Professional Documents
Culture Documents
National Cybersecurity Strategy & Master Plan for the Government of Kenya
Executive Summary
Agenda
Cybersecurity as a Global Concern Cybersecurity in Kenya Kenya Cybersecurity Strategy and Master Plan Cybersecurity Benefits to Kenya
Cyber attacks are not a new epidemic but are becoming more prevalent and sophisticated every day
Compounding Cyber Attack Progression 20002005 19952000
Attack Sophistication Increasing Co&&erciali(ation of #acking lended Attacks )utatable )alware P#is#ing*P#ar&ing Spear P#is#ing $nfrastructure attacks
20062012
Ad'anced Persistent %#reat otnets Con'erged Attacks C+ber, ased %erroris& -rgani(ed Cri&e .ation,State C+ber,warfare .ext Generation DoS %argeted )alicious Code
19901995 19851990
!i"acking Sessions Sweepers Sniffers Stealt# Diagnostics Packet Spoofing $ntruder %oolkits
19801985
Password Guessing Self Replicating Code
Time COMMON IMPACT STATISTICS Computer Economics/ C+bercri&e accounted for 220 of all econo&ic cri&e reported b+ Ken+an financial ser'ices organi(ations o'er t#e last 12 &ont#s DataMonitor/ 2orensic experts esti&ate c+bercri&e costs t#e Ken+an econo&+ up to KS! 3 billion annuall+ Computer Emergency Response Team (CERT) / %#e esti&ated co&bined t#reat of c+bercri&es to East African financial institutions in t#e regions is esti&ated at 4SD 256 &illion7 CSI/FBI/ A 2812 stud+ esti&ated t#e global cost of infor&ation and co&&unication tec#nolog+ 9$C%: cri&e and re&ediation efforts to be 4SD 118 billion
Cybersecurity is an international issue requiring attention from the international community as well as individual nation states at the public and private sector level.
With major ICT advances, the GoK is operating in an evolving risk environment which presents substantial security challenges
Emerging Risk Area
Increased SocioEconomic Dependence on Information
Risk Description
Societies are becoming increasingly dependent on information resulting in need to proactively create procedures to ensure non-stop service delivery
Infrastructure Vulnerabilities
Challenges to security arise due to growing access to information assets, and is only expected to increase as eGovernment programs have a wider reach
Organized crime and the decreasing size of the world create a need for tighter control through secure electronic identification capabilities
As digital access to government increases, greater need to diligently manage access to ICT resources of citizens, suppliers and businesses
Technology-driven Threats
Types of attacks have increased dramatically in recent years, driven by a variety of information-related sources (e.g., insider threat, e-intrusion, etc.)
Terrorists and rogue individuals are increasingly capable of more sophisticated attacks allowing them to critically incapacitate and/or harm GoK reputation and operations
To address these challenges, the GoK has developed a Kenya Cybersecurity Strategy and Master Plan in support of Kenya Vision 2030
To create a globally competitive and prosperous nation with a high quality of life
At the core of Kenyan Cybersecurity efforts lies the Governments vision, goals, an objectives for the countrys growth, safety, and prosperity.
Kenyas Cybersecurity Strategy Publicizes Kenyas dedication to and focus on cybersecurity domestically and internationally Clearly defines Kenyas cybersecurity vision, goals, and objectives
3
Develop comprehensive governance structures and policies Raise awareness in public and private sectors Expand cybersecurity education to build the Kenyan workforce
>
Implementing a comprehensive and effective Cybersecurity Master Plan requires more than applying technology
Kenya Cybersecurity
Implementing the CSMP will support the evolution of the Government of Kenya ICT to providing a modern cyber security posture and effective risk management. Directly support Kenyan GDP growth and improved international ICT reputation Potential for immediate gains in public and private sector security of IT and data assets Enabling a secure environment for business to operate and thrive (local and foreign investment) Increased confidence in cyber transactions Increased safety and security for industry and populace Improved efficiency in providing national, county, and local government services (eGovernment) Establishing a Gold Standard for Kenya Cybersecurity