Convergence of cyber and physical security

Issue 4 2023 Integrated Solutions, Security Services & Risk Management

Richard Frost.

With South Africa being the sixth most targeted country worldwide regarding cyberattacks, it’s no surprise that organisations have to put numerous steps in place to protect their networks and data. This is all the more crucial in a world where we have legislation such as GDPR and PoPI that dictate how people’s data can be stored, used and transmitted, with harsh financial penalties for those found in contravention.

More companies are investing in network and data security solutions and are being proactive in preventing breaches by carrying out active threat hunting, while there’s also a growing effort to separate information technology from operational technology as an additional security measure.

With more investment into network and endpoint security, these threat actors are now turning to tactics such as phishing and spear-phishing in order to get malware onto an organisation’s network. With employees more likely to be the weakest link in an organisation, the human firewall element has to be a key consideration, and cybersecurity awareness and training have to be carried out regularly.

Remote and hybrid working bring with them additional security challenges for organisations; while employees might receive cybersecurity training and practise safer online behaviour, the same might not be said for children or elderly members of the family who are sharing a Wi-Fi connection and could potentially compromise all devices on the network. The security situation is worse if an employee connects from a public Wi-Fi connection. Here, endpoint detection and response become key.

Cyber and physical focus

Employees will also have to be mindful of more than just digital security breaches, but also physical security issues. As an example, improperly discarded documents that contain personal, financial and other sensitive information can be used to build a profile against someone as part of a spear-phishing attack. Or think of having confidential documents that stay displayed on a screen or are printed out and laid on a table for anyone to see. Employees will have to be cognisant of how they are storing and discarding information at home too.

New challenges also loom on the horizon for businesses. With larger organisations being able to protect themselves better, hackers are targeting third parties who might be smaller suppliers, business partners or even clients. The majority of large security breaches that occurred last year were due to a smaller company first being breached in order to ultimately gain access to a larger organisation. We are also seeing how artificial intelligence (AI) can be a double-edged sword with tools such as ChatGPT being used by hackers to create malware.

Integrated security management

With threat actors always looking at new ways to breach corporate defences, organisations will have to respond with an ongoing investment in their security, both through the deployment of relevant products or solutions, and the continuous training of employees. However, while organisations might be doing more to be better protected against cyberattacks, what happens if someone breaks into their offices and then walks out with their PCs and servers?

We have already seen the overlap between cybersecurity and physical security when it comes to ensuring employees take better care of confidential corporate information. Going forward, the overlap will necessitate the integration of cybersecurity and physical security in order to enable the sharing of events to the same security operations centre (SOC).

For more information, contact Richard Frost, Armata, [email protected],

Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Stadium security with Panomera
Editor's Choice CCTV, Surveillance & Remote Monitoring Integrated Solutions Entertainment and Hospitality (Industry)
To be able to better identify and track perpetrators and thus reduce financial and non-material damage in a soccer stadium, the operator opted for a video security solution from Dallmeier.

Plan to use AI? Get your data ready
Integrated Solutions IT infrastructure
Artificial Intelligence (AI) is often perceived as an intelligent system that can handle any task. However, this notion crumbles when the AI is given poorly formatted or incorrect data. You cannot simply provide a few spreadsheets or databases to AI and expect it to work flawlessly.

Smart water management
Axis Communications SA CCTV, Surveillance & Remote Monitoring Integrated Solutions
South Africa is currently facing a water crisis, with scarcity and inefficient water management posing significant challenges to sustainable, consistent access to water. Smart technology and powerful partnerships may offer a proactive solution to SA's water crisis.

Is AI the game-changer for streamlining anti-money laundering compliance?
Financial (Industry) Security Services & Risk Management
In the aftermath of South Africa's recent grey listing, companies are now confronted with the imperative to address eight identified strategic deficiencies, while simultaneously reducing their financial crime risk through anti-money laundering compliance processes.

Client satisfaction boosted by 85% at Thungela Mine
Thorburn Security Solutions News Security Services & Risk Management Mining (Industry)
Thorburn Security, a division of Tsebo Solutions Group, has announced its recent collaboration with Kwa-Zulu Natal security company, Ithuba Protection Services, as part of its Enterprise Supplier Development (ESD) initiatives across Africa.

Empowering Istanbul’s public transportation
Dahua Technology South Africa CCTV, Surveillance & Remote Monitoring Integrated Solutions
Dahua's intelligent transportation solution, using technologies like DSM and AI-based passenger flow counting, has facilitated an intelligent system upgrade for nearly 6 400 minibuses and electric buses in Istanbul.

Migrating to the cloud? Beware the many hurdles
IT infrastructure Security Services & Risk Management
While there are undoubtedly many benefits, there are also numerous hurdles to cloud adoption. Some of the biggest challenges revolve around managing cloud spend, understanding the cost components of cloud infrastructure, and how those costs can scale.

Key strategies for businesses in the face of cyber threats
Cyber Security Security Services & Risk Management
Businesses face severe financial and reputational consequences due to data breaches and daily website hacks, and not all organisations are adequately prepared to combat these escalating threats.

Collaboration delivers integrated and holistic security
Guardian Eye CCTV, Surveillance & Remote Monitoring News Integrated Solutions
Guardian Eye and Lytehouse have partnered to integrate their speciality solutions and provide a holistic security offering that overcomes the fragmentation of security systems and services.

Protecting South African systems through XDR cybersecurity
Cyber Security Security Services & Risk Management
Carlo Bolzonello, Country Lead for Trellix South Africa, discusses how the country can protect its valuable digital assets through the artificial intelligence-enabled Extended Detection and Response (XDR) cybersecurity approach.