Analysis of COVID-19 Effects on Cybersecurity in South African-Based Organizations
| dc.contributor.advisor | Kyobe, Michael | |
| dc.contributor.author | Daya, Mahima | |
| dc.date.accessioned | 2025-07-03T10:08:09Z | |
| dc.date.available | 2025-07-03T10:08:09Z | |
| dc.date.issued | 2025 | |
| dc.date.updated | 2025-07-03T10:01:14Z | |
| dc.description.abstract | The COVID-19 pandemic has significantly impacted cybersecurity practices in South African organisations across various sectors, including financial services, healthcare, retail, and technology, with vulnerabilities arising from remote work, digital infrastructure, and financial strain. This study applied Engström's Activity Theory Framework to explore the effects of the pandemic on cyber-threats, vulnerabilities, and organisational responses. The findings reveal that remote workers faced significant vulnerabilities during the pandemic, making them susceptible to phishing and social engineering attacks. The study highlights the importance of cybersecurity awareness training and education for employees in South African organisations. The economic instability of South Africa during the pandemic led to an increased appeal of cyber-threats, underscoring the need for enhanced cybersecurity strategies. The study's findings provide practical recommendations for enhancing cybersecurity strategies, including the adoption of secure remote work solutions and the development of incident response plans. The results underscore the importance of cybersecurity awareness training and education for employees. The study's methodology involved conducting 30 semi-structured interviews with South African organisations from the financial, healthcare, retail, and technology sectors, employing thematic analysis to delve into the realm of cybersecurity management practices during the pandemic. Despite its limitations, including a limited data sample and potential lack of generalisability to all South African organisations, this study contributes to the existing literature and provides valuable insights for policymakers, organisations, and cybersecurity professionals. The findings suggest that to mitigate risks, organisations should prioritise cybersecurity and invest in comprehensive cybersecurity solutions. Employee training is essential for enhancing cybersecurity awareness and preventing cyberattacks. Regulatory compliance is crucial for ensuring data privacy and security standards are met. Investments in digital infrastructure and cybersecurity education and training are also recommended to equip future professionals with the necessary skills to address emerging cyber threats. Future research should consider expanding data sources and conducting long-term analyses to gain a more comprehensive understanding of the cybersecurity challenges during and beyond the pandemic. | |
| dc.identifier.apacitation | Daya, M. (2025). <i>Analysis of COVID-19 fffects on cybersecurity in South African-based organisations</i>. (). University of Cape Town ,Faculty of Commerce ,Department of Information Systems. Retrieved from http://hdl.handle.net/11427/41513 | en_ZA |
| dc.identifier.chicagocitation | Daya, Mahima. <i>"Analysis of COVID-19 fffects on cybersecurity in South African-based organisations."</i> ., University of Cape Town ,Faculty of Commerce ,Department of Information Systems, 2025. http://hdl.handle.net/11427/41513 | en_ZA |
| dc.identifier.citation | Daya, M. 2025. Analysis of COVID-19 fffects on cybersecurity in South African-based organisations. . University of Cape Town ,Faculty of Commerce ,Department of Information Systems. http://hdl.handle.net/11427/41513 | en_ZA |
| dc.identifier.ris | TY - Thesis / Dissertation AU - Daya, Mahima AB - The COVID-19 pandemic has significantly impacted cybersecurity practices in South African organisations across various sectors, including financial services, healthcare, retail, and technology, with vulnerabilities arising from remote work, digital infrastructure, and financial strain. This study applied Engström's Activity Theory Framework to explore the effects of the pandemic on cyber-threats, vulnerabilities, and organisational responses. The findings reveal that remote workers faced significant vulnerabilities during the pandemic, making them susceptible to phishing and social engineering attacks. The study highlights the importance of cybersecurity awareness training and education for employees in South African organisations. The economic instability of South Africa during the pandemic led to an increased appeal of cyber-threats, underscoring the need for enhanced cybersecurity strategies. The study's findings provide practical recommendations for enhancing cybersecurity strategies, including the adoption of secure remote work solutions and the development of incident response plans. The results underscore the importance of cybersecurity awareness training and education for employees. The study's methodology involved conducting 30 semi-structured interviews with South African organisations from the financial, healthcare, retail, and technology sectors, employing thematic analysis to delve into the realm of cybersecurity management practices during the pandemic. Despite its limitations, including a limited data sample and potential lack of generalisability to all South African organisations, this study contributes to the existing literature and provides valuable insights for policymakers, organisations, and cybersecurity professionals. The findings suggest that to mitigate risks, organisations should prioritise cybersecurity and invest in comprehensive cybersecurity solutions. Employee training is essential for enhancing cybersecurity awareness and preventing cyberattacks. Regulatory compliance is crucial for ensuring data privacy and security standards are met. Investments in digital infrastructure and cybersecurity education and training are also recommended to equip future professionals with the necessary skills to address emerging cyber threats. Future research should consider expanding data sources and conducting long-term analyses to gain a more comprehensive understanding of the cybersecurity challenges during and beyond the pandemic. DA - 2025 DB - OpenUCT DP - University of Cape Town KW - COVID-19 KW - Cybersecurity KW - cybersecurity awareness training KW - remote work KW - South African organisations KW - vulnerabilities LK - https://open.uct.ac.za PB - University of Cape Town PY - 2025 T1 - Analysis of COVID-19 fffects on cybersecurity in South African-based organisations TI - Analysis of COVID-19 fffects on cybersecurity in South African-based organisations UR - http://hdl.handle.net/11427/41513 ER - | en_ZA |
| dc.identifier.uri | http://hdl.handle.net/11427/41513 | |
| dc.identifier.vancouvercitation | Daya M. Analysis of COVID-19 fffects on cybersecurity in South African-based organisations. []. University of Cape Town ,Faculty of Commerce ,Department of Information Systems, 2025 [cited yyyy month dd]. Available from: http://hdl.handle.net/11427/41513 | en_ZA |
| dc.language.iso | en | |
| dc.language.rfc3066 | eng | |
| dc.publisher.department | Department of Information Systems | |
| dc.publisher.faculty | Faculty of Commerce | |
| dc.publisher.institution | University of Cape Town | |
| dc.subject | COVID-19 | |
| dc.subject | Cybersecurity | |
| dc.subject | cybersecurity awareness training | |
| dc.subject | remote work | |
| dc.subject | South African organisations | |
| dc.subject | vulnerabilities | |
| dc.title | Analysis of COVID-19 Effects on Cybersecurity in South African-Based Organizations | |
| dc.type | Thesis / Dissertation | |
| dc.type.qualificationlevel | Masters | |
| dc.type.qualificationlevel | MCom |