respondents participated in the study. The ten (10) included eight (8) administrative officials from the Departments of Public Service and Administration (DPSA), Justice, Communication and Police, and two high ranking individuals from the private sector organisations. “Due to the restrictions imposed by the SARS-CoV-2 pandemic, participants were chosen using purposeful sampling and interviewed telephonically and electronically via Skype or WhatsApp. Cybersecurity is a critical issue for many states and organisations all over the world, and this includes South Africa. According to the 2018 National Cybersecurity Index, which ranks countries based on the cybersecurity capacities implemented by central governments, South Africa ranks 102 out of 160 countries, with an overall 27.27% (NCSI, 2018). The Global Cybersecurity Index ranks South Africa at number four, compared to other African countries (Global Cybersecurity Index, 2018). South Africa experienced an increase in cyberattacks on all fronts in 2019: banks, internet service providers, utilities, and e-commerce platforms were all targeted, as were consumers (Mkanyana, Brandley & Seedta, 2020). The volume of malicious cybercrime has increased by 33% over three months, from January 2020 to March 2020 (Delport, 2020). Spam and opportunistic cybercrime detections increased by 26.3%, impersonation fraud detections increased by 30.3%, malware detections increased by 35.16%, and URL click blocking increased by 59.8% (Delport, 2020). Cybercriminals know that our law enforcement agencies are ill-equipped to detect and combat cybercrime, South Africa has become a target (Rick Crouch & Associates, 2020). Data from the interviews were analysed utilising the thematic data analysis method. The data analysis revealed that lack of technology, the lack of cybersecurity knowledge and experts, and specific cybersecurity policies contribute to a low cybersecurity capability maturity in South Africa. The study also revealed that a lack of coordination between the public and private sector contributes to poor cybersecurity. Another revelation is that the state’s role in cybersecurity is to govern cybersecurity in South Africa by putting in place the necessary laws and standards, while the private sector’s role is to implement adequate cybersecurity measures to support the state and citizens in being cyber-secured. The study also revealed that when citizens are trained and aware of the dangers of cybercrimes and aware of the policies and programmes that exist, they can enhance the cybersecurity landscape of South Africa.
AFRIKAANSE OPSOMMING: Geen opsomming beskikbaar.
AFRIKAANSE OPSOMMING: Geen opsomming beskikbaar.
Description
Thesis (MPhil)--Stellenbosch University, 2022.
Keywords
Cyberspace -- Security measures -- South Africa, Computer security -- South Africa, Information technology -- Security measures -- South Africa, UCTD