Home Training Consulting News roomContact CIS  
 
Welcome to SACFiS
About CIS
Message from CEO
Mission-Vision
Core-Principles
Our Approach
Information Security
InfoSec Overview
InfoSec Benefits
SACfIS Services
Consulting
Training
Research
Outreach
Sectoral services
Government
Financial Services
Telecommunications
Mining/Utilties
Branches
Botswana
Ethiopia
Contact us
info[AT]sacfis.CO.ZA

 

Services to the Banking and Financial Sector

"Anyone can learn to break into a computer. The hard part is how to defend yourself"
Carolyn Meinel, a hacker.

"If I want to steal money, a computer is a much better tool than a handgun. It would take a long time to steal $10 million with a handgun"
Daniel Geer, security expert to a House subcommittee in 1997

Willie Sutton infamous bank robber was asked why he robs banks, He said "that's where the money is and that's where the pay of is" Banks are targets for most major threats because that's where the money is. Financial institutions are faced with major threats from script kiddies, bright programmers, spammers, hackers and digital outlaws. Some of the major risks banks are exposed to are:

  • Organized digital crime;
  • Scam
  • Fraudulent Internet Web sites [Phishing];
  • Hacking and cracking;
  • Viruses, worms, trojans
  • Key loggers [recent case of South African Bank fraud];
  • Web site defacement;
  • Unauthorized disclosure of confidential information;
  • Electronic cash;
  • Identity theft[Phishing];
  • ATM fraud and theft ;
  • Information warfare;
  • Denial of service attacks where systems are inaccessible to legitimate users;
  • Invasion of digital privacy;
  • Reputation

We can assess and plan around your greatest security priorities, as well as develop a security plan that will focus on your individual business needs, such as:

  • Building an information security program that meets your specific organizational and compliance needs.
  • Creating a program to meet online banking/fraud challenges.
    Creating awareness that help bank’s clients to know risks of using ATMs and other facilities
  • Inventorying critical assets and accessing points to your data across the organization.
  • Developing a custom certification program for your outsourcers, partners, and vendors.
  • Assessing your vulnerabilities , finding gaps and redundancies in information security practices.
  • Prioritizing threats to, and risks and assets of your organization.
  • Demonstrating ongoing compliance to your partner, auditors and customers.
  • Improving your ability to offer new services by securing your applications .
  • Information security awareness campaign for clients and staff


‘Internet-based crime is going to increase as people’s access to technology increases, and as people go online more often. And the sophistication of it will increase as well.’

The ability of people to hack into systems and extract data, using anything from Trojans to key-logging devices, is growing massively.

‘The risk lies in hackers extracting data on cards. The value is in data and information rather than getting money out, which raises the insider element,’ said Cook.

‘And if they don’t have the physical card, they can still perpetrate CNP crime if the retailer does not have the relevant security processes in place, such as a system for checking the card’s verification number.

Don't get caught out - see how proven training can save your company from disaster.

We now live, work and play in the digital age.

 

 

 

South African Centere for Information Security in the News

July 2010 - SACfIS to speak on 3rd Annual ITEX ICT Conference on Social Media and Security issues
May 2010 - SACfIS CEO to speak on 2nd Annual Kuwait ICT Security Forum in Kuwait City. He would present a key note on Offensive information cyberwarfare for business and government agencies.

July 2009 - SACfIS to partner with a prominent South African security consulting company Telspace. Telspace is a leader in penetration testing, web application and wireless hacking.

May 2009 - SACfIS CEO speaks at the annual IT WEB security summit. Beza presented a framework on offensive defensive strategy for engaging in information warfare.

February 2009 - SACfIS CEO speaks at 3rd Network and Endpoint security summit in Nairobi.

October 2009 - SACfIS CEO speaks at 2nd IT Governace and Audit summit in Nairobi, Kenya. Mr. Belayneh presented on current web application threats and key measures thta must be taken.

January 2009 - SACfIS CEO speaks on the need for ICT R & D capacity development in Brussels. He cited information security as a key area that requires support and strategic collaboration for increasing ICT uptake and trust in technology.

 

 

 

 


Upcoming Events
Botswana Internet Directory

Viruses
 Fraud/Fishing
 Spyware
 Identity theft
 Online dating scam
 Online banking
 SMS scam/spam
Definition of threats
Prevention overview
 All threats

Botswana Internet Directory
Define - cyber crime
History- cyber crime
Types-cyber crime
Cyber criminals
 Famous hackers
Organised crime
Safety tips
Security glossary

 

 
 
   
Home | About SACfIS | Services | Training | Consulting | Research | Press Room | Contact us |
 
© 2010 South African Centre for Information Security. All rights reserved.