The Department of Communications (DOC) has covered all the bases and should be ready to publish a finalised copy of SA's first cyber security policy within the next two to three months.
This is according to chief director of ICT security at the DOC Jabu Radebe, speaking at the department's cyber security colloquium, held in Midrand yesterday. Radebe explained that the draft policy had already been published and opened for public comment in February.
The public's comments have been received and included into the policy. He noted that any major concerns raised during the colloquium would also be revised for inclusion into the final policy. However, final approval rests with Cabinet, which Radebe notes is out of the DOC's jurisdiction.
The speedy turnaround time for drafting the policy, which began just six months ago, may be attributed the fact that the delivery of the cyber security policy is one of the minister of communication's performance outcomes for President Jacob Zuma.
Nonetheless, the DOC has recognised the necessity and importance of such a policy. DOC director-general Mamodupi Mohlala noted that the policy is destined to be included in the South African integrated ICT legislation, which is expected to be in effect by 2014.
To this end, she explained that the DOC has recognised that it is not the only key role player in the drafting of the cyber security policy. As such, the colloquium serves as a platform for inter-government department and industry debate.
The cyber security policy aims to provide direction for online security in the country. One of the key aspects of the policy includes a plan to introduce national and sector-based Computer Security Incident Response Teams (CSIRT).
The role of the various sector CSIRTs, including a government CSIRT, will be to identify, analyse, contain, mitigate and report the outcome of threats to relevant parties.
Mohlala explained that the policy was the first of its kind and would set the scene for further deliberation on cyber security. “The Internet is an integral part of our lives, which is why we need to protect both the citizen and the creators of data,” she concluded.
Share