In response to escalating cyber threats, Ghana’s Communications and Digitalisation Minister, Ursula Owusu-Ekuful, has officially launched the National Cybersecurity Policy and Strategy (NCPS).
The policy is designed to bolster the country’s digital infrastructure, enhance national cybersecurity capacity, combat cybercrime, and foster public-private sector cooperation.
The NCPS was developed in line with the International Telecommunication Union’s Global Cybersecurity Agenda, setting a framework to create a resilient digital ecosystem in Ghana.
This proactive move comes after the Africa Centre for Digital Transformation (ACDT) warned of potential cyber threats to Ghana’s upcoming December 7 elections. The ACDT called for immediate action, including security audits and penetration testing, to protect the electoral process.
During the launch, Owusu-Ekuful stressed the growing risks presented by digitalization, highlighting that cyberattacks threaten the confidentiality, integrity, and availability of critical digital systems. “The reliance on networks for socio-economic development has attracted malicious actors aiming to exploit our digital infrastructure,” she said.
The Ghana Cyber Security Authority (CSA) has been tasked with implementing the new policy, engaging stakeholders across both public and private sectors.
In line with its mission to strengthen the country’s cyber resilience, the Bank of Ghana (BoG) launched the Financial Industry Command Security Operations Centre (FICSOC) in May 2023. FICSOC coordinates cybersecurity efforts and facilitates threat intelligence sharing across the banking and financial industries.
However, cyber fraud remains a significant issue. In the first half of 2024, Ghana suffered $4.32 million (GH¢49.5 million) in financial losses due to cyber fraud.
The country was also ranked ninth among African nations for data breaches, recording a 997% increase in breaches in early 2024 compared to the previous quarter, with 1.2 million data breaches reported.
To combat these challenges, the CSA has granted licences and accreditation to 51 cybersecurity entities, including eight Cybersecurity Service Providers (CSPs), eight Cybersecurity Establishments (CEs), and 35 Cybersecurity Professionals (CPs).
Unlicensed operators were banned from functioning in the industry, and by October 2023, over 900 licensing applications had been received.
This comprehensive approach marks a significant step towards safeguarding Ghana’s digital future in the face of growing cyber threats.