Kenya needs an incident response plan amid rising cyber-attack threats

The rise in cyberattacks in Kenya is no longer an isolated concern but a national one. As the country rapidly embraces digital transformation, it is becoming increasingly clear that cybersecurity is the missing link in safeguarding Kenya’s digital economy.

The recent cyber-attacks targeting critical government institution such as the Business Registration Service (BRS) underscore the urgent need for robust cybersecurity measures. These incidents are not isolated.

Previous breaches such as the high-profile 2023 e-Citizen hacking already exposed vulnerabilities in Kenya’s digital public infrastructure.

A major concern stemming from these breaches is the transparency of government agencies in communicating with affected individuals and businesses. In previous incidents, delays in public disclosures have led to uncertainty and loss of trust in digital platforms.

Moving forward, government agencies must adopt a clear and standardised incident response strategy that ensures immediate reporting, public advisories on security best practices, and transparent engagement with affected entities.

Regular security briefings and partnerships with cybersecurity experts will be instrumental in reinforcing public confidence. Businesses should also be required to disclose cybersecurity breaches promptly to ensure timely responses that protect customers from fraud and identity theft.

Regulatory enforcement must be improved by mandating strict cybersecurity compliance laws, including periodic security audits and adherence to international security standards. Capacity building is essential, with investments in cybersecurity training programmes for IT professionals, businesses, and the general public to recognise and mitigate cyber threats.

Public-private partnerships should be fostered to enhance cybersecurity intelligence-sharing mechanisms and create a collaborative defense strategy.

Leveraging artificial intelligence and machine learning for real-time threat detection and automated responses will enhance national cyber resilience. These measures will help create a more secure digital ecosystem that protects businesses and individuals from cyber threats.

Given the growing frequency and sophistication of cyber threats, a well-defined action plan is necessary to prevent recurrence, reinforce public confidence, and ensure accountability.

The government should implement a national cybersecurity emergency response framework to clearly define incident handling procedures and ensure coordinated responses across all sectors.

It should also mandate regular cybersecurity audits for government agencies and critical infrastructure providers to assess and mitigate vulnerabilities; strengthen data protection laws by enforcing strict penalties for breaches and ensuring organisations have robust data security policies in place; and increase funding for cybersecurity initiatives, including investments in advanced security technologies, cybersecurity education, and national cybersecurity research.

Establish a national cybersecurity coordination centre to centralize monitoring, analysis, and response efforts for cyber threats affecting Kenya’s digital ecosystem.

Cybersecurity is not just an IT issue—it is a national security priority. As Kenya continues to digitize its governance and public services, the government must treat cybersecurity with the same urgency as infrastructure development, health, and education. Without robust cyber defenses, the very foundations of Kenya’s digital economy could be compromised.

The recent attacks should serve as a wake-up call for all stakeholders—government agencies, private sector players, and individual users—to embrace a security-first mindset. Trust in digital platforms is vital for Kenya’s socio-economic growth, and only by safeguarding our digital public infrastructure can we ensure that technology remains a tool for empowerment rather than vulnerability.

By learning from past cyber incidents, including the 2023 e-Citizen attack, Kenya must now shift towards proactive cybersecurity strategies rather than reactive responses. Implementing a multi-layered defense mechanism, investing in indigenous cybersecurity talent, and enforcing stringent policies will be key in securing Kenya’s digital future.

Furthermore, strengthening Kenya’s international partnerships in cybersecurity intelligence sharing, threat detection, and response strategies will enhance its ability to combat cyber threats more effectively. Governments, businesses, and citizens must work together to create a cyber-resilient ecosystem that can withstand evolving digital threats.

The writer is a technology and policy analyst