Digital security training for senior govt officials
MBABANE – The Eswatini Communication Commission (ESCCOM) capacitated senior government officials on digital security yesterday.
This was during a digital security workshop, which was supported by the Coordinating Assembly of Non-Governmental Organisations (CANGO), held at the Hilton Garden Inn.
The officials were trained on basic principles of cybersecurity management, corporate governance, policies, the regulatory environment, internet rights and service delivery, risk management as well as cybersecurity culture.
Speaking about the importance of human capacity building on cybersecurity, ESCCOM Chief Executive (CE) Mvilawemphi Dlamini, who was represented by senior executive Mbongeni Mtshali, said Eswatini was facing a full spectrum of cyber threats, cybercrime, attacks, espionage and other malicious activities.
Dlamini said most of the time, people had the means to monitor and control networks which exposed them to real risks that may affect national security and the economy.
He said with the heavy reliance on technology, people were becoming more interconnected and vulnerable to cyberattacks on a wide range of targets. “It is, therefore, critical to reinforce our human and institutional capacity to secure our cyberspace by building trust and confidence in the use of internet and technology,” he said.
Attacks
Dlamini said the Eswatini National Cybersecurity Strategy 2022 – 2027 recognised the need for cybersecurity good practices to be widely established, both in private and public sectors across Eswatini, resulting in continuous reduction in the number of seriousness and high-impact cyber attacks in Eswatini.
He said most importantly, it recognised the need for organisations and individuals in Eswatini, especially high ranking government officials, legislators, private sector Board members and management to understand the need for cybersecurity, responsibilities, liabilities, together with the measures for protecting their organisations.
He said the Computer Crime and Cybercrime Act, 2022 primarily sought to criminalise offences committed against, and through the usage of, computer systems and electronic communications networks and also to provide for investigation and collection of evidence for computer and network-related crimes.
“The Data Protection Act provides for the collection, processing, disclosure and protection of personal data and balancing competing values of personal information,” said the CE.
CANGO Executive Director Thembinkosi Dlamini said as the country approached the Fourth Industrial Revolution, while simultaneously pursuing its developmental objectives, it was apparent that the digital age was here to stay. He was represented by Arlerta Ndlela. In addition, the CANGO executive director said the COVID-19 pandemic had taught people that they needed to make adaptations, including digital means, to ensure continued service provision, therefore, they should adapt and ensure this was done in a safe manner.
Thembinkosi said from a public management, human rights and service delivery perspective, the cognisance and adoption of cybersecurity practices and principles was imperative.
Legislation
He said various interventions had been made by government in a participatory manner such as enacting legislation (Data Protection Act, 2022, The Computer Crime and Cybercrime Act, 2022, Electronic Communications Transactions Act) and developing policies to mitigate emerging cyber-related risks.
He said CANGO appreciated the collaboration of the Ministry of Information, Communication and Technology (ICT), ESCCOM and other stakeholders in capacitating and sensitisation initiatives. He added that CANGO actively advocates for digital rights, which was evident in the submissions made during the public consultations phase of the cyber laws.
Thembinkosi said the commitment to a holistic approach to digital rights was also evident in the establishment of the multi-stakeholder Internet Governance Forum, which was established by the Ministry of ICT in collaboration with ESCCOM.
“The National Cybersecurity Strategy 20202025, which was adopted in October 2020, mandates the commission to establish a National Cybersecurity Agency and within this agency, establish a National Cyber Security Incident Response Team (NCSIRT),” he said.
He also encouraged civil society to participate, collaborate and amplify the various awareness raising campaigns on cybersecurity carried out by the regulator.