As the POPI Act compliance date draws closer many are panicking about compliance and fines. Fines aside, this presents an opportunity for businesses to take a look at their security portfolios, and underline the steps needed to become compliant, writes PIETER ENGELBRECHT of Aruba.
We have all spent countless hours attempting to become experts on the Protection of Personal Information (POPI) Act and, if you conduct business in Europe, the General Data Protection Regulation (GDPR). If you’re anything like me, you still feel a long way from fully understanding the implications of these legislations. Unfortunately, clear or not, the urgency is real.
When I read the warnings that fill our media, and the scramble for information, I’m reminded of the Y2K bug. Just like 1999, we are getting close to a full-scale panic about compliance, fines and the potential loss of business if we don’t make some pretty big changes.
While the eyes of every business are on your IT systems, there is a huge opportunity that you can take advantage of. POPI and GDPR are not just about privacy or incredible fines. They present an opportunity to take a holistic look at your security portfolio, and underline the necessary steps you need to take to become compliant.
Security is a business problem, not an IT problem, and with the support of business leaders, you can build on POPI and GDPR to create an end-to-end strategy for your IT systems. It’s an opportunity to gain much greater visibility of your network, and preparing you for any future changes or possible attacks that may occur.
Getting ahead of growing networks through automation
In the event of a security attack, particularly if malware is involved, IT systems have to be taken offline. This can cost a company millions in lost revenue, and longer lasting damage to its reputation.
The potential sources for security breaches are huge, and that, to me, is the biggest catalyst for action. Every business is becoming more reliant on connected things, from old operational technology (like energy sensors) to GPS, to the latest connected lighting or locking systems. Your network is an enormous web of endpoints, from the core out to the millions of user devices at the edge, and customer data can travel through any one of them.
Without looking at this entire landscape, and applying some more rigorous security policies, the loss of customer data in the future is almost inevitable.
When I speak to CIOs, I hear a lot about the need to audit the entire network to understand every place that customer data can touch. This is key to POPI and GDPR compliance of course, but if we stop there, we only tackle half the issue.
To achieve real end-to-end security, CIOs should work towards:
1. Segmenting the network so that each individual user and device can be reviewed separately
2. Automating the network configuration using machine learning
Using this combination, we will see machines become wise to individual devices and user behaviours, meaning they will act when a new behaviour is recognised. The subsequent actions could be network re-authentication, quarantining or blacklisting the user or device. All without the intervention of IT staff.
As the network continues to grow exponentially, IT systems are running to keep up. POPI and GDPR are just the beginning of a bigger security concern that is never going to go away. To effectively manage endpoint security, end users and user devices in a secure and sustainable way, we can no longer view the network as piecemeal. The network of the future will represent a single ecosystem, with the ability to create unique policies at any time, in any location. It’s our best chance to get ahead of what’s coming.
* Pieter Engelbrecht, Business Unit Manager for HPE Aruba
Now download a bank account
Absa has introduced an end-to-end account opening for new customers, through the Absa Banking App, which can be downloaded from the Android and Apple app stores. This follows the launch of the world first ChatBanking on WhatsApp service.
This “download your account” feature enables new customers to Absa, to open a Cheque account, order their card and start transacting on the Absa Banking App, all within minutes, from anywhere and at any time, by downloading it from the App stores.
“Overall, this new capability is not only expected to enhance the customer’s digital experience, but we expect to leverage this in our branches, bringing digital experiences to the branch environment and making it easier for our customers to join and bank with us regardless of where they may be,” says Aupa Monyatsi, Managing Executive for Virtual Channels at Absa Retail & Business Banking.
“With this innovation comes the need to ensure that the security of our customers is at the heart of our digital experience, this is why the digital onboarding experience for this feature includes a high-quality facial matching check with the Department of Home Affairs to verify the customer’s identity, ensuring that we have the most up to date information of our clients. Security is supremely important for us.”
The new version of the Absa Banking App is now available in the Apple and Android App stores, and anyone with a South African ID can become an Absa customer, by following these simple steps:
- Download the Absa App
- Choose the account you would like to open
- Tell us who you are
- To keep you safe, we will verify your cell phone number
- Take a selfie, and we will do facial matching with the Department of Home Affairs to confirm you are who you say you are
- Tell us where you live
- Let us know what you do for a living and your income
- Click Apply.
How we use phones to avoid human contact
A recent study by Kaspersky Lab has found that 75% of people pick up their connected device to avoid conversing with another human being.
Connected devices are becoming essential to keeping people in contact with each other, but for many they are also a much-needed comfort blanket in a variety of social situations when they do not want to interact with others. A recent survey from Kaspersky Lab has confirmed this trend in behaviour after three-quarters of people (75%) admitted they use a device to pretend to be busy when they don’t want to talk to someone else, showing the importance of keeping connected devices protected under all circumstances.
Imagine you’ve arrived at a bar and you’re waiting for your date. The bar is busy, and people are chatting all around you. What do you do now? Strike up a conversation with someone you don’t know? Grab your phone from your pocket or handbag until your date arrives to keep yourself busy? Why talk to humans or even make eye-contact with someone else when you can stare at your connected device instead?
The truth is, our use of devices is making it much easier to avoid small talk or even be polite to those around us, and new Kaspersky Lab research has found that 72% of people use one when they do not know what to do in a social situation. They are also the ‘go-to’ distraction for people even when they aren’t trying to look busy or avoid someone’s eye. 46% of people admit to using a device just to kill time every day and 44% use it as a daily distraction.
In addition to just being a distraction, devices are also a lifeline to those who would rather not talk directly to another person in day-to-day situations, to complete essential tasks. In fact, nearly a third (31%) of people would prefer to carry out tasks such as ordering a taxi or finding directions to where they need to go via a website and an app, because they find it an easier experience than speaking with another person.
Whether they are helping us avoid direct contact or filling a void in our daily lives, our constant reliance on devices has become a cause for panic when they become unusable. A third (34%) of people worry that they will not be able to entertain themselves if they cannot access a connected device. 12% are even concerned that they won’t be able to pretend to be busy if their device is out of action.
Dmitry Aleshin, VP for Product Marketing, Kaspersky Lab said, “The reliance on connected devices is impacting us in more ways than we could have ever expected. There is no doubt that being connected gives us the freedom to make modern life easier, but devices are also vital to help people get through different and difficult social situations. No matter what your ‘connection crutch’ is, it is essential to make sure your device is online and available when you need it most.”
To ensure your device lifeline is always there and in top health – no matter what the reason or situation – Kaspersky Security Cloud keeps your connection safe and secure:
· I want to use my device while waiting for a friend – is it secure to access the bar’s Wi-Fi?
With Kaspersky Security Cloud, devices are protected against network threats, even if the user needs to use insecure public Wi-Fi hotspots. This is done through transferring data via an encrypted channel to ensure personal data safety, so users’ devices are protected on any connection.
· Oh no! I’m bored but my phone’s battery is getting low – what am I going to do?
Users can track their battery level thanks to a countdown of how many minutes are left until their device shuts down in the Kaspersky Security Cloud interface. There is also a wide-range of portable power supplies available to keep device batteries charged while on-the-go.
· I’ve lost my phone! How will I keep myself entertained now?
Should the unthinkable happen and you lose or have your phone stolen, Kaspersky Security Cloud can track and protect your device from data breaches, for complete peace of mind. Remote lock and locate features ensure your device remains secure until you are reunited.