Subscribe
  • Home
  • /
  • Security
  • /
  • Why your corporate IT security is doomed to fail

Why your corporate IT security is doomed to fail

Telspace's Reino Mostert will address the most common IT security issues facing large businesses at this year's ITWeb Security Summit.


Johannesburg, 20 May 2015

IT security is a complex field with a variety of challenges, and one of the main reasons corporations fail at it is their inability to fully grasp this complexity and address it appropriately.

This is according to Reino Mostert, a senior analyst at Telspace Systems, a company that provides IT security services to help protect companies and organisations from cyber crime by making them as unattractive to cyber criminals as possible.

Mostert is on the line-up of speakers at the ITWeb Security Summit 2015, scheduled to take place on 26-28 of May at Vodacom World in Midrand, Gauteng.

Entitled: 'Hacked: Why we all fail at information security', Mostert's presentation will expose the most common flaws in the practice of information security in large corporates and enterprises.

The talk will also cover business and technical aspects of IT security, with a special focus on the process complexity that eventually leads to security failings and topics that include procurement, architecture design, change control, ticketing workflow and vulnerability management.

The second reason corporations fail at IT security is that they tend to compartmentalise the responsibilities of IT security to the IT security department, while it should be diversified across the organisation, he says.

"IT security should be process-driven to effectively mitigate the threats faced by organisations," he adds.

Keeping it real

Mostert, whose job at Telspace Systems focuses on the penetration testing of enterprise networks and assessment of critical Web applications, will also provide real-life examples of security failings, the technical issues involved, fixing these issues and how this relates back to business processes.

"The summit always allows one to catch up with one's peers in the industry and to exchange war stories and experience in the corridors before gaining wisdom from industry leaders at their presentations," he says.

Reino Mostert

Reino Mostert has extensive experience as an attacker and defender of IT security systems and has worked at several large corporations in the ICT industry, including a major ISP and telecommunications companies.

He studied BSc Computer Science at the University of Pretoria, is OSCP certified and is an associate of (ISC)^2 for CISSP. He has previously presented at ZACon 2011 and ISSA 2014. He also actively involved in security research at Telspace Systems.

ITWeb Security Summit 2015

ITWeb Security Summit 2015 takes place at Vodacom World in Midrand from 26-28 May. The 10th annual infosec event from ITWeb is a 'must-attend' event for every IT and security professional and senior manager with business and information management responsibilities.
Clickhereto find out more and to register.

Share

Telspace Systems

Started in Johannesburg, South Africa, in 2002, Telspace Systems provides information security services and training courses. Services include attack and penetration testing, Web application assessments, vulnerability assessments and security consulting. Training courses are often presented at high-level government and internationally recognised security conferences, and include ethical hacking, Web application hacking and wireless hacking. Telspace Systems is currently in the process of establishing an EU-based office.

Editorial contacts

Leigh Angelo
ITP Communications
(011) 869 9153
leigh@tradeprojects.co.za
Admin
Security Summit 2015
admin@telspace.co.za