Cybersecurity Knowledge Requirements for a Water Sector Employee

R. Thomani, A. Marnewick, S. von Solms, M. Malatji

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review


Critical infrastructure in South Africa remains highly vulnerable to cybercrime threats due to a poor cyber-crime fighting capacity and a lack of a strong cybersecurity policy. South Africa appears to have fallen behind in securing and protecting cyberspace, considering the country’s dependability as well as the interconnectedness to the internet. Globally, the water and wastewater sector were ranked number four in the global security incidents. This study presents the findings of a systematic literature review conducted to assess the cybersecurity knowledge necessary for a general employee in the water sector. The study proposes a framework for determining the minimum knowledge that a general employee in the water sector should have. The frameworks start by defining the eight different types of cybersecurity challenges, then move on to mitigation strategies for dealing with such attacks. Several approaches and strategies were provided for mitigating various cybersecurity challenges. To deal with such risks, mitigations such as cybersecurity knowledge and skills, cybersecurity awareness, and cybersecurity training were proposed. The strategies for developing knowledge to deal with various sorts of dangers were provided at both the individual and organizational levels.

Original languageEnglish
Title of host publicationHuman Aspects of Information Security and Assurance - 16th IFIP WG 11.12 International Symposium, HAISA 2022, Proceedings
EditorsNathan Clarke, Steven Furnell
PublisherSpringer Science and Business Media Deutschland GmbH
Number of pages15
ISBN (Print)9783031121715
Publication statusPublished - 2022
Event16th IFIP WG 11.12 International Symposium on Human Aspects of Information Security and Assurance, HAISA 2022 - Virtual, Online
Duration: 6 Jul 20228 Jul 2022

Publication series

NameIFIP Advances in Information and Communication Technology
Volume658 IFIP
ISSN (Print)1868-4238
ISSN (Electronic)1868-422X


Conference16th IFIP WG 11.12 International Symposium on Human Aspects of Information Security and Assurance, HAISA 2022
CityVirtual, Online


  • Awareness
  • Critical infrastructure
  • Cybersecurity knowledge
  • Water sector employee

ASJC Scopus subject areas

  • Information Systems and Management


Dive into the research topics of 'Cybersecurity Knowledge Requirements for a Water Sector Employee'. Together they form a unique fingerprint.

Cite this