CSA, partners inaugurate independent assessors to strengthen national cybersecurity

The Cyber Security Authority (CSA), has joined forces with key industry groups, including the Ghana Chamber of Telecommunications, Ghana Association of Banks, Institute of ICT Professionals Ghana, ISACA Ghana Chapter, and ISC2 Ghana, to launch the Industry Forum and inaugurate Independent Assessors aimed at bolstering cyber security in the country.

The event, held on October 22, 2024, in Accra, also brought together professionals from cybersecurity agencies, telecommunications, information security agencies, and the judiciary. The focus was on discussing the importance of established cybersecurity infrastructures within organisations and the role of industry players in enhancing the operations of the CSA.

Speaking at the event, Director-General of the CSA, Dr. Albert Antwi-Bosiako emphasized the growing importance of cybersecurity in today’s interconnected world. He noted, “There is the need to take measures to protect information on digital platforms. We have a collective responsibility as a nation to safeguard our digital assets and infrastructures and to effectively respond to this growing sophistication in cyber threats in the country. The Cyber Security Act, 2020 (Act 1038) provides for the establishment of this forum, which brings together top leaders, practitioners, and innovators across the industry to support government efforts in addressing cyber security threats.”

Dr. Antwi-Bosiako highlighted that the CSA in March 2023 established a licensing accreditation system for cybersecurity providers and workers and is currently in talks with Rwanda to extend accredited cybersecurity services across the region. He further clarified that the Industry Forum is not an adversarial NGO but a partner working with the government to develop robust cybersecurity frameworks for the nation.

The inauguration of the Independent Assessors, according to Dr. Antwi-Bosiako, will enhance CSA’s ability to audit and assess organisations offering cybersecurity services, ensuring adherence to best practices.

Dr. Ing. Kenneth Ashigbey, Chairman of the Facilitating Committee on the Establishment of the Industry Forum and CEO of the Ghana Chamber of Telecommunications, explained that the forum aims to promote collaboration and best practices in cybersecurity across all sectors of the economy.

He stressed, “The overarching goal of the forum is to support cyber security development in Ghana and enhance the overall security posture of member organisations by fostering a community of cyber security professionals.”

Dr. Ashigbey urged industry members to actively participate in the forum to ensure its vibrancy and effectiveness, adding, “By fostering a culture of collaboration, transparency, and shared responsibility, we can create an environment where cybersecurity practices flourish and ultimately enhance safety in our digital economy.”

The summit was officially launched by the Minister of Communications and Digitalisation, Hon. Ursula Owusu-Ekuful, who spoke about the significance of the Industry Forum in addressing the country’s cybersecurity talent gap, stating that “the launch of the Industry Forum will serve as a critical platform to enhance collaboration between the public and private sectors, share knowledge experiences, promote innovation, build a skilled workforce, and strengthen national resilience against cyber threats.”

For her part, Ms. Adelaide Benneh Prempeh, Esq., a board member of the CSA, outlined the importance of the Cyber Security Industry Code, which aims to set clear ethical and professional standards for stakeholders. She explained that the code is designed to protect government, businesses, and critical infrastructure from rising cybersecurity threats.

Ms. Prempeh also emphasised the need for cybersecurity professionals to maintain confidentiality, integrity, and respect for intellectual property while providing services. She urged professionals to educate their organisations’ leadership on cybersecurity issues to ensure comprehensive involvement in countering threats.

Addressing incident response and cyber resilience, Prempeh added, “When we look at the requirements of cyber resilience, we look at the backup and restoration plan, where organisations establish procedures for backing up and storing systems to ensure minimal disruption. These plans should include processes for establishing recovery systems, addressing threats, and ensuring, very importantly, operational continuity in the event of a cyberattack.”

She called on cybersecurity professionals to adhere to the code of ethics, particularly in ensuring reliable access to data, confidentiality, and encrypted data protection for clients.

The summit concluded with an appeal for continuous collaboration between government and industry to safeguard Ghana’s digital economy from the growing menace of cyber threats.