Page 21 - Service Delivery Review_Volume 14_Number 3_2022
P. 21
ICT Security
■ The departments’ local area networks need to be Conclusion
protected by firewalls blocking unsolicited and The joint survey and questionnaire prepared by the DPSA
unwanted incoming network traffic. Firewalls also and SITA covered the basic issues around application se-
validate access by assessing this incoming traffic curity, infrastructure security and general security controls.
for anything malicious like hackers and malware It found that there is a combination of factors across the
that could infect the departmental computers/ board that open the network to vulnerabilities. These in-
laptops. clude lack of ICT security skills in the Public Service; ageing
■ Making information security awareness effective, infrastructure; budget constraints (for procurement of ICT
thus addressing the cybersecurity mistakes that security solutions/services); and legacy systems that are
employees may make when utilising state not upgradable.
information assets.
■ Conducting regular vulnerability assessments. This While the response time to and deadline for the survey were
would assist departments in identifying tight, this reflected the urgency that would be required to
vulnerabilities before hackers find them. respond swiftly to all manner of cyber-security threats in
■ Vulnerability assessment tools scan all the Public Service. The departments that took this exercise
seriously and responded in time ought to be applauded.
departmental network components, verifying However, the unresponsiveness of the majority is cause for
whether they have weaknesses that cybercriminals concern as failure to comply with the requests for informa-
can use to attack the department.
tion greatly undermines the government’s efforts to deal
proactively with the prevalent cybersecurity threats in the
Public Service. ■
*Ngxeke-Rametsi is ICT security specialist at the DPSA.
Volume 14 No.3 of 2022 | SERVICE DELIVERY REVIEW 21
