A local tertiary education provider appointed Mobius Consulting to perform detailed privacy impact assessments (PIAs) of a select number of divisions within the university using a pre-defined customised approach, which was developed with the assistance of Mobius Consulting on a previous engagement. The project’s objective was to facilitate workshops and collect relevant background and personal information [...]

A client in the advertising industry approached Mobius Consulting to investigate a potential data leak. The client was concerned that various systems may have been compromised, and that business could be impacted due to negative stakeholder perceptions.   The client requested that Mobius Consulting assist with an investigation of the suspected data breach, and requested [...]

A multi-national global partner enlisted Mobius Consulting to deliver an educational and instructional course to a key strategic client of theirs. Their client was a large national bank whose security concerns required their entire staffing contingent to undergo mandatory training delivered by qualified and skilled agents. Over two days, Mobius delivered two sessions on Malware and [...]

A well known Financial Services Institute required Mobius Consulting’s assistance in refreshing their Information Security and Information Technology Risk Management policies and standards, as well as their associated controls catalogue, to ensure the relevance of both Information Security and Information Technology controls across their hybrid IT environment – which operates both on-premise and in the cloud. This entailed that Mobius Consulting [...]

A higher education institute appointed Mobius Consulting to assist with a Privacy gap assessment and the implementation of prioritised activities focusing on POPIA, GDPR & other privacy requirements. The assessment was completed across several divisions, and a broad understanding of their current level of Data Privacy readiness was provided.  Mobius assisted the institution with the [...]

In line with changing banking regulatory requirements, a client in the financial services industry required Mobius Consulting's assistance to perform a detailed Data Governance and security review on one of their critical big data repositories. Specifically, Mobius helped the client define data flow diagrams and review current access to the data within the critical big [...]

A client in the advertising industry requested Mobius to assist with their Privacy remediation journey as part of their readiness efforts for the Protection of Personal Information Act (POPIA) compliance.  The project’s objective was to align the organisation’s Data Privacy practices with the new Protection of Personal Information Act and other leading Privacy regulations. Some of the critical activities that Mobius […]

A private educational institution migrated its student management system from its on-premises location to Amazon AWS. Mobius assisted this educational institution by drafting their Privacy and Data Transfer Notice. This notice informs parents of and collects their consent for the transfer of their children’s data outside of Mauritius, in compliance with legislation such as the Mauritius Data […]

A leading large FMCG organisation required SME Privacy and Information Security assistance to drive and achieve the desired level of POPIA compliance within their respective business areas in the organisation. The organisation further required a Privacy Programme to be implemented across the various Information Privacy risk themes which include: Privacy Governance  Change Management  Information Security […]

A global Oil and Gas client was in the process of establishing Information Privacy operations across various regions worldwide to mature its compliance efforts with applicable Privacy legislation. While the client embarked on identifying appropriate roles and skillsets for regional Privacy Officers and aimed to initiate implementation efforts; Mobius Consulting was required to drive Privacy […]

The Mobius Cyber Security team recently completed a Cyber Security audit for a leading asset management client in the financial services industry. The objective of the project was to provide independent assurance on the adequacy and effectiveness of key Cyber Security controls in the environment. The project included an assessment of the organisations Cyber Security […]

A leading bank needed to understand the level of cyber related risk that Third Parties and Cloud Service Providers introduced into their business, and also wanted to understand how to mitigate these risks. Mobius assisted the bank by designing and developing a Third Party Cyber Risk Management (TPCRM) approach that was tailored to their unique […]

Cyber Security and Incident Response A multinational client in the financial services industry recently asked Mobius to conduct a Cyber Security incident response review and simulation exercise. The primary objective of the project was to help improve the organisation’s readiness to respond to a major Cyber Security incident. The project included the following: Development of […]

A client in the Consumer Services industry was forced to make extensive use of remote working from home as a result of the COVID-19 lockdown. Their concern was that the home networks and computers used by employees were not secure, and if breached could result in various risks such as disclosure of sensitive data. The […]

A global client in the machinery and equipment business recently asked Mobius Consulting to facilitate Information Privacy awareness training across its various sites in 8 Provinces across the country. Mobius has previously assisted this client in completing a Privacy Gap assessment and subsequently, is currently assisting with the implementation of remediation activities that were recommended […]

A multinational client approached Mobius with the requirement of running two internal penetration tests and two vulnerability scans at two remote offices simultaneously. The client, however, did not have the budget for an onsite analyst at both locations, their budget allowed for only one onsite analyst at one location.  As an organisation, Mobius always endeavours […]

Mobius recently assisted an Oil and Gas company with a Cyber Security Incident Simulation exercise. The Primary objective of the Simulation was to test the company’s playbooks and stakeholder understanding and involvement in the incident response process. The key deliverables of the project were as follows: Create a tabletop Incident Scenarios including all the possible […]

Mobius Consulting assisted in implementing an Information Security Management System (ISMS) at a leading financial institution, with the primary objective of obtaining ISO27001 Certification. The scope of certification pertained to a core banking platform, along with related core banking processes. In order to ensure this was possible, Mobius used a practical and technologically-led approach to: […]

Mobius Consulting assisted a food and beverages company with defining and implementing data governance based on a custom Mobius Data Governance Framework.  The organisation’s data and technical requirements had changed and influenced a decision to move various datasets to a cloud computing service provider.  The move to the Cloud made it imperative to put in […]

Mobius Consulting assisted with improving the reporting of Information Security at a financial institution through the use of appropriate Information Security metrics and measurements at the Board and Executive levels. The primary objective of the engagement was to define the Information Security metrics and measurements, based on best practices, that should be used for effective […]

Mobius recently completed a Cyber Security Capability and Risk Assessment for a leading financial services organisation. The assessment was based on the NIST Cybersecurity Framework and included both a risk-based and capability maturity based assessment. The project included the development of a cybersecurity Future State Roadmap for risk reduction and improved security capability. The key […]

Mobius delivered on a project to highlight the potential risks of accessing “free” wireless access points and how this can lead to a targeted attack against the user and even the company they work for. The project included the delivery of a proof of concept rogue wireless access point that was deployed at a client conference. […]

Mobius is assisting a client in the financial industry with defining and documenting business-friendly names, descriptions and segregation of duties conflicts for access permissions/access rights on critical financial systems. Timelines to deliver on this engagement are extremely tight with role names, descriptions and segregations of duties needing to be completed for 90 applications over a […]

Mobius Consulting is assisting a premium financial service group in assessing their high-risk Third Parties cyber security control environment. The primary objective is to identify, profile according to the risk and then assess high-risk third parties in order to identify, log and ultimately help mitigate third party risk. Each new and existing Third Party is […]

A global brand management and distribution organisation appointed Mobius to perform a detailed Information Privacy gap analysis based on the current state of the local (South African) divisions. The objective of the project was to understand what is required to ensure compliance to the Protection of Personal Information Act (POPIA) across the business divisions as […]

A well known Financial Institute identified a need to enrich their Information Security strategy and enablement practices to cater for a number of requirements across compliance, risk and external regulations. In order to meet some of these requirements, they engaged Mobius to assist with the development and execution of information security metrics that support and […]