Cyber Security

Cybersecurity is the practice of protecting critical systems and sensitive information from digital attacks. Also known as information technology (IT) security, cybersecurity measures are designed to combat threats against networked systems and applications, whether those threats originate from inside or outside of an organization.

Cybersecurity domain areas include:

  1. Critical infrastructure security – Practices for protecting the computer systems, networks, and other assets that society relies upon for national security, economic health, and/or public safety.
  2. Network security – Security measures for protecting a computer network from intruders, including both wired and wireless (Wi-Fi) connections.
  3. Application security – Processes that help protect applications operating on-premises and in the cloud. Security should be built into applications at the design stage, with considerations for how data is handled, user authentication, etc.
  4. Cloud security – Specifically, true confidential computing that encrypts cloud data at rest (in storage), in motion (as it travels to, from and within the cloud) and in use (during processing) to support customer privacy, business requirements and regulatory compliance standards.
  5. Information security – Data protection measures, such as the General Data Protection Regulation (GDPR) that secure your most sensitive data from unauthorized access, exposure, or theft.
  6. End-user education – Building security awareness across the organization to strengthen endpoint security. For example, users can be trained to delete suspicious email attachments, avoid using unknown USB devices, etc.
  7. Disaster recovery/business continuity planning – Tools and procedures for responding to unplanned events, such as natural disasters, power outages, or cybersecurity incidents, with minimal disruption to key operations

We offer consultancy services in the following areas: risk management, policy, awareness, disaster recovery and business continuity, penetration testing, data protection and privacy. Some of our projects include:

Smart Africa:

  1. Developed a continental Cybersecurity blueprint for Africa for Smart Africa Secretariat.

World Bank:

  1. Harmonization of Cybersecurity Legal Frameworks in IGAD Member States.
  2. Conduct of a Situational Analysis and Development of a Community Act on Electronic Identification and Service Accessibility.