Developing IT Skills in Young Africans – Immense Potential for Continent’s Economic Growth

By Chris Norton

Africa is a vibrant, diverse, and innovative continent. According to the Brookings Institution, a research think-tank based in the US, Africa is underestimated and misunderstood but holds immense potential to contribute positively to the global economy and drive prosperity for its people.

As Africans, we must agree we are often misrepresented by regions that don’t understand our diverse culture and local nuances, but we cannot neglect the incredible innovation and development throughout the continent.

Chris Norton is Veeam’s Regional Director of Africa.
Chris Norton, Veeam’s Regional Director of Africa.

Read also:South African VC Firm Leads $2.3m Investment In Nigerian Health-tech Startup MDaaS Global

“Immense Potential”

Africa has the youngest population in the world meaning that the continent has the dynamism and energy to become a substantial force as the future workforce comes of age.

However, there is a degree of urgency to unlock this immense potential because other regions, both to the East and the West, are hurtling ahead with technological advancements that not only provide more convenience for consumers on those shores but also give their businesses a competitive edge.

It is certainly possible for Africa to become more competitive internationally and help generate jobs, especially for the youth, but at the very minimum, it requires a focus on education (and skills) and broad information and communication technology (ICT) infrastructure rollout, supported by governments and driven by an entrepreneurial private sector.

Read also:Nigeria’s Terragon Verified as Leader in Data and Marketing Technology

The world is undergoing a rapid evolution with the mass uptake of cloud computing and its ability to harness Artificial Intelligence (AI), machine learning, automation, and more.

Digital transformation is no longer a concept but a reality for businesses around the world striving to remain competitive and differentiate their products and services. Veeam Data Protection Report 2021 found that 96% of organisations around the world are accelerating cloud usage.

Africa Facing Skills Shortages

The risk for Africa is that it gets left further behind. The Veeam Data Protection Report 2021 also found that 88% of organisations in Africa said that after disruptions from the global pandemic, their digital transformation projects were either delayed or obstructed by a reliance on legacy systems (46%) and very importantly, and a shortage of IT skills (38%).

Read also:Vodacom Business Africa Goes Trans-Atlantic, Berths in South America

Even in African regions that are more technologically advanced, such as South Africa, a lack of skills puts the brakes on what could be possible and results in a greater “digital divide”.

Many companies in South Africa are mature from an information technology (IT) perspective but because the hunt for skills is so competitive, with far fewer available skills than there is demand for, often these companies just cannot find the people to build the complex infrastructures they need to take full advantage of cloud computing.

This is compounded by countries abroad valuing the skills and costs of local talent, meaning the “brain drain” to other shores exacerbates the challenge.

Infrastructure Woes

Beyond skills, experience on the ground in Africa reveals that infrastructure provides another obstacle to digital transformation.

Assuming they do find the skills or employ the services of third-party vendors – many of which on the continent are well-versed and skilled not only in IT matters but also in the nuances of doing business on the continent – many companies, across various countries, simply cannot build the types of ecosystems they need to be globally competitive because there isn’t sufficient fixed infrastructure and connectivity to support this.

Read also:Carbon Partners With Visa to Enable Payments Across Africa

It is prudent to point out that obstacles in Africa don’t mean the end of the road.

This is an innovative and dynamic continent and companies will often develop solutions that leapfrog generations of technology – an example is the fintech industry, where Africans led the charge to financially include millions of people, who went from nothing to transacting with an e-wallet. This doesn’t ordinarily happen in developed markets.

There needs to be a concerted effort to roll out ICT infrastructure on the continent. This requires buy-in and the lobbying of governments and regulators. The rollout can be expedited with strategic public-private partnerships.

Education Most Be a Focus

A study published in the IIMB Management Review-Journal 2018 called “ICT infrastructure and economic growth: A causality evinced by cross-country panel data”, based on information gathered from G-20 nations, found that to stimulate economic growth, a country needs to upgrade and roll out ICT infrastructure with a focus on broadband adoption.

In parallel to broad investment in ICT infrastructure, education must be prioritised. Education is the bedrock of skills development, and futureproofing the nation.

All efforts to lobby for broader inclusion should be supported and applauded, especially in South Africa’s context of institutionalised unequal access to quality education. Many businesses already offer internships and other skills-building initiatives, and these are crucial in securing future workers for the industry.

Upskilling within IT departments also has a key role to play in ensuring there are enough skills on the continent. As an industry, every one of us needs to continually learn – both formally and informally.

Businesses would do well to incentivise skills development, and this is the reason companies invest so much time in the career development of their employees with vast internal training programmes. Skills are the currency of IT.

 

Chris Norton is Veeam’s Regional Director of Africa.

 

Kelechi Deca

Kelechi Deca has over two decades of media experience, he has traveled to over 77 countries reporting on multilateral development institutions, international business, trade, travels, culture, and diplomacy. He is also a petrol head with in-depth knowledge of automobiles and the auto industry

How Companies Should Deal with the Threat of Cybercrime

Ian Engelbrecht, Africa Lead Systems Engineer at Veeam

By Ian Engelbrecht

Cybercrime is on the rise and South African C-suites would do well to ensure that they have up-to-date and appropriately resourced strategies to deal with its threat. The pandemic showed us that while land and sea borders can be shut, in the digital village this is not possible, and more importantly, in many instances, it is unclear where these attacks originate.

The definition of cybercrime perhaps holds the key to who should take it seriously. Cybercrime is defined as criminal activities that are carried out by means of a computer or the internet. Anyone who uses a computer that is connected to the internet should have a cybercrime strategy in place. No matter where you are in the world, if you let your guard down you are at risk. Everyone needs to be responsible for keeping data safe.

Ian Engelbrecht,  Africa Lead Systems Engineer at Veeam
Ian Engelbrecht,  Africa Lead Systems Engineer at Veeam

Read also:Backed By Kalon Venture, South African Cybersecurity Startup Sendmarc Goes International

Ageing infrastructure and reduced budgets in South Africa and the rest of the continent make these shores rich hunting grounds for unscrupulous networks of cybercriminals.

These reduced budgets, compounded by economic shocks caused by the pandemic, have in many instances in our experience made it more difficult for Chief Information Security Officers (CISOs) and Information Security managers to fully implement their strategies, leaving weak points in their defence.

However, despite this and the increase in sophisticated cyberattacks, the Veeam Data Protection Report 2021 shows that the top global challenge facing organizations is economic uncertainty, surpassing cyber threats which were the top threat last year. Similarly, the top challenges anticipated by African organizations in the next 12 months is industry disruption (35%), economic uncertainty (32%) and meeting changing customer needs (32%). The threat landscape is continuing to evolve and prioritising a solid cybercrime strategy can never be overemphasised.

Read also:Sparkle Business Launches Mobile App to Support SMEs in Nigeria

One of the fastest-growing trends is phishing emails, where the user is tricked into clicking on a link to a fake login page that shares credentials with the attacker. The problem with these attacks is that the culprits are becoming very good at making the emails appear authentic and as if they come from a legitimate source.

Another growing trend we encounter is ransomware, where a business’s critical data is encrypted and rendered unusable until a ransom is paid, which is when an encryption key is provided. In many cases ransomware attacks are very well coordinated and some target specific entry points using phishing.

To bring this point home, City Power in Johannesburg suffered a high-profile attack with a ransomware virus that impacted most of its IT systems. The ransomware affected their primary website, which is used by citizens to log complaints and purchase prepaid electricity.

It’s not as if these two trends are not well-known, yet the sophistication of these attacks often surprises companies. We have encountered instances where the attackers find security flaws and exploits in perimeter hardware and software before the vendor is even aware or has rolled out global patches or updates.

Read also:South African Crypto Investment Startup, Revix, Secures $4 Million

The pandemic has no doubt compounded matters because of the large uptake of remote working. Home networks can be less secure than those one would typically find in a corporate office if regular security updates and processes are not followed.

This has exponentially increased the attack surface for criminals. Many of these criminals work in networks that are sophisticated, with research arms continually finding new and innovative ways to exploit companies and gain access to sensitive business data.

Everyone is at risk, whether they are in the financial sector or even government – wherever there is data that can be used against them, there is an opportunity for cybercriminals.

Yet, basic data protection needs are unmet with almost three quarters (69%) of African organizations reporting a “protection gap” between how frequently data is backed up versus how much data they can afford to lose after an outage.

Cybercriminals will exploit any weaknesses and one vulnerable entry-point can expose the business to crippling attacks. For example, criminals intercept payments through fake accounting or render duplicate invoices from compromised finance department email addresses, and redirect the money to different bank accounts.

What should companies do?

First, businesses need to recognise that cybersecurity is a business issue, and any downtime is not just an IT problem. According to the Veeam Data Protection Report 2021, over two in five (62%) of African organizations said that a loss of customer confidence was most concerning the potential impact of application downtime. More than half (57%) fear damage to brand integrity and almost one-third (30%) think this could result in a loss of employee confidence.

C-suites should ensure IT departments have the resources required to harden security and to ensure that pen testing is done on a regular basis – this could be as often as monthly, or in some instances once a quarter. The point is that the latest known exploits are being tested against the infrastructure.

Education is vital. Companies should spend time and money continuously educating users on security best practices and processes. These campaigns should make them aware of what to look out for, what to do and what not to do. Simple phishing exploits can be avoided by educating the workforce – but it must stay top of mind and share regular best practice that addresses the latest cybercriminal tactics. A company can have the latest, state-of-the-art perimeter security but it will be worth little if a user within that protected network accidentally opens a door (or an email) that lets criminals in.

Finally, and most importantly, every organisation must have a last line of defence because it is challenging to always be a step ahead of the criminals. Organisations should follow what Veeam calls the 3-2-1 rule: three copies of data, two of which are on separate storage mediums and one is stored offsite. These copies should be agnostic to hardware, software, hypervisor and public-cloud platforms. If your data centre is compromised, you should be able to use these copies and have various options of where to deploy as a temporary measure, to get your business back up and running should the worst happen.

These additional copies must be tested on a regular basis as they, too, are rendered useless if they cannot be restored. The final checkbox with your data copies is to ensure they are encrypted and protected from theft and are immutable in some way that they cannot be compromised or deleted.

It is imperative that organisations prioritise strategies to mitigate and prevent cyberattacks as part of their modern data protection initiatives. As more organisations invest in robust plans of action to defend themselves, it places those that haven’t kept pace at heightened risk as cybercriminals look for new targets.

Ian Engelbrecht is the  Africa Lead, Systems Engineer at Veeam

Kelechi Deca

Kelechi Deca has over two decades of media experience, he has traveled to over 77 countries reporting on multilateral development institutions, international business, trade, travels, culture, and diplomacy. He is also a petrol head with in-depth knowledge of automobiles and the auto industry

Three Cybersecurity Resolutions for Businesses in 2021

Edwin Weijdema, Global Technologist at Veeam

By Edwin Weijdema

Between more sophisticated cybercriminals and immense pressure to ensure governance on compliance, 2021 is already shaping up to be a minefield. And as such, cybersecurity has risen to the top of most organisations’ agendas. With this in mind, here are three cybersecurity resolutions every business should consider this year:

Edwin Weijdema, Global Technologist at Veeam
Edwin Weijdema, Global Technologist at Veeam

Watch out – Dark Clouds are on the horizon

Businesses haven’t been the only ones accelerating their digital transformation this year – cybercriminals have been hard at it too. There has been a sharp rise in ‘Dark Clouds’ as cybercriminals have migrated to the cloud, often for the same reasons businesses have – cloud allows them to avoid big up-front capital expenses, pay monthly for their shady businesses and scale up only when they need to. Coupled with the ability to access information from anywhere, it’s no wonder we’re seeing cybercriminals innovate.

Read also:Five Cybersecurity Threats to the COVID-19 Vaccine

This ranges from cloud-based caches filled with stolen user data such as email addresses and authentication credentials, to personal identifiable information (PII) such as scans of passports, driver’s licenses and bank statements.

Team up – cybersecurity has turned personal

Between collaborating cybercriminals, the upwards trajectory of data growth and the distributed workforce, the risk factor for every business is accelerating. This is one reason why we expect to see most businesses increase their general IT spending by around 5-10% this year, despite the economic impact of the pandemic. And we expect most of that allocation to go towards IT security. We have already seen how cyberattacks are on the rise in South Africa with news reports of high profile data breaches of several financial institutions.

Read also:Africa is a Goldmine of Cybersecurity Opportunities, Experts

But even with these investments, it won’t be enough to cover all the potential threat vectors. So, businesses will still be forced to place strategic bets across their people, processes and technology in the hope of covering their weakest points.

That’s why making sure every member of the company plays in the cybersecurity challenge is key, especially now that working from home is proving to become a permanent culture with lockdown restrictions. For example, while employees may be a business’ biggest weakness, they also form the ‘human firewall’ and need to be equipped to do just that – which takes education.

Gear up – look to hybrid security and intelligent backup to stay ahead

Technology is always going to be the heart of the cybersecurity fight, but no one product is going to maximize the cybersecurity state – businesses need to invest in their desired outcome. To do that, organisations need to look for software-defined models integrated with external services – a hybrid security approach. 

Read also:Cybersecurity is a puzzle – Make sure you have all the pieces

This includes cloud-based software such as PenTesting-as-a-Service (PtaaS), Scanning-as-a-Service (ScaaS), Network Defense-as-a-Service (NDaaS), Disaster Recovery-as-a-Service (DRaaS) and Backup-as-a-Service (BaaS).

A hybrid security approach which has internal security teams connected to external cybersecurity experts and law enforcement will be the most secure, while also helping raise the experience level of your security teams.

Edwin Weijdema, Global Technologist at Veeam

Kelechi Deca

Kelechi Deca has over two decades of media experience, he has traveled to over 77 countries reporting on multilateral development institutions, international business, trade, travels, culture, and diplomacy. He is also a petrol head with in-depth knowledge of automobiles and the auto industry