{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T15:26:35Z","timestamp":1781105195048,"version":"3.54.1"},"reference-count":32,"publisher":"IGI Global Scientific Publishing","issue":"4","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2012,10,1]]},"abstract":"<p>A government has the responsibility to provide, regulate and maintain national security, which includes human security for its citizens. Recent declarations from the UK and USA governments about setting up cybersecurity organisations and the appointment of cyber czars reflect a global recognition that the Internet is part of the national critical infrastructure that needs to be safeguarded and protected. Although the South African government approved a draft National Cyber Security Policy Framework in March 2012, the country still needs a national cybersecurity governance structure in order to effectively control and protect its cyber infrastructure. Whilst various structures have been established to deal with cybersecurity in South Africa, they are inadequate and implementation of the policy is still in the very early stages. Structures need to be in place to set the security controls and policies and also to govern their implementation. It is important to have a holistic approach to cybersecurity, with partnerships between business, government and civil society put in place to achieve this goal. This paper investigates different government organisational structures created for the control of national cybersecurity in selected countries of the world. The main contribution is a proposed approach that South Africa could follow in implementing its proposed cybersecurity policy framework, taking into account the challenges of legislation and control of cybersecurity in Africa, and in particular, in South Africa.<\/p>","DOI":"10.4018\/ijcwt.2012100102","type":"journal-article","created":{"date-parts":[[2013,10,25]],"date-time":"2013-10-25T10:05:19Z","timestamp":1382695519000},"page":"13-27","source":"Crossref","is-referenced-by-count":3,"title":["An Approach to Governance of CyberSecurity in South Africa"],"prefix":"10.4018","volume":"2","author":[{"given":"Joey","family":"Jansen van Vuuren","sequence":"first","affiliation":[{"name":"Council for Industrial and Scientific Research, Pretoria, South Africa"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Louise","family":"Leenen","sequence":"additional","affiliation":[{"name":"Council for Industrial and Scientific Research, Pretoria, South Africa"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jackie","family":"Phahlamohlaka","sequence":"additional","affiliation":[{"name":"Council for Industrial and Scientific Research, Pretoria, South Africa"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jannie","family":"Zaaiman","sequence":"additional","affiliation":[{"name":"University of Venda, Thohoyandou, South Africa"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"2432","reference":[{"key":"ijcwt.2012100102-0","unstructured":"Allan, D. (2010). Defence minister to stress need for cyber-defence. Retrieved February 15, 2011, from http:\/\/www.techwatch.co.uk\/2010\/11\/09\/defence-minister-to-stress-need-for-cyber-defence\/"},{"key":"ijcwt.2012100102-1","unstructured":"Amit, I. I. (2011). Information security intelligence report: A recap of 2010 and prediction for 2011. Retrieved February 5, 2011, from www.Security-Art.com"},{"key":"ijcwt.2012100102-2","unstructured":"Boyd, C. (2010). Why Estonia is the poster child for cyber-security. Retrieved February 5, 2011, from http:\/\/news.discovery.com\/tech\/why-estonia-is-the-poster-child-for-cyber-security.html"},{"key":"ijcwt.2012100102-3","unstructured":"Burghardt, T. (2012). The launching of USA cyber command (CYBERCOM), offensive operations in cyberspace. Retrieved February 24, 2012, from http:\/\/www.globalresearch.ca\/index.php?context=va&aid=14186"},{"key":"ijcwt.2012100102-4","unstructured":"CESG. (2012). The national technical authority for information assurance. Retrieved October 18, 2012, from http:\/\/www.cesg.gov.uk\/AboutUs\/Pages\/history-CESG.aspx"},{"key":"ijcwt.2012100102-5","unstructured":"Council on Foreign Relations. (2008). Barack Obama\u2019s speech at the University of Purdue. Retrieved October 21, 2012, from http:\/\/www.cfr.org\/us-election-2008\/barack-obamas-speech-university-purdue\/p16807"},{"key":"ijcwt.2012100102-6","doi-asserted-by":"publisher","DOI":"10.4018\/ijcwt.2011010103"},{"key":"ijcwt.2012100102-7","unstructured":"Davis, G. (2012). State security in charge of cybercrime plans. Retrieved February 21, 2012, from http:\/\/www.iol.co.za\/dailynews\/ news\/state-security-in-charge-of-cybercrime-plans-1.1238243"},{"key":"ijcwt.2012100102-8","unstructured":"Deloitte & Touche. (2010). National cybersecurity strategies. In Proceedings of the GOVCERT.NL Symposium."},{"key":"ijcwt.2012100102-9","unstructured":"Duncan, G. (2011). New cyber attacks hit South Korea. Retrieved March 5, 2011, from http:\/\/www.digitaltrends.com\/computing\/new-cyberattacks-hit-south-korea\/"},{"key":"ijcwt.2012100102-10","unstructured":"Enisa. (2013). New regulation for EU cybersecurity agency ENISA, with new duties. Retrieved July 22, 2013, from http:\/\/www.enisa.europa.eu\/media\/press-releases\/new-regulation-for-eu-cybersecurity-agency-enisa-with-new-duties"},{"key":"ijcwt.2012100102-11","unstructured":"Espiner, T. (2010). UK's cyberdefence centre gets later start date. Retrieved February 21, 2011, from http:\/\/www.zdnet.co.uk\/news\/security-threats\/2010\/03\/10\/uks-cyberdefence-centre-gets-later-start-date-40082405\/"},{"key":"ijcwt.2012100102-12","unstructured":"Evron, G. (2008). Estonian cyber security strategy document: Translated and public. Retrieved 15 February 2011 from http:\/\/www.circleid.com\/posts\/estonian_cyber_security_strategy\/"},{"key":"ijcwt.2012100102-13","doi-asserted-by":"crossref","unstructured":"Ghernouti-Helie, S. (2010). A national strategy for an effective cybersecurity approach and culture. In Proceedings of the 2010 International Conference on Availability, Reliability and Security.","DOI":"10.1109\/ARES.2010.119"},{"key":"ijcwt.2012100102-14","unstructured":"Guardian. (2010). Chinese army to target cyber war threat. Retrieved February 15, 2011, from http:\/\/www.guardian.co.uk\/world\/2010\/jul\/22\/chinese-army-cyber-war-department"},{"key":"ijcwt.2012100102-15","unstructured":"Hsiao, R. (2010). China\u2019s cyber command? China Brief, 10(15)."},{"key":"ijcwt.2012100102-16","first-page":"34","article-title":"National power.","volume":"27","author":"D.Jablonsky","year":"1997","journal-title":"Parameters"},{"key":"ijcwt.2012100102-17","unstructured":"Legalbrief Today. (2013). Cyber security hub should become operational during 2013\/2014. Retrieved July 22, 2013, from http:\/\/www.legalbrief.co.za\/article.php?story=20130406051943406"},{"key":"ijcwt.2012100102-18","unstructured":"Leyden, J. (2010). South Korea sets up cyberwarfare unit to repel NORK hackers. Retrieved March 4, 2011, from http:\/\/www.theregister.co.uk\/2010\/01\/12\/korea_cyberwarfare_unit\/"},{"key":"ijcwt.2012100102-19","unstructured":"NATO. (2010). Strategic concept for the defence and security of the members of the NATO. Retrieved December 30, 2010, from http:\/\/www.nato.int\/cps\/en\/natolive\/official_texts_68580.htm"},{"key":"ijcwt.2012100102-20","unstructured":"Nguyen, A. (2011). Government launches cyber security hub pilot. Retrieved October 21, 2012, from http:\/\/news.idg.no\/cw\/art.cfm?id=9A0333CD-C9CB-C479-391FFB8B09F4502F"},{"key":"ijcwt.2012100102-21","unstructured":"Phahlamohlaka, L. J., van Vuuren, J. C., & Coetzee, A. J. (2011). Cyber security awareness toolkit for national security: An approach to South Africa's cyber security policy implementation. In Proceedings of the First IFIP TC9\/TC11 Southern African Cyber Security Awareness Workshop (SACSAW), Gaborone, Botswana."},{"key":"ijcwt.2012100102-22","unstructured":"SA Government Gazette. (2010). South African national cyber security policy. Government Gazette 32963, Notice 18."},{"key":"ijcwt.2012100102-23","doi-asserted-by":"publisher","DOI":"10.1017\/CBO9781139169288"},{"key":"ijcwt.2012100102-24","unstructured":"South Africa Government Information. (2012). Statement on the approval by cabinet of the cyber security policy framework for South Africa. Retrieved October 21, 2012, from http:\/\/www.info.gov.za\/speech\/DynamicAction?pageid=461&sid=25751&tid=59794"},{"key":"ijcwt.2012100102-25","unstructured":"Stienon, R. (2010). Seven cyber scenarios that should keep you up at night. Retrieved February 15, 2011, from http:\/\/threatchaos.com\/"},{"key":"ijcwt.2012100102-26","unstructured":"Stokes, M. A., Lin, J., & Hsiao, R. (2011). The Chinese People's Liberation Army signals intelligence and cyber reconnaissance infrastructure: Project 2049."},{"key":"ijcwt.2012100102-27","unstructured":"Tiirmaa-Klaar, H. (2010). International cooperation in cyber security: Actors, levels and challenges. In Proceedings of Cyber Security 2010, Brussels. United States. Executive Office of the President. (2009). Cyberspace policy review, assuring a trusted and resilient information. Retrieved February 12, 2011, from http:\/\/www.whitehouse.gov\/assets\/documents\/Cyberspace_Policy_Review_final.pdf"},{"key":"ijcwt.2012100102-28","author":"J.van Vuuren","year":"2012","journal-title":"Development of a South African cybersecurity implementation framework. Krekel, B. (2009). Capability of the People's Republic of China to conduct cyber warfare and computer network exploitation"},{"key":"ijcwt.2012100102-29","first-page":"171","article-title":"The impact of the increase in broadband access on national security and the average citizen.","volume":"5","author":"J.van Vuuren","year":"2010","journal-title":"Journal of Information Warfare"},{"key":"ijcwt.2012100102-30","doi-asserted-by":"publisher","DOI":"10.4018\/ijcwt.2011010104"},{"key":"ijcwt.2012100102-31","unstructured":"Zorz, Z. (2010). South Korea preparing for cyber war. Retrieved February 5, 2011, from http:\/\/www.net-security.org\/secworld.php?id=8722"}],"container-title":["International Journal of Cyber Warfare and Terrorism"],"original-title":[],"language":"ng","link":[{"URL":"https:\/\/www.igi-global.com\/viewtitle.aspx?TitleId=90838","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,6,1]],"date-time":"2022-06-01T12:29:52Z","timestamp":1654086592000},"score":1,"resource":{"primary":{"URL":"https:\/\/services.igi-global.com\/resolvedoi\/resolve.aspx?doi=10.4018\/ijcwt.2012100102"}},"subtitle":[""],"short-title":[],"issued":{"date-parts":[[2012,10,1]]},"references-count":32,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2012,10]]}},"URL":"https:\/\/doi.org\/10.4018\/ijcwt.2012100102","relation":{},"ISSN":["1947-3435","1947-3443"],"issn-type":[{"value":"1947-3435","type":"print"},{"value":"1947-3443","type":"electronic"}],"subject":[],"published":{"date-parts":[[2012,10,1]]}}}