300+ ready-to-run tabletop exercises aligned to global standards IEC 62443, NERC-CIP, NIS2 and NIST — with Southern African regulatory context for the Mining, Energy, Water, Ports and Oil & Gas sectors.
From Johannesburg to Lusaka to Maputo — these are the global standards governing OT/ICS cybersecurity best practice. Every exercise maps to them, ensuring Southern African operations meet the same bar as global counterparts and satisfy corporate audit requirements.
The global benchmark for IACS security — referenced by Southern African mining, energy, and water sector operators. Scenarios map to security levels and control domains across SADC facilities.
NIST's definitive OT security guide — widely adopted by multinationals operating mining, ports, and energy assets across Southern Africa. Rev. 3 controls referenced across all SADC sectors.
All 300+ exercises align to CISA CTEP objectives with CPG 2.0 framework mapping and structured After Action Report export for regulatory defensibility across SADC regulators.
Required by South African financial regulators and international investors in the region's mining and energy sectors. Scenarios support Annex A controls for risk and incident response.
European multinationals with Southern African operations must comply with NIS2 globally. Pro plan includes NIS2 compliance filters for essential and important entities.
Pan-African banks and financial institutions with EU exposure apply DORA globally. Scenarios address ICT risk management and resilience testing requirements across SADC operations.
Energy sector multinationals with Southern African power generation and transmission assets — including SAPP interconnect operators — apply NERC CIP across all global sites.
Exercises cover all CSF 2.0 functions: Govern, Identify, Protect, Detect, Respond, Recover — the universal baseline applied across the 15 SADC member states.
Global standards form the foundation — Southern African regulations add the regional layer. Your teams exercise in context of both, producing evidence defensible to every regulator from Pretoria to Lusaka to Maputo.
South Africa's landmark data protection law governs incident notification, data breach response, and information officer obligations for critical infrastructure operators across the SADC hub nation. Mandatory for all operators with South African operations.
➜ Assess Your POPIA ReadinessThe AU Malabo Convention establishes the continental cybersecurity framework ratified by multiple SADC member states — exercises reflect cross-border incident notification obligations and AU cybercrime response protocols.
Telecoms and internet infrastructure operators in Zambia and Zimbabwe are subject to ZICTA and POTRAZ cybersecurity regulations — exercises address incident reporting obligations for regional telecoms operators across SADC.
The SADC Model Law provides the harmonized cybercrime framework across member states — exercises address cross-border response coordination and obligations under Mozambique's MISA and Angola's emerging cyber regulations.
Southern Africa's critical infrastructure faces a dual challenge: aging OT systems inherited from pre-digital eras and accelerating cyber threats targeting the region's mineral wealth and energy backbone. POPIA in South Africa, ZICTA in Zambia, and the AU Malabo Convention create overlapping obligations for operators across the SADC region — while the Southern African Power Pool (SAPP) interconnect means a breach in one nation can cascade across borders.
Multinationals with Southern African operations — from Anglo American and Glencore in mining to Shell and TotalEnergies in energy — face compliance requirements across 16 SADC member states simultaneously. CyberICS Solutions provides exercises calibrated for POPIA, AU Malabo Convention, and cross-border SAPP energy infrastructure.
Scenarios designed for the threat actors, control systems, and regulatory obligations facing Southern African critical infrastructure operators.
From Eskom grid attacks to Durban port ransomware and Zambia copper mine SCADA compromise — scenarios grounded in the real threat landscape facing Southern African OT operators.
Exercises explicitly reference POPIA notification timelines, ZICTA and POTRAZ reporting obligations, and SADC cross-border coordination — alongside global IEC 62443 controls.
Full support in English, French, Portuguese, German, Spanish, and Italian — covering the full Southern African linguistic landscape across all 15 SADC member states.
From Eskom-scale power grid failures to offshore Angola LNG intrusions and Zambia copper mine SCADA compromise — exercises reflecting the actual threat landscape and regulatory obligations of Southern Africa.
A state-sponsored threat actor exploits OT vulnerabilities in Eskom's SCADA infrastructure, escalating a loadshedding event into a confirmed cyber incident. NERC CIP, POPIA, and SAPP cross-border coordination obligations are simultaneously tested.
A ransomware attack disrupts Durban port terminal OT systems, cascading to affect cargo logistics and cross-border supply chains. POPIA obligations, SADC Model Law reporting, and parent company NIS2 requirements converge simultaneously.
Threat actors compromise SCADA systems at a major Zambia copper mine, disrupting power draw from the ZESCO grid and triggering cross-border SAPP interconnect alerts. ZICTA reporting obligations and IEC 62443 incident response are exercised.
Tell us about your organization. We'll map the platform to your POPIA, AU Malabo Convention, SADC, and global compliance requirements for your specific sector.
Join critical infrastructure teams across the SADC region running professional exercises aligned to global standards and local regulation.