The state of e-Government security in South Africa: Analysing the national information security policy

Bukelwa Ngoqo, Kennedy Njenga

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

As a result of the growing reliance by public sector organisations on technological resources for capturing and processing information, protection of information in the public sector has become an issue of national concern. While considering the South African national strategy for protecting this state asset (‘information’) this paper contrasts existing local, provincial or national e-Government information security policies against the adopted national guidelines. The paper postulates that with sound policies and guidelines in place ‘interpretation and application’ remain as two barriers that pose a threat to state information. The main question addressed in this paper is whether e-Government information security policies adequately address prescribed key security components. To achieve a comprehensive understanding of the pillars underpinning the protection of national information security in South Africa, the authors followed systematic procedures for reviewing and evaluating existing e-Government information security policies. The objective of this paper is to investigate whether existing government information security policies are aligned to national policy or guidelines. This paper will contribute empirical evidence which supports the notion observed by the South African Auditor General that (Auditor-General 2012) security weaknesses in government departments and state entities are attributed to the lack of formally designed and implemented information security policies and standards. The results of this preliminary investigation indicate that although information security policies exist in the majority of state entities, there is no consistency in the application of the ‘security controls’, as outlined in the national guidelines.

Original languageEnglish
Title of host publicatione-Infrastructure and e-Services for Developing Countries - 9th International Conference, AFRICOMM 2017, Proceedings
EditorsVictor Odumuyiwa, Ojo Adegboyega, Charles Uwadia
PublisherSpringer Verlag
Pages29-46
Number of pages18
ISBN (Print)9783319988269
DOIs
Publication statusPublished - 2018
Event9th International Conference on e-Infrastructure and e-Services for Developing Countries, AFRICOMM 2017 - Lagos, Nigeria
Duration: 11 Dec 201712 Dec 2017

Publication series

NameLecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
Volume250
ISSN (Print)1867-8211

Conference

Conference9th International Conference on e-Infrastructure and e-Services for Developing Countries, AFRICOMM 2017
Country/TerritoryNigeria
CityLagos
Period11/12/1712/12/17

Keywords

  • Information security legislation
  • Information security policy
  • National information security
  • Security controls
  • e-Government

ASJC Scopus subject areas

  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'The state of e-Government security in South Africa: Analysing the national information security policy'. Together they form a unique fingerprint.

Cite this