As we draw to the close of National Cybersecurity Awareness Month 2024, we, the Cyber Security Experts Association of Nigeria (CSEAN) wish to remind all citizens, organizations and governments of the critical importance of staying vigilant and being cyber-smart.
Cybersecurity is a shared responsibility that requires the collective effort of every individual, business, and government entity to ensure a secure digital environment.
As a leading body in the field of cybersecurity in Nigeria, we are committed to enhancing our nation’s cybersecurity posture.
The increasing reliance on digital technologies has brought about significant benefits, such as improved access to information and efficient service delivery.
However, this digital transformation has also introduced significant cybersecurity risks that threaten national security and economic stability.
Current State of Cybersecurity Awareness
A significant portion of the Nigerian population, especially in rural areas, lacks basic cybersecurity knowledge.
This limited awareness makes individuals vulnerable to various cyber threats. Also, many organizations, particularly Small and Medium Enterprises (SMEs), lack adequate cybersecurity infrastructure and resources, leaving them exposed to cyberattacks.
The shortage of skilled cybersecurity professionals further worsens these challenges, as organizations struggle to effectively address the growing threat landscape.
Phishing attacks remain a persistent threat, with individuals falling victim to sophisticated social engineering tactics.
Data breaches continue to occur, compromising sensitive personal and financial information. Cybercrime, including online fraud, identity theft, and ransomware attacks, is on the rise, causing significant financial losses and reputational damage.
Recent studies have highlighted the current state of cybersecurity awareness in Nigeria. For instance, research conducted among university students in Northeastern Nigeria revealed that while there is some basic knowledge of cybersecurity, there is a pressing need for more comprehensive awareness programs, particularly in areas such as cyberbullying, child online protection, self-protection, and internet addiction.
Another study on online banking users in Nigeria showed a high level of awareness of cybercrime but also identified gaps in password security practices and the need for more robust cybersecurity measures.
Poverty and unemployment drive cybercrime in Nigeria, posing a threat to national security and socio-economic development.
Addressing these underlying issues, promoting awareness, and implementing effective cybersecurity measures are crucial for mitigating cybercrime and fostering a safer digital environment.
To this end, we are calling on all stakeholders, including government agencies, private sector organizations, educational institutions, and civil society, to join us in this important endeavour.
Government Initiatives
We appreciate the Nigerian government’s efforts to enhance cybersecurity and protect its cyberspace through various initiatives, which include the establishment of the National Cybersecurity Coordination Centre (NCCC) to facilitate the implementation of cybersecurity
programs and legislation, the NCCC coordinates national efforts against cyber threats; The 2021 National Cybersecurity Policy and Strategy (NCPS) which builds on the 2015 framework, addressing evolving cybersecurity challenges.
It aims to enhance digital competitiveness, promote indigenous technology, safeguard critical infrastructure, and combat cyberattacks, online fraud, and misinformation; The Cybercrime (Prohibition, Prevention, etc.) Act 2015 which was enacted to combat cybercrime and protect digital assets.
The recent Cybercrimes (Prohibition, Prevention, etc.) Amendment Act 2024 further strengthens cybersecurity measures by introducing Sectoral Computer Emergency Response Teams (CERTs) and requiring reporting of cyber threats within 72 hours; The Amendment of the National Identification Number (NIN) Requirement which mandates its use for electronic financial transactions to facilitate tracking and verification; and The Nigeria Data Protection Act 2023 which builds on previous data protection regulations to strengthen data protection rights and enhance security in response to the evolving data landscape.
These initiatives aim to create a more secure digital environment in Nigeria, addressing evolving cyber threats, protecting critical infrastructure, and safeguarding personal data.
The government’s commitment to international cooperation, capacity building, and legal frameworks ensures a proactive approach to cybersecurity.
Our Initiatives
We have been instrumental in raising cybersecurity awareness in Nigeria. Through various initiatives, we are actively promoting cybersecurity best practices and educating the public about emerging threats, which include the annual Cyber Secure Nigeria 2024 Conference and this year’s conference theme Leveraging Artificial Intelligence for Cyber Resilience: Building A Secure Future Bridge.
This event brought together academia, industry experts, government officials, and cybersecurity professionals to share knowledge and insights; we also offer training and workshops to equip individuals and organizations with the necessary skills to protect themselves from cyber threats; we conduct various awareness campaigns to educate the public about the importance of cybersecurity.
These campaigns often involve social media, workshops, and public events to reach a wider audience; we publish regular cyber threat landscapes and forecasts to highlight emerging threats and vulnerabilities in Nigeria.
These reports help individuals, organizations and governments prioritize their security efforts and allocate resources effectively; and we collaborate with other organizations, both locally and internationally, to share knowledge, resources, and best practices.
These partnerships help to strengthen the cybersecurity ecosystem in Nigeria. By actively promoting cybersecurity awareness and education, we play a crucial role in safeguarding Nigeria’s digital landscape.
Call to Action
To address growing cybersecurity challenges, individuals, organizations, and the government must take concerted action. Individuals should prioritize digital literacy, strong password hygiene, online vigilance, and regular software updates.
Organizations should invest in cybersecurity infrastructure, train employees, develop incident response plans, and prioritize data protection.
The government should strengthen legal frameworks, foster public-private partnerships, invest in research and development, and promote cybersecurity awareness.
To further enhance Nigeria’s cybersecurity posture, stakeholders should collaborate on training programs, promote cyber hygiene, raise awareness about emerging threats, engage communities, and support research initiatives.
Also, strengthening cyber threat intelligence capabilities through investment in research and developing Sector-Based Incident Response Capabilities. International cooperation and continuous learning are also essential components of a robust cybersecurity strategy.
By taking these comprehensive steps, Nigeria can better protect its digital infrastructure, safeguard privacy, and ensure national security.
Conclusion
As we conclude Cybersecurity Awareness Month 2024, we urge Nigerians to prioritize online safety. Cybersecurity is a shared responsibility requiring collective action from individuals, organizations, and the government. Let us continue to engage in discussions, share knowledge, and report suspicious activities to build a secure digital environment. By working together, we can ensure a safer cyberspace for all.
*Article written by Ade Shoyinka, President of Cyber Security Experts Association of Nigeria (CSEAN) and John Odumesi, Director of Research and Development, CSEAN
