Gerhard Cronje, Head: Cyber and Information Security Unit, South African Reserve Bank

Gerhard Cronje

Head: Cyber and Information Security Unit, South African Reserve Bank

Gerhard has more than fifteen years of experience embedding information security and information risk in organisations. Gerhard holds a B.Com Honours degree in Informatics as well as the CISSP, CISM, CGEIT, CIPT and CRISC certifications. His experience includes heading up Information Risk (focusing on information security) at a large retail bank and IT Governance (including information security) at a stock exchange for a number of years. Gerhard currently heads up the Cyber and Information Security function for the South African Reserve Bank.

Gerhard Cronje will be speaking on the following topic:

Panel discussion Assessing SA's national cyber risk 'thermometer' - what is our national risk level and how prepared are we in the case of an attack?

The probability and impact of cyber-attacks was rated as the top man-influenced risk facing countries and organisations in the recent 2018 World Economic Forum Global Risks Landscape report. The health, safety, security, economic well-being of citizens, effective functioning of government, and perhaps even the survival of the industrialised world, relies heavily upon interconnected critical systems. A country may experience widespread disruption or even loss of human life if these systems become inoperable. South African organisations responsible for critical infrastructure need to have a consistent and iterative risk-based approach towards identifying, assessing and managing cybersecurity risk. During this facilitated discussion, Craig will engage with key public and private sector stakeholders to discuss:

  • The current cyber risk challenges facing SA
  • Who are the main public and private institutions accountable at a national level?
  • What is the current state of our country's readiness to mitigate these threats?
  • Proposed initiatives and timelines and possible opportunities for joint public/private partnerships
Case study Developing a business-driven security strategy around prevention, detection, response and recovery
    Defining the reference framework from the technical level to executive level so that everyone understands the issues
  • Balancing the need for a tactical approach to plug any immediate threats while putting in place a proactive strategy for cybersecurity
  • Thinking like a hacker: identifying the systems/data that drive your business that could be attacked
  • Understanding what tools you need and ensuring that they are operationalised properly
  • How do you ensure that your security plan demonstrates a visible increase in security after implementation?

Event Sponsor

Diamond Sponsor

Platinum Sponsors

Security Survey & Executive Roundtable Sponsor

Gold Sponsors

Silver Sponsors

Bronze Sponsors

Display Sponsors

Showcase Sponsor


Endorsed by


pDBException: [1]: Database not defined