Discussing Cyber Security and Cyber Crime in the SADC region (Africa)

2019-12-04 ITU SADC Cybersecurity Cybercrime INTERPOL KOREA CIRT

Southern African Development Community (SADC), which is Southern Africa’s regional body, comprised of 15 Member states these include, Angola, Botswana, Comoros, DRC, Swaziland, Lesotho, Madagascar, Malawi, Mauritius, Mozambique, Namibia, Seychelles, South Africa, Tanzania, Zambia, and Zimbabwe. The region has been making initiatives and taking steps to respond to rising cybercrime and threats posed by cybersecurity. SADC’s Organ on Politics, Defense, and Security Cooperation is the responsible Organ to address and coordinate a regional approach towards issues about cybercrime and cybersecurity. Hamadoun Toure, an ex-secretary-general ITU, said: “At the moment, cybercriminals see Africa as a haven to operate illegally with impunity.”

Why should we know?

  1. Cybercrime in Africa is growing faster than any other continent
  2. Global Cybersecurity Index 2018, has highlighted that Africa has the most number of countries still at the lowest levels in initiating Cybersecurity commitments.
  3. Sadc, has an average Internet User Penetration rate of 52.1% as of Jan 2018, with a rate of 32% on Social Media Penetration and an average of 147% Mobile Connectivity
  4. There is still a need for more user awareness initiatives on cybersecurity and cybercrime against the growth statistics highlighted above.

Focus Points

In discussing Cyber Security and Cyber Crime in SADC, we must measure and analyze some of the following Important conceptual frameworks in SADC.

Regional Implications -Apart from Africa being a target of Cyberattacks, they are threats also coming from Africa (SADC) where devices are being used to launch global attacks (viruses and malware). With economic disparities in SADC, there is a need for more work to be done to fully quantify and qualify the economic, political, and institutional determinants of cybercrime, as this can guide on levels of public cyber-related investments of member states in SADC.

What has SADC done to date?

What needs to be done?

  1. SADC should ensure, monitor, and coordinate with member states to the establishment, enactment, implementation and updating of cyber-laws and cyber-policies.
  2. The urgent establishment of SADC’s Cybersecurity Emergency Response Unit that will coordinate with member states National CIRT teams in responding to Cyber threats. The SADC Unit will act as the regional hub for information sharing and dissemination to member states.
  3. Formulation and Adoption of educational models that not only focuses on awareness but skills, knowledge development, and competency at grassroots levels. A model from the Policy on ICT in Education in Korea: CyberLearning System can provide a formidable base framework for SADC member states.
  4. In Combating or Investigating Cybersecurity and cybercrime issues, the main focus groups involved are the Law Enforcement Agencies and the Judiciary; hence there is a strong need for SADC craft initiatives for capacity development, investment, knowledge sharing, and technical training capabilities to enhance investigate and digital forensics skills collaboration with Institutes as Legal Informatics and Forensic Science