Key Takeaways from the 2024 National Cybersecurity Conference

Key Takeaways from the 2024 National Cybersecurity Conference

I had the pleasure of attending the National Cybersecurity Conference last week and I would like to extend my gratitude to Hon Tatenda Mavetera , her ministry – ICT, Postal, and Courier Services, and Econet Wireless Zimbabwe for organising this insightful event.?

The conference kicked off with welcome remarks from Kezito Makuni from Econet Wireless. He emphasized that while we often think of cybersecurity as a technical issue, yet it's fundamentally about people. They are the ones most impacted by compromised privacy, data breaches and financial loss. Ironically, it’s also human actions, whether through negligence, ignorance or malicious intent that often lead to these cybersecurity failures.

Chief Superintendent Alford Nyasha - Director of Forensic Science at ZRP, followed with an engaging presentation on the Global View of Cybercrimes. He highlighted the seamless integration of technology in our lives, making cybersecurity a challenge we can't escape. Cybercrime is borderless and faceless, which makes it even more enticing for criminals. I found this to be very true because, in many cases, there's no loss of dignity for the perpetrator as long as they remain undetected—people value their dignity and self-worth and this anonymity makes it harder to catch cybercriminals.

To address these challenges, the ZRP has built strong cross-border relationships with institutions like Interpol and Afripol, working together to combat cybercrime in Zimbabwe. We usually associate “...as-a-service” with positive things or tools meant for good, but a fascinating topic that was discussed is “Cyber-Crime-as-a-Service.” These are tools developed by cybercriminals to allow even untrained individuals to take part in illegal cyber activities. This was a real eye-opener for me!


Mr. John Tseriwa delivered an engaging presentation on Cyber Security and Quantum Computing. He explained that while it's still an emerging technology, quantum computing has the potential to revolutionise cybersecurity. Traditional computers process data in binary (1s and 0s), but quantum computers operate in a state called superposition, meaning they can process both 1s and 0s simultaneously. This concept is crucial because it could drastically reduce the time needed to break encryption algorithms, which is a serious concern for cybersecurity professionals. Encryption methods today rely on the time it takes to crack them as a defence mechanism, such as algorithms built on complex mathematical problems. With the immense processing power of quantum computers, this decryption time could shrink dramatically.

Cybercriminals are already gathering data, anticipating the day when quantum computing will become powerful enough to bypass current encryption standards. This shift poses a major threat, as it could undermine the very foundation of data protection and privacy.

As Mr. Tseriwa aptly put it, quantum computers won’t replace classical computers—just like light bulbs didn’t replace candles. Each has its own role, but the stakes in cybersecurity are much higher with quantum computing on the horizon. (Qiskit, IBM’s framework for quantum computing, is one tool to watch in this space.)


One of the most nerve-wracking moments of the conference came when Mr. Cade Zvavanjanja and his team conducted live Cyber Drills on penetration testing. They demonstrated just how vulnerable we are to attacks on wireless connections, mobile phones, and even something as simple as a JPG image or an authentic-looking USB charging cable that secretly steals data. The hands-on examples made the threat feel incredibly real!


The guest of honor, Deputy Minister Hon. D. Phuti, delivered a calming yet urgent keynote by reassuring us that teams like Mr. Zvavanjanja’s are essential in keeping Zimbabwe safe from cyber threats and they do work together. He also stressed the importance of diligence, warning that "it takes 20 years to build a reputation, and only one cyber incident to ruin it," quoting Warren Buffet.


After these informative presentations, we moved into panel discussions. The first panel, moderated by Prof. S. Takavarasha, focused on “Strengthening Cyber Resilience: A Unified Approach to Safeguarding Our Digital Future.” Panelists included Mr. S. Kashiwa (RBZ), Mr. Simbarashe Tirivavi (CCZ), and Ms. Tsitsi Mariwo , each providing insights into their respective areas of work and emphasising the importance of collaboration among institutions to eliminate regulatory arbitrage and enhance cybersecurity.

They discussed the need for tailored approaches to frameworks for example the NIST Cybersecurity Framework. As well as an insight into a significant development by POTRAZ's new requirement for companies to report cyber incidents within 24 hours. This will not only ensure compliance but also foster a better understanding of the cybersecurity landscape. Timely reporting allows organisations to learn from each other's experiences, helping to prevent future incidents.

Additionally, POTRAZ is exploring AI methodologies, specifically CERT (Computer Emergency Response Teams), to enhance the detection of cyber threats.


The second panel, “Emerging Cyber Threats: Identifying Risks and Mitigation Strategies,” was moderated by Eng. I. Chiza and featured experts like Ms. Mutsa Mabhande Mr. Isheanesu Sithole , Mr. Cade Zvavanjanja, and Mr. Victor Chishiri . They discussed how the motives behind cybercrimes vary, highlighting that, in the public sector, it might be state-funded espionage, while in the private sector, financial gain is often the goal. Understanding these motivations is crucial for effective risk mitigation because it enables organizations to tailor their defenses and prioritize resources based on the specific threats they face.

The panel also examined cloud technology, debating the trade-offs between smaller, local cloud providers and larger, more reputable ones, especially from a security perspective. Key takeaways included the importance of thorough risk assessments, the necessity of robust security protocols and the need for continuous monitoring and adaptation to the evolving threat landscape.

The conference served as a powerful reminder of the importance of cybersecurity in today's rapidly evolving digital landscape. Collaboration, continuous learning, and staying ahead of emerging threats are essential if we are to safeguard our digital future.

#econet #nationalcybersecurityseminar #zrp #superposition #quantumcomputing #qiskit #IBM #cyberdrills #pentest #penetrationtesting #Cybersecurity #CyberResilience #DataProtection #Cybercrime #EmergingTech #POTRAZ #CERT

Clemence Chikombingo

Group Senior Information Technology Auditor | Certified ISO/IEC 27001 Lead Auditor | CISA | GDRP Certified DPO

1 个月

Worth attending

Nyashadzashe K.

ISC2 Candidate | Fortinet Certified Professional | Business Analysis | KnowBe4 Sales Specialist | McKinsey Forward Alumni | Personal Development Enthusiast | Corporate Event Host | Award Winning Mentor

1 个月

Well done Tadiwa. Keep inspiring and thank you for the insights. Time to work on creating a cyber secure nation!

Patience Ngwenya

Cybersecurity Specialist | IT Risk | CISM | ISO 27001:2022 | Business Analyst

1 个月

Well summarized Tadiwanashe Udzembwe. it was an interesting event indeed.

John Tseriwa

Managing Director at Sagehill Business Solutions

1 个月

Thank you Tadiwanashe Udzembwe ????. Well summarized.

要查看或添加评论,请登录

Tadiwanashe Udzembwe的更多文章

社区洞察

其他会员也浏览了