Anna Collard is founder and Managing Director of Popcorn Training, which promotes IT and information security awareness training using innovative, story-based techniques. Collard has been working in the information security field for 15 years assisting corporates across South Africa, Europe and the US keeping their information assets safe. Collard is a Certified Information Systems professional, an ISO 27001 Implementation & Lead Auditor consultant, and a business analyst. At one time a Visa/Mastercard Qualified Security Auditor. In this interview with Heath Muchena, Collard discusses leadership, information security, challenges women face in the IT sector, and shares insights on how to establish a successful career in the tech ecosystem.
Heath: How do you balance the need for technical security solutions with the potential friction it can create for businesses?
Anna: Security’s ultimate goal is to help business stay in business and is an enabler rather than a “restrictor”. This requires security to sit at the decision maker table from day one and not just be invited as an after-thought. Many technology trends, such as mobile, cloud, AI etc will only deliver the value if the solution has been built with adequate protection. It’s a bit like the analogy of the sports-car, it can only really race fast if it has good breaks.
Where it becomes difficult is when compliance or security starts to stifle business objectives. In those cases, the business needs to make the ultimate decision, which includes taking full responsibility for and accepting any risks highlighted by the compliance or security team.
Heath: How important is it to take a business-focused view of technology in your sector? Do you recommend a business first, IT/security second approach?
Anna: I believe in applying a risk-based approach to security. This means prioritizing security controls that help protect and enable the business’s critical business processes, rather than just following a compliance drive or the latest technology trend. Sun Tzu’s Art of War “If you know the enemy and know yourself, you need not fear the result of a hundred battles” is a great analogy for this.
The first step in defending against cybercrime is getting to know both the possible threats as well as the organization’s weaknesses. Understanding what specific criminal motives might drive someone targeting your organization makes it easier to defend against. Think about the value of personal information you store, what opportunities exist to commit financial fraud or to extort a ransom payment? Who is the ideal victim within your organization and which channels might work best? What would the impact be? Questions like these allow you to identify and prioritize risks related to cybercrime.
Heath: How should IT leaders align their businesses with the need for security solutions?
Anna: The first step here is to raise awareness both amongst the IT leaders themselves as well as business decision makers and other executives about potential threats impacting their business processes. This will allow for more informed decision making when weighing up security versus functionality for example.
Heath: What’s your approach to providing information security guidance to organisations? How should risks be conveyed to boards who are not necessarily security experts?
Anna: As a security awareness company, we take internal awareness seriously. Every new joiner undergoes a rigorous induction training program, which includes all our policies and a lot of security awareness. We conduct frequent phishing simulations internally – meaning every employee will get at least one random simulated phishing email per week. People who fall for any of those have to undergo remediation training. Anyone who doesn’t take their remediation training within a week gets reported all the way up to the CEO.
In other organizations where security is not necessarily on the board’s agenda yet, I assisted in giving awareness sessions to the executives as a VIP target audience. This serves two purposes: Firstly, it raises the awareness level of the executives themselves, who are attractive targets for spear-phishing attacks. Secondly, it allows the Security team to get executive buy in and if lucky, even their involvement in further awareness campaigns across the rest of the organization. Having senior support is absolutely crucial in creating effective awareness, so this is usually the first step before starting anything else.
Heath: What KPIs or metrics do you use to measure the effectiveness of an information security program?
Anna: Measuring effectiveness of an overall security program should include different metrics for different audiences; as for example management may not necessarily understand the context of technical metrics such as vulnerabilities found, whereas they may be of value to the IT team. The metrics I’ve seen used in practice include:
- Heatmapof current threats and how the Security rates their confidence to defend against these (i.e. DDOS attacks, Advanced Persistent Threats etc.);
- Risks identified vs remediated;
- Audit findings % complete;
- Security standards assessments and health checks (i.e. against ISO 27001 standards or ISF framework or similar);
- Security Incidents and time to resolve / mitigate;
- Technical metrics, such as phishing, spam and malware blocked (in numbers), vulnerabilities found;
- Human behavior metrics.
Heath: How do you keep up with the latest security issues and methods?
Anna: I subscribe to cyber security blogs by experts such as Brian Krebs, Stu Sjouerman, and Bruce Schneier. I also follow many interesting thought leaders on LinkedIn. I’m also fortunate enough to be part of a few industry WhatsApp groups where latest news or incidents are shared. As part of our content creation process I need to research latest scams, threats or technology trends.
Heath: Is Africa ready for the exponential nature of the change and impact of the 4IR? How should ICT leaders foster this change and ready their organisations and consumers for the fast-paced change presented by technologies?
Anna: The KnowBe4 African Cyber Security Survey 2019 has shown that African’s are not prepared for cyber threats. Since security is a prerequisite for any of the new technologies that will take us into the 4IR, more work needs to be done to not just address the security skill shortage on the continent (we only have about 10000 security professionals across the whole of Africa) but to also educate the public on the potential pitfalls and risks they are exposed to, ranging from sharing too much information to being aware of mobile malware and social engineering attacks.
Heath: Women in the technology ecosystem are definitely in the minority, so why did you decide to pursue a career in tech?
Anna: I got into the cybersecurity field coincidentally, I was lucky to get a student-job at Siemens while I studied economics in Munich, Germany. They paid better than waitressing and I enjoyed the diversity and learning opportunity. Siemens also allowed me to write my thesis on the importance of information security from a business perspective back in 2001, when security was still very much a nice area.
I generally love learning new things and security requires you to learn every day as the landscape changes all the time. It’s such a fascinating field as security touches literally all the technology domains as well as the physical and human factors. There are many exciting opportunities for women in cybersecurity because of its overarching applicability.
Heath: What are some of the biggest challenges that women who want to venture in the world of technology face today?
Anna: Women sometimes tend to be less assertive as well as doubt themselves more than men do. I see this often in interviews, women too quickly highlight their shortcomings, whereas male counterparts display more confidence in tackling new challenges, even if they are not qualified yet.
As employers, we need to be aware of these subtle differences and encourage women more to take risks and trust their abilities. I always tell women who have self-doubts that if they mastered how to apply a smoky eye from watching it on YouTube, they can learn anything. Security might be complex, but it’s not rocket science and there are many areas in the field that are really interesting.
Heath: What do you think are the biggest misconceptions about working in the tech sector as a woman today?
Anna: That it is a male dominated industry. I know many successful women in the tech sector and it’s an exciting field to get into for young girls and boys alike. Women, especially mums, are generally great jugglers- a skill that is needed in a demanding industry. This is a bit of a generalization, but a lot of women have great communication and creative skills, something that is absolutely key in running security awareness programs, project or change management programs.
Empathy and listening skills, another typical female trait comes in handy when trying to communicate technology or security to end users, upper level management or executives.
Heath: What influences your leadership style and what values are important to you?
Anna: I love learning, research and innovation and I’m not a typical people’s person. This makes me a more distanced leader as I leave my team to do what they do best. I strongly believe in hiring great people and giving them the freedom to become high performers by providing the vision and some guidance but not interfering in the way they do things. Unless they need assistance of course.
Heath: Who are your role models for women in tech?
Anna: I once was lucky enough to sit next to Cathy Smith, CEO of SAP Africa on a flight. She really inspired me to remain authentic. We don’t have to be highly extroverted and loud alpha type personalities to be good leaders. Being soft-spoken, calm and relying on our female intuition is an often-underestimated superpower. Cathy reminded me of that, it was a very inspiring conversation for which I’m very grateful for.
Visit Popcorn Training
Shaun Duvet on The Unit Group and the Impact of COVID-19
Shaun Duvet, Founder and CEO at The Unit Group (Source: Unit Group website)
The impact of Covid-19 is changing the way organisations operate and do business about the world. The entertainment industry is not exempted as it’s adjudged the second affected industry after the aviation, travel and hospitality industry. In this interview with Alaba Ayinuola, Shaun Duvet the Founder and CEO of The Unit Group shares his brand story and the Impact of Covid-19. Excerpt.
Alaba: Could you tell us about the Unit Group and the gap it’s filling since you launched?
Shaun: The Unit Group was established in 2017 as the holding company for my various business interests which include: COCO, GoldBar and Souk (my venues), Ultra South Africa, Corona Sunsets Festivals, Anything Goes, AG Virtual, Bella Bookings, Salute, Jet Black & Paradise Springs. These businesses cover all functions of entertainment marketing, management, hospitality, sponsorship and eventing from design, to staffing and artist booking, to production and everything in between.
The gap we launched The Unit Group to fill was that of a true understanding of marketing in the entertainment space. So many brands want to play in this space because the audiences are so receptive and the engagement so high, yet so few of them truly understand it. We felt that we had the marketing know-how, and a deep love and knowledge of not only this space, but the global players within it.
Alaba: What services does your company offer?
Shaun: The services offered range from throwing small corporate events to festivals for 50, 000 pax; to sponsorship strategies, virtual events; to full spectrum design, photography, videography; artist, model and staff bookings; marketing, and PR strategies and much, much more.
Alaba: How has the market responded to your offerings?
Shaun: We have seen a huge uptake in clients that previously came to us just to make the party happen, now asking for marketing, creative and strategic advice. AG Virtual, which launched this year, has also seen the likes of AFI (African Fashion Week) approach us to do their full virtual production.
Alaba: The steady rise of South Africa’s entertainment industry has increased competition in the country. What’s your company’s advantage?
Shaun: My 20+ years of experience and my years behind the decks. I live and breathe music and entertainment which enables me to understand what the market wants and keep abreast of global trends. I also have incredible teams in place that keep our work fresh and relevant, and the machine in constant motion.
Alaba: Kindly share some of the challenges faced, especially in this dire time and how you overcoming them?
Shaun: The challenge of this year is obvious – no events, no DJ’s, no dancing! That’s our life blood. We have managed though to stay busy by diversifying what we offer and working more strategically. Helping brands activate within the highly connected urban youth market in an authentic and resonant manner. Some of our venues are also still operational, and the festivals and events teams are taking some much-needed down time before the parties start again, which we know they will do with a renewed energy when we’re out of the current COVID crisis.
Alaba: Technology is disrupting the entertainment industry across the globe. How’s your company adapting to the use of technology?
Shaun: As mentioned, we have launched AG Virtual which is doing well. But we have always been at the forefront of event and entertainment technology in our work. Our audience demands it.
Alaba: How does your company contribute and set new standards in the South African entertainment industry?
Shaun: I regularly write and speak on industry channels and give back to the industry that way. We also ensure that we are constantly raising the bar with the work that we do, meaning that more people around the world sit up and take notice which will ultimately benefit the whole industry.
Alaba: What’s the future for the Unit Group and are you post COVID-19 ready?
Shaun: We cannot wait for life to return to “normal”. Down time was nice, but we’re rested now and it’s time to work!
Alaba: How do you relax and what keeps you going?
Shaun: I have 3 young kids so relaxation is scarce, but they certainly keep me going
Alaba: What advice would you give to entrepreneurs and investors coming to South Africa?
Shaun: Come! Don’t be afraid. There is risk, yes, but the rewards are also so great. We live in such a special place and I really believe in the future of this country.
B I O G R A P H Y
Shaun Duvet, CEO and Founder of The Unit, South Africa’s leading entertainment-based holding company, a combination of enterprises, individually built to make brands better. Shaun is also the CEO and Founder of Anything Goes, the branded entertainment agency, aligning campaigns, properties and music tours with international brands and artists across the continent.
He is the co-Founder and Director of ULTRA South Africa, which brings 50,000 dance-music revellers together every year to see some biggest names in eEectronic Music. He is the partner and producer for Corona Sunsets Festival South Africa, which over the last 5 years has seen over 40,000 fans join together across three cities to celebrate the sunset.
He is a co-owner and operator for COCO, one of SA’s premiere nightclubs, think celebrities, Ibiza-style go-go dancers, Hip Hop MCs, and a parade of sparkler-topped bottles, this alongside it’s sister GoldBar, an elegant bar annex to COCO.
Shaun Duvet is a board member and proud supporter of Bridges For Music, a non-profit organization that utilises the power of music to uplift communities through creative education. Recently, partnering with Defected Records on a new imprint Sondela Records all of whose profits will channel back directly into the charity.
Viola Labi: The multi-hyphenate creative strategist building an eco-luxury fashion brand in Africa
Viola Labi is a multi-hyphenate creative, premium retail Strategist and Founder of WOVEN, a design-led fashion enterprise.
With over a decade of experience and a proven track record in the global luxury retail space, Viola has worked with renowned international brands such as Burberry, ZARA, Loewe, CELINE and Valentino and has caught the attention of media powerhouses such as Vogue Business, Essence, Forbes, BBC and CNN International, as one to watch.
Born in Canada with Ghanaian parentage, Viola is culturally plural and holds reverence to fashion’s interaction with humanity; asserting that it permits people, irrespective of their cultural and social affiliations to unite. It is this fundamental belief and her relocation to Ghana that inspired WOVEN, a ground breaking brand which seeks to herald a new direction for eco-luxury retail on the African continent.
Viola said, WOVEN was birthed from a personal journey to Northern Ghana. “I witnessed my own reunification to elements of rich Ghanaian culture through textile creation at the diligent hand skilled Artisans. Despite language barriers and unfamiliar grounds, I felt at home. I spent more time with women creating textiles and found myself being stitched together in areas I didn’t know needed mending, areas like self-identity and purpose.”
“Looking back, I guess you can say we weaved symbolic exchanges of knowledge and cultural practices and this inspired me to creative WOVEN. Although the entire assortment of products are literally woven, the company name speaks to a higher purpose of coming together as Humanity.” She said.
The Brand’s mission is to actively work towards uniting the fashion value chain into a cohesive whole by showcasing the creative talent that pervades throughout the African continent; while emanating the diversity of culture, history and skill, much like yarn being formed into a unique tapestry.
WOVEN has the honour of partnering with 150 esteemed Artisan weavers in Ghana to create sustainable, functional, home furnishing products. It’s design principles and execution promote inclusion and seek to disrupt fear-based stereotypes by creating products, made in Africa, that are par with those of global standards.
Emalohi Iruobe, An Attorney and Founder of Tribe XX Lab Empowering Female-led Startups
Emalohi L. Iruobe Esq. is an attorney, adjunct professor and social entrepreneur. She is the founder of Tribe XX Lab, the first and only co-working, wellness and incubator space exclusively for female entrepreneurs and female led startups and companies in Lagos. Tribe XX Lab offers an open-plan office, private offices, events, networking, yoga, a nap room, conference room, reference library, pop up restaurants and wellness retail.
The fundamental idea is to create a place where women are able to present a professional front for their business as well as network, get training, access to funding opportunities and help each other. With a general focus on self-care and balance, the space also partners with brands that retail wellness and selfcare products in order to meet the other often overlooked core need of women in business-wholeness.
Prior to founding Tribe XX Lab, Emalohi was an adjunct professor of Business Law, Business Research Methods and Legal Analysis and Writing at Lincoln University in Pennsylvania, USA for several years before moving to teach Business Law and Data Management at LIM College in Manhattan, New York. Afterwards she taught Expository Writing at Rutgers University in New Jersey, USA before founding Aimanosi Lingerie; a dynamic brand focused on promoting body positivity and selflove in African women. She has a Bsc. in Finance and Banking from Lincoln University, PA and a Juris Doctor from Villanova University.
Before delving into full time entrepreneurship, she practiced law in Pennsylvania and New
Jersey working in Commercial litigation, as well as working as the Manager of Project Implementation in the Kwara State Public Private Partnership office in 2013. She comes with over a decade experience in entrepreneurship, law, education and business.
About Tribe XX Lab
Tribe XX Lab is a civic space for complex conversations, critical contemplation, learning and action to prevent all forms of violence and oppression against women and girls. The goal of their work is to change the perceptions of women and their role in society as well as lead conversations and interventions that PREVENT violence against women and girls in the first place. They do this through the use of digital and social media, conversations, XX-CEED Virtual festival, game theory and art.
Through their work, they are particularly looking to provide support to survivors of Gender-based violence, promote greater public engagement in preventing violence against women, increase public awareness of the intersectionality of oppression women face, create social projects that encourage the extermination of rape culture.
Since inception, they have successfully carried out several survival supports programs, prevention panels and have received a grant to prevent gender-based violence against women and girls in universities in Nigeria as well as provide psychological support to victims of GBV in institutions of higher education from Oxfam/Voice.
Emalohi also launched ‘I GO TALK’ a Nigerian Pidgin phrase which simply means I will not be silent, I will tell on you. It came in as a crucial response to the sexual violence that female students in Nigerian Universities face. This is a clarion call from victims, survivors, and women in general to the perpetrators of sexual abuse and to the general public, that they’re here to XXterminate, silence and provide support to victims. This is a motivation for victims of sexual abuse and harassment amongst University students to speak up and also a mode to create awareness for students on their rights in line with the recently signedd Sexual Harassment bill.
After the BBC Documentary, Sex for Grades rocked the whole of Nigeria in October 2019, the long cloaked truth about the oppression that young women face in the hands of university lecturers started to come to light. For the longest time, young women seeking higher education have been preyed upon by several academicians high in power and have been oppressed, victimized, and helpless.
Starting from the 25th of October to the 31st of October, they are kicking off the first edition of I GO TALK Youth Summit, the largest gathering of university students across the country to build collective power and voice in the fight to end Sex4grades and sexual harassment in Nigerian Universities.
Tribe XX Lab is laser focused on promoting gender equality, deliberate living, transformative leadership and community development through the design and delivery of trainings, workshops, seminars, collaborative partnerships and data gathering.