Southern Africa · SADC Region · IEC 62443 · POPIA · NERSA-Aligned

World-Class OT/ICS Cybersecurity Exercises for Southern African Critical Infrastructure

47 ready-to-run tabletop exercises aligned to global standards — IEC 62443, NIST SP 800-82, NIS2, NERC CIP — and layered with Southern African regulatory context (POPIA, NERSA, SADC frameworks). Purpose-built for Mining, Energy, Finance, and Water sectors.

Start Free — 3 Exercises Request Enterprise Demo View Full Platform

✓ IEC 62443 ✓ NIST SP 800-82 ✓ CISA CTEP-Aligned ✓ NIS2 & DORA ✓ POPIA (South Africa) ✓ NERSA Regulations ✓ SADC Protocol

Global Standards — Included in Every Exercise

The International Frameworks Your Organization Already Answers To

Whether your HQ is in Johannesburg, London, or New York — these are the global standards that govern OT/ICS cybersecurity best practice. Every exercise maps to them, so Southern African operations meet the same bar as global counterparts.

IEC 62443

Industrial Cybersecurity Standard

The global benchmark for IACS security — mandatory reference for mining, energy, and manufacturing OT environments. Scenarios map to security levels and control domains.

NIST SP 800-82

ICS Security Guide (Rev. 3)

NIST's definitive guide for OT security. Threat scenarios reference Rev. 3 controls across all Southern African industrial control system sectors.

NERC CIP

Critical Infrastructure Protection

Energy sector exercises align to NERC CIP — the same standards applied by multinationals with South African and SADC power generation assets.

CISA CTEP

Cyber Tabletop Exercise Program

All 47 exercises align to CISA CTEP objectives with CPG 2.0 framework mapping and structured After Action Report export for regulatory defensibility.

NIS2

EU Network & Information Security Directive

European multinationals operating in Southern Africa must comply with NIS2 across all sites. Pro plan includes NIS2 compliance filters for essential entities.

DORA

Digital Operational Resilience Act

Financial institutions with EU exposure apply DORA globally. Southern African banking subsidiaries benefit from DORA-aligned ICT risk and incident scenarios.

NIST CSF 2.0

Cybersecurity Framework

Exercises cover all CSF 2.0 core functions: Govern, Identify, Protect, Detect, Respond, and Recover — the universal baseline applied across SADC member states.

ISO 27001

Information Security Management

Scenarios support ISO/IEC 27001 Annex A controls — widely required by South African financial sector regulators and multinational corporate governance standards.

Southern African Regulatory Context

Layered with Local Regulatory Alignment

Global standards form the foundation — Southern African regulations add the local layer. Your teams practice in context of both, producing evidence defensible to every regulator from Pretoria to Harare.

POPIA

Protection of Personal Information Act (South Africa)

South Africa's primary data protection law. Exercises cover POPIA notification obligations, responsible party duties, and incident response requirements for critical infrastructure operators.

NERSA

National Energy Regulator of South Africa

NERSA governs cybersecurity requirements for electricity, piped gas, and petroleum pipelines. Energy sector scenarios address NERSA compliance for licensees operating critical infrastructure.

SADC Protocol

SADC Energy Protocol & Regional Cybersecurity Framework

The SADC framework aligns member states (ZA, ZW, BW, ZM, MZ, NA) on critical infrastructure protection. Exercises reference cross-border incident notification and coordination requirements.

NIS Framework ZA

South Africa National Integrated ICT Policy & Cybercrimes Act

South Africa's Cybercrimes Act and the National Cybersecurity Policy Framework define incident reporting obligations for operators of critical information infrastructure.

For Multinationals with Southern African Operations

Global HQ. Southern African Sites. One Platform.

The Challenge

Your Johannesburg, Lusaka, or Harare facility must meet both: corporate global standards AND local POPIA / NERSA obligations

Mining conglomerates, energy multinationals, and financial groups with SADC operations don't choose between IEC 62443 and POPIA — they answer to both. Generic exercises address neither adequately.

HQ mandates IEC 62443 and ISO 27001 compliance across all global sites
POPIA imposes local data protection obligations on South African entities
NERSA requires cybersecurity practices for South African energy licensees
SADC cross-border incident coordination creates unique response complexity

The Skyhigh Solution

One exercise library. Global standards built in. Southern African regulatory context layered on top.

Every scenario in the platform maps to IEC 62443, NIST SP 800-82, NERC CIP, and ISO 27001. Southern African teams run the same quality exercises as European counterparts — with local POPIA, NERSA, and SADC framing included.

Global compliance evidence for corporate and international audit teams
Local context for POPIA, NERSA, Cybercrimes Act obligations
After Action Reports defensible to both HQ and South African regulators
Portuguese support for Mozambique and Zambia operations

Key Southern African Sectors

Built for Your Industry's OT Environment

Scenarios designed for the actual control systems, threat actors, and regulatory regimes facing SADC critical infrastructure operators.

Mining (Gold, Platinum, Coal, Diamonds)

Electric Power (Eskom, ZESA, ZESCO)

Banking & Financial Services

Water Treatment & Distribution

Oil & Gas (Mozambique LNG, Refining)

Ports & Rail Logistics (Transnet)

Telecoms Infrastructure

Manufacturing & Automotive

📁

47 Ready-to-Run Scenarios

From platinum mine SCADA attacks to Eskom-style grid disruption exercises — scenarios grounded in the real threat landscape facing Southern African OT operators.

📄

POPIA & NERSA Framing

Exercises explicitly reference POPIA notification timelines and NERSA reporting obligations alongside global IEC 62443 and NIST controls — dual-compliance in every session.

🌐

English & Portuguese Support

Full support in English and Portuguese — covering South African, Zimbabwean, Zambian, and Mozambican teams across the SADC region in their operational language.

Scenario Examples — SADC Relevant

Exercises Built for the Southern African Threat Environment

From deep-level mine control system attacks to power grid disruptions — scenarios that reflect the threats facing SADC operators and the regulators they answer to.

OT / ICS

Deep-Level Mining Control System Attack

An adversary compromises ventilation and winding control systems at a gold mine. Safety interlocks are at risk. IEC 62443 Security Level 3 response procedures are tested.

ICS/SCADA IEC 62443 POPIA Notification

⏳ 3–4 Hours 👥 8–15 Players Advanced

Energy Sector

National Power Grid Disruption (Eskom-scale)

A coordinated attack on energy management systems triggers cascading load shedding. NERSA reporting obligations and SADC cross-border coordination are tested simultaneously.

Ransomware NERC CIP NERSA

⏳ 3–4 Hours 👥 10–20 Players Advanced

Executive

Board Crisis: POPIA Breach & NIS2 Dual Notification

A major OT breach at a Johannesburg HQ affects data of South African and EU citizens. POPIA 72-hour notification and NIS2 reporting run simultaneously under board scrutiny.

Executive POPIA NIS2

⏳ 2–3 Hours 👥 5–10 Players Intermediate

Unlock All 47 Scenarios →

Enterprise Inquiry

Request a Southern Africa Demo

Tell us about your organization. We'll map the platform to your POPIA, NERSA, and global compliance requirements and show you exactly how exercises serve your sector.

Full Name *

Job Title

Organization *

Work Email *

Team Size

Primary Sector

What are your primary compliance drivers or exercise objectives?