4 ESSENTIAL SECURITY PRINCIPLES TO CONSIDER WHEN MOVING TO THE CLOUD

With Raymond Du Plessis and Sven Muller from Mobius Consulting.     Many large financial services companies with broad customer bases are moving to the cloud for improved accessibility, scalability, cost-effectiveness and new cloud based customer apps. However, this modernisation shift comes with its own set of challenges.  Mobius Consulting has worked closely with companies […]

INTRODUCING AMANDA HECHTER, SENIOR MANAGING CONSULTANT

        Technology consulting brings a new level of understanding to the implementation of information technology and benefits it can have for businesses; and Senior Managing Consultant at Mobius Consulting, Amanda Hechter is one such driver of the service line.   As part of the EXCO team and a service line leader, Amanda plays […]

XSS to SHELL

ZERO-DAY ADVENTURES – UNKNOWN UNTIL WE FOUND THEM For the astute among you, you’ll notice that the chaining of these types of exploits has been seen/used often enough, but the implications thereof are often overlooked. In this write-up we delve a little deeper into a real life example of how we uncovered three zero-days in […]

INTRODUCING RAYMOND DU PLESSES, SENIOR MANAGING CONSULTANT

  BACKGROUND   Raymond du Plessis is based in Mobius’ Johannesburg office. He began his studies at the University of South Africa (UNISA) and he has gone on to complete vocational studies through professional bodies like ISACA and ISC. Raymond believes that continual education, and more importantly the knowledge that you gain from it, forms […]

STRENGTH IN DIVERSITY WITH MOBIUS CONSULTING

      DIVERSITY IN LEADERSHIP AROUND THE WORLD   A recent study by Boston Consulting Group showed that companies that value diversity amongst staff and senior management increased their revenue by 19%. The study found that “increasing the diversity of leadership teams leads to more and better innovation and improved financial performance.” It looked […]

HOW DO THE OUTCOMES OF THIRD PARTY RISK MANAGEMENT INCREASE REGULATORY COMPLIANCE IN SOUTH AFRICA?

    WHAT ARE THE COMPLIANCE DRIVERS FOR THIRD PARTY RISK MANAGEMENT IN SOUTH AFRICA   The world has officially arrived in the age of information, with an ever-increasing amount of company, client and customer data at our fingertips. The increasing amounts of available information raises the need for organisations to take more responsibility for […]

INTRODUCING ROBERT LEN, LEAD SECURITY TESTER

Robert Len’s Background  Cape Town born, Robert Len has a Bachelor of Commerce, majoring in Information Systems. He also completed his MCSE and OSCP. Rob’s passion for information security has led him to pursue his masters in Computer Science, writing his thesis on in-browser crypto jacking.  Robert Len has specialised in information technology throughout his […]

4 ESSENTIAL SECURITY PRINCIPLES TO CONSIDER WHEN MOVING TO THE CLOUD

With Raymond Du Plessis and Sven Muller from Mobius Consulting. Many large financial services companies with broad customer bases are moving to the cloud for improved accessibility, scalability, cost-effectiveness and new cloud based customer apps. However, this modernisation shift comes with its own set of challenges.  Mobius Consulting has worked closely with companies in this […]

ENHANCING INFORMATION SECURITY PROGRAMMES IN MAURITIUS SINCE 2019

With Lovena Reddi, Managing Consultant for Mobius Consulting Mauritius     From South Africa to Mauritius   Mobius Consulting takes pride in empowering the largest group of companies in Mauritius with enhanced Information Security programmes. Mobius Consulting Mauritius, in collaboration with Mobius Consulting South Africa, assisted one of the largest conglomerates in Mauritius to set […]

5 STEPS TO CREATING A CYBER SECURITY INCIDENT RESPONSE FRAMEWORK

With Patrick Ryan, Amanda Hechter and Raymond du Plessis from Mobius Consulting        The NIST Cyber Security Incident Response Framework   Cyber security breaches should be taken as a “when” and not an “if” occurrence, especially given the rise in cyber attacks due to remote working. The wrong time to put your cyber security incident response plan in place is […]

KNOW AND MANAGE YOUR APPLICATION SECURITY RISK DURING COVID-19

With Amanda Hechter and Raymond du Plessis from Mobius Consulting as well and Lee Bristow from Phinity Risk     Improve your Identity and Access Governance (IAG) & Assess your Application Security Risk     With COVID-19 catching much of the world off-guard, there has been a scramble for organisations to make key applications, such […]

KNOW AND MANAGE YOUR APPLICATION RISKS DURING COVID-19

With Amanda Hechter and Raymond du Plessis from Mobius Consulting as well and Lee Bristow from Phinity Risk     Improve your Identity and Access Governance (IAG) & Assess your Application Security Risk     With COVID-19 catching much of the world off-guard, there has been a scramble for organisations to make key applications, such […]

ETHICAL HACKING AND CYBER SECURITY TESTING: 7 TESTS TO CHECK YOUR CYBER SECURITY

With Patrick Ryan, Managing Director; and Robert Len, Lead Security Tester of Mobius Consulting.      Remote Working may be the New Normal    To help slow down the spread of COVID-19, companies around the globe have sent their employees home, requiring them to work remotely. For some companies this transition to remote working was easy to implement as there has been […]

[FREE INFOGRAPHIC] 3 STEPS TO A SUCCESSFUL INFORMATION SECURITY AWARENESS CAMPAIGN

With Yolandi Moodley, Senior Managing Consultant for Mobius Consulting.     We live in the digital age, where information is shared at an astronomical rate. Since remote working has become the “new normal” in a very short space of time, many companies are entering uncharted territory when it comes to managing their information security risks. […]

KNOW AND MANAGE YOUR SUPPLIER SECURITY RISK DURING COVID-19-19

With Lee Bristow from Phinity Risk Solutions and Malcolm Parker, Senior Managing Consultant at Mobius Consulting.     Manage your Supplier Security Risk    The novel Coronavirus has created a number of challenges for society and most organisations are not well prepared to cope with this pandemic and the impact that it has on their trade. […]

HOW TO MAINTAIN CORPORATE PRIVACY IN A HOME-BASED OFFICE

With Patrick Ryan, Managing Director and Roelien Howell, Principal Consultant from Mobius Consulting.     POPIA: The Protection of Personal Information Act   The Protection of Personal Information Act (POPIA) aims to enforce protection of personal information by creating the lawful conditions for how this information must be managed. POPIA is closely related to the […]

CORONA VIRUS AND WORKING REMOTELY

4 CRITICAL RISKS FOR A COMPANY TO MANAGE   Coronavirus poses a risk to humanity, possibly the greatest risk to our physical health that many of us have faced in our lifetime, and at the same time, unethical cybercriminals are using the pandemic as an opportunity to increase hacking attempts and phishing attacks. In order […]

WHERE TO START WITH PRIVACY

Acting ethically means organisations need to understand their personal information processing activities together with the positive and negative impacts on all parties. This means organisations need to be effective data stewards and align processing activities with applicable privacy compliance requirements. Being compliant with privacy law / regulations may be daunting, however we have a recommended […]

A LOOK AT THE GDPR AND THE RELEVANCE TO NON EUROPEAN ENTITIES

It’s been almost a year since we received large amounts of emails informing us of updates to companies’ privacy policies. On May 25, 2018 the General Data Protection Regulation (GDPR) came into effect. The cost of non-compliance, with this extraterritorial regulation, for those entities which process EU citizen personal information, is still as high as [...]