By Stanley Kwabla Arku
The Cyber Security Authority (CSA) of Ghana held a licensing and accreditation ceremony marking a major milestone in the nation’s ongoing efforts to bolster digital security. The event, which took place at the CSA Board Room, was presided over by a representative on behalf of the Director-General, Dr. Albert Antwi-Boasiako.
In his welcome remarks, Head of National Computer Emergency Response Team at Cyber Security Authority Stephen Cudjoe- Seshie, highlighted the CSA’s commitment to maintaining a secure digital ecosystem through its regulatory duties, as mandated by the Cybersecurity Act, 2020 (Act 1038).
He noted that the event follows a rigorous licensing process that commenced in March 2023. By July 2024, eight CSPs, eight CEs, and 35 CPs had already been licensed and accredited. The ceremony saw the licensing of an additional 18 CSPs, seven CEs, and 69 CPs, a significant achievement in strengthening the nation’s cybersecurity infrastructure.
A Collaborative Regulatory Approach
In line with the CSA’s collaborative regulatory model, the authority has engaged stakeholders across various sectors, including academia, civil society, and industry, to ensure inclusivity in its regulatory activities. “Since October 2022, the Authority has engaged more than thirty industry stakeholders to refine and implement the regulatory framework provided by Act 1038,” the representative stated.
One key initiative aimed at ensuring a smooth application process for licensees is the Licensing and Accreditation Clinic. The clinic, which attracted 128 participants, was designed to assist individuals and institutions with their applications. It provided guidance to 57 CSPs, 71 CPs, and 16 CEs, ensuring that applicants met all requirements for successful completion of the process.
Emphasizing Compliance and Legal Responsibility
The CSA representative emphasized the importance of adherence to the regulations outlined in Act 1038. “The issuance of these licenses and certificates of accreditation bestows a responsibility on you to provide services in good faith, uphold confidentiality, and comply with all applicable laws, including data protection,” he said.
He further reiterated the CSA’s commitment to enforcing compliance, warning unlicensed CSPs, CEs, and CPs that operating without proper accreditation is a violation of the law and will attract penalties or criminal prosecution. “We have commenced enforcement processes against non-compliant institutions and individuals, and all defaulters will face the full rigors of the law,” he stated.
A Vision for the Future
As part of its long-term vision, the CSA is actively working with key stakeholders, including the Public Procurement Authority (PPA) and the Ghana Association of Banks (GAB), to enforce cybersecurity guidelines across industries. In addition, the CSA is facilitating the establishment of an Industry Forum, as outlined in Section 81(1) of Act 1038. The forum will play a vital role in shaping policies and supporting industry standards for cybersecurity.
The CSA representative also urged accredited professionals to take an active role in the upcoming National Cybersecurity Awareness Month (NCSAM) in October.