Cyber Security Risk Management And Threat Control Model (Csrm-Tcm): A Study Carried Out To Enhance The Protection Of Information In The Namibian Public Service

ABSTRACT

The persistent threats of the cyber environment drives organizations to adopt risk

management as a crucial practice of minimizing dangers to their information assets.

However, focusing on technology alone to address these risks is no longer sufficie nt.

IT governance which enables senior managers to align and integrate technology with

business strategies through clear policy development and good practice of IT control

is essential.

The Namibian Public Service (NPS) currently lacks policy guidance on cyber security

risk management. Consequently Offices/Ministries/Agencies (O/M/As) depend on

technology to manage security risks facing them. However, this effort is not coordinated

between various O/M/A. Therefore it presents security challenges to the

government network as various systems continues to be interconnected.

To address these risks, the study investigated behaviors of different O/M/As in the

NPS. The focus was predominantly on the management of information assets in the

absence of standardized cyber security best practices. The study concluded that

although there may be an abundance of technologies in the (NPS), the absence cyber

security policies, standards and guidelines has led to a huge disparity regarding the

way in which Information Systems (IS) are managed in various O/M/As. Hence, this

poses security challenges.

Subscribe to access this work and thousands more

Subscribe & Access