CYBERSECURITY ASSESSMENT FRAMEWORK (TANZANIA CASE STUDY)
This study addresses the critical issue of cybersecurity readiness in Tanzania, where a growing cybercrime threat landscape exposes organizations due to gaps in existing cybersecurity frameworks. These gaps are further amplified by the lack of user knowledge on digital technology, making them mo...
Saved in:
| Main Author: | |
|---|---|
| Format: | Theses |
| Language: | Indonesia |
| Online Access: | https://digilib.itb.ac.id/gdl/view/81261 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Institut Teknologi Bandung |
| Language: | Indonesia |
| Summary: | This study addresses the critical issue of cybersecurity readiness in
Tanzania, where a growing cybercrime threat landscape exposes
organizations due to gaps in existing cybersecurity frameworks. These gaps
are further amplified by the lack of user knowledge on digital technology,
making them more susceptible to cyberattacks.
This study addresses the problem by proposing improvements to Lubua’s
Cybersecurity Policy Framework. These improvements incorporate
components from established international standards like ISO 27001 and
NIST CSF.
The study employs Design Research methodology (DRM). The "Prescriptive
study" phase involved developing a new cybersecurity assessment
framework (Table IV.1). The "Descriptive study II" phase entailed a
descriptive analysis of this framework, focusing on its alignment with key
aspects crucial for success in the Tanzanian context: Alignment with Local
Context: This aspect considers the framework's ability to address Tanzania-
specific challenges, such as mobile money security and user education
initiatives to bridge the knowledge gap on digital technology, Completeness
and Comprehensiveness, Usability and Implementation, Effectiveness and
Measurability, and Sustainability and Maintainability
A team of 23 cybersecurity experts rigorously evaluated the framework's
effectiveness in addressing Tanzania's unique cybersecurity challenges, and
we made recommendations regarding the issue of user knowledge in digital
technology.
The evaluation yielded positive results across several key aspects:
Alignment with Local Context 78% of experts agreed the framework
addresses Tanzania-specific challenges, through Completeness and
Comprehensiveness 87% of experts agreed the framework covers essential
cybersecurity areas, Usability and Implementation while a moderate
response (60% of experts) indicated moderate usability, further refinement
is recommended for broader adoption, Effectiveness and Measurability
iv
87% of experts expressed confidence in the framework's ability to improve
cybersecurity posture. However, establishing clear metrics for
measurement is crucial and Sustainability and Maintainability 83% of
experts agreed the framework has mechanisms for continuous improvement,
but a review and update process is recommended.
While the framework demonstrates strengths, ongoing improvement is crucial.
Areas for further development include strengthening local context alignment,
enhancing usability and implementation, particularly for organizations with limited
technical expertise, establishing clear metrics for effectiveness measurement, and
developing a comprehensive review and update process. Addressing these areas
will ensure the framework's long-term effectiveness and adaptability.
By addressing these areas, the improved framework has the potential to
significantly enhance Tanzania's cybersecurity posture. It can provide a roadmap
for organizations to improve defenses, foster a culture of security awareness
through user training, and bridge the knowledge gap on digital technology. |
|---|