Why State is investing millions in cybersecurity
The government is investing in cybersecurity centres of excellence so as to unify efforts in protecting cyberspace and fostering collaboration between government agencies, the private sector, and global partners.
Internal Security Principal Secretary Raymond Omollo said that as Kenyans increasingly rely on technology, cyber threats have become more sophisticated, making it crucial for the country to build robust cybersecurity capabilities.
This initiative aims to safeguard Kenya’s digital future and effectively prepare the nation to face emerging cyber challenges.
Speaking at the Cyber Week Africa 2024 Conference and Expo held at the University of Nairobi, Omollo observed that cybersecurity originates from various sources, including state-sponsored actors, hackers, intruders, and individuals who misuse their skills for malicious purposes.
The four-day conference seeks to raise user awareness, build capacity, and deepen the understanding of cybersecurity risks. Omollo highlighted that government agencies and industry leaders would also share crucial information to enhance the protection of Kenya’s cyberspace.
“Kenya’s cybersecurity strategic vision is to create a cyberspace that is safe and secure for all. To achieve this, we must ensure that the advantage remains with the defenders, that we protect our Critical Information Infrastructures, and maintain resilience even in the event of cyberattacks,” the PS stated.
Cyberattacks on critical information infrastructures can jeopardise national security, public safety, and economic stability, especially since both the government and private sectors heavily depend on ICTs for service delivery.
Omollo warned that Kenya’s shared future depends on strengthening the cyber education system and expanding the national cybersecurity workforce.
“No technical solution will be effective unless we have the skilled professionals needed to implement them. We must also establish coordinated efforts, response structures, and regulatory clarity in this rapidly evolving environment where innovation and cybersecurity intersect,” he said.
Global internet traffic
Kenya has experienced an increase in abnormal global internet traffic targeting several Critical Information Infrastructures (CIIs) in recent times, aimed at disrupting essential services.
The telecommunications, banking, and education sectors are the most targeted, with Distributed Denial of Service (DDoS) attacks becoming more powerful and sophisticated. This year, the government strengthened its legal framework with the enactment of the Computer Misuse and Cybercrime (Critical Information Infrastructure and Cybercrime Management) Regulations, 2024. These regulations, developed by NC4, operationalise the Computer Misuse and Cybercrimes Act, 2018.
In Africa, the telecommunications industry remains the most targeted sector for the second consecutive quarter, followed by the Banking, Financial Services, and Insurance (BFSI) industry.
Most of the attack traffic originates from Asia (35 per cent) and Europe (25 per cent). The PS said: “Together with other legislation, these regulations form the foundation for protecting our Critical Information Infrastructures.”