The licensing of cybersecurity service providers (CSPs) in the nation has started under the supervision of the Cyber Security Authority (CSA).
This is in addition to the accreditation of Cybersecurity Establishments (CEs) and Cybersecurity Professionals (CPs), as required by sections 4(k), 49, 50, 51, 57, and 59 of the Cybersecurity Act, 2020 (Act 1038).
The Cybersecurity Act, 2020 (Act 1038) regulatory compliance is ensured by the regime, which also attests that CSPs, CEs, and CPs provide their services by established standards and processes that are in line with national regulations and industry best practises.
According to a statement released in Accra, procedures and technology must be in place given the crucial role that CEs, such as managed cybersecurity services and digital forensic laboratories, play in protecting the nation's digital environment.
utilized by these institutions were compliant with the authority's recognised standards and best practices from across the world.
Essential
As established requirements must be followed, it is imperative that the authority, in byaccordance with Section 59(3) of Act 1038, take the required actions, such as licensing CSPs and accrediting CEs and CPs.
"The licensing of both new and current CSPs is the first step in the regulatory procedure, which is then followed by the accreditation of CEs and CPs.
CSA shall license CSPs and accredit CPs with appropriate experience in Vulnerability Assessment and Penetration Testing, Digital Forensics Services, Managed Cybersecurity Services, Cybersecurity Governance, Risk and Compliance, "It read.
us
It stated that Managed Cybersecurity Service Facility and Digital Forensics Facility would be taken into consideration when granting accreditation to CEs and that under the new regime, current CSPs who were already engaged in the business of providing cybersecurity services would have six months (from March 1 to September 30, 2023) to submit an application.
"A CSP who fails to secure a permit during this period will have to halt operating until a license is received from the authorities," it said.
The statement also stated that "with the increasing rate of cybercrimes, CSPs, CEs and CPs have become critical," adding that "it has become necessary that the industry be regulated to control cybersecurity risks and protect the interests and safety of children, businesses, the government, and the general public."
according to the Cybersecurity Act, 2020 (Act 1038), components for reducing cybersecurity risks and vulnerabilities inside the nation's quickly evolving digital environment.
blogpay
Total Comments: 0