Cyber Security Authority (CSA), regulator of cyber security activities in the country has issued a warning to unlicensed and unaccredited service providers to seize operations effective this year.
This follows the authorities’ December 31, 2023 deadline issued to Cybersecurity Service Providers (CSPs), Cybersecurity Establishments (CEs), and Cybersecurity Professionals (CPs) to obtain a licence or accreditation to operate lawfully in the country.
In a press statement available to the paper, the authority stated that it would fully enforce the provisions of the Cybersecurity Act, 2020 (Act 1038) regarding its mandate to regulate CSPs, CPs, and CEs.
Accordingly, it further stated that CSPs, CEs, and CPs who offer cybersecurity services without a license or accreditation granted by the Authority, do so in contravention of Act 1038, and will face the full rigours of the Law including criminal prosecutions and administrative penalties where applicable.
Institutions and individuals are consequently advised to engage only licensed CSPs, CEs and CPs.
The authority also entreated individuals or organisations who wish to access the services of any of the providers to enter the certificate number of the entity or individual by logging on to https://www.csa.gov.gh/licence for authentication as well as via email: compliance@csa.gov.gh or Telephone: 0531140408 to ascertain whether an entity or individual has been granted a license or accreditation.
Since October 2022, the CSA has been engaging all relevant stakeholders including cybersecurity service providers, establishments, and professionals on the regulatory regime by deploying different communication strategies.
There have been more than 30 different industry engagements, leading to the introduction and implementation of the licensing and accreditation regime provided in the Cybersecurity Act, 2020.
The Authority further set up dedicated desks to receive all inquiries, and to provide prompt feedback on the exercise to stakeholders.
As part of efforts to continuously engage and collaborate with accredited and licensed cybersecurity professionals and institutions, the CSA is compiling a national register of licensed and accredited CSPs, CEs and CPs under section 4(t) of Act 1038, and will see to the establishment of the Industry Forum under section 81 of the Cybersecurity Act 2020 (Act 1038).
Source: Prince Fiifi Yorke