BOTSWANA NATIONAL CYBER SECURITY STRATEGY PROJECT Presenter: C. MASIGA Event: ICT PITSO 2015 Date: 25/08/15

PRESENTATION OUTLINE Current Situational Analysis Remedial Actions for CSA Expected Benefits Critical Success Factors Conclusion

Current Botswana Situational Analysis The national and economic security of Botswana depends on the reliable functioning of critical infrastructure: No framework for coordination of efforts against cyber security threats & risk Similar to financial and reputational risk, cybersecurity risk affects a company’s bottom line: In event of attack (external & internal), who to call, what to do etc. Members of public left behind: Education & Awareness Programs lacking

Current Botswana Situational Analysis National cyberspace vulnerable (BW has been attacked): Concerted & Individual efforts remain weak Use of ICTs to break laws ; Potential national security threat Lack of public confidence on using ICTs: Usage of ICTs at Government, Business & Individual low in Botswana (WEF Reports 2013 & 2014)

Current Situational Analysis (Cont) Rapid technology adoption- incoherent with local laws, regulations and security systems If a Motswana were to come under cyber attack, do they know who to call? Do respondents have capacity and capability to help? If Government systems are under attack, what is the first response? Who responds? What happens immediately after system restoration?

NATIONAL CYBER SECURITY STRATEGY (NCSS): The Project The Strategy: “A guide to creating a cohesive and inclusive approach to delivering a safe, secure and resilient cyberspace; a comprehensive framework to facilitate coordinated responses by Government, the private sector, and allies to significant cyber incident.” The Framework will not be a one-size-fits-all approach to managing cybersecurity risk for critical infrastructure. Organizations will continue to have unique risks – different threats, different vulnerabilities, different risk tolerances – and how they implement the practices in the Framework will vary.

NCSS Project as Remedial Action Objectives and Motivation of Project: Create a safe cyber space in Botswana Protection & safeguarding critical infrastructure & key resources Protect users of ICTs Coordinated response to Influx of ICT devices leading to increase in use of ICT Cybercrime laws that need updating Balance security and protection of democracy Increase citizen confidence on ICT usage

NATIONAL CYBER SECURITY STRATEGY (NCSS) Project Technical collaboration between CTO and Botswana International Best Practice blended with local knowledge Collaboration among public and private institutions: Government, Business Botswana, Service providers, Academia, Public etc National Political will- Directed at Permanent Secretary (Accounting Officer) level under MTC Minister

NCSS Project Deliverables Defined vision for Botswana’s ICT protection Roadmap for securing Botswana’s Cyber space Clear Roles and Responsibilities for stakeholders Informed public on cyber security Conducive legal and political environment Public-Private partnership to achieve a secure e-Botswana

NCSS Structures Project Structure Area Addressed Institutional Working Group Strategy vision Objectives of strategy Coordination of different players Policy, Legal and Regulatory PLR Situational analysis Revamping & drafting of laws Awareness Working Group Stakeholder engagement Public capacity building Public awareness raising Technical Working Group Technical capabilities development Research and development Incident response

Expected benefits Economic & Social Increased confidence leading to increased online transactions ICTs leading to increase in efficiency General Safety and Security More informed public Clear roles and responsibilities for different institutions Deliberate efforts to prevent and respond to threats International and Local Collaboration Public private partnership Botswana collaborating with international partners: Global Threats Shared knowledge for better response and protection

Critical Success Factors ( CSFs) Political Will Need to be driven from highest offices Importance need to be understood across all sectors Funding Public-Private funding key- sectors need to fund their own efforts Adequate and appropriate resources need funding Stakeholder Buy-in Public need to have ownership Trust between potential victims and respondents Proper coordination of efforts Cyber drills among sectors National response and sector response need to be coordinated International assistance and information sharing is key

Way forward August –September 2015 – Collection of Information & Drafting of Components of Strategy October 2015 - Consolidation of components of strategy November 2015 - Workshop (Draft Strategy and Annexes) December 2015 – Refinement of Draft Strategy March 2015 – Process of adoption of Draft Strategy

Conclusion Presentation addressed : Definition of NCSS Rationale for NCSS CSA and Remedial action Expected Benefits Critical Success Factors Concluded that : Cyber crime is real Currently Botswana has vulnerabilities NCSS can help protect Botswana NCSS needs support ( public and private) to succeed

You are invited to participate in this project Contact us at: Department of Telecommunications & Postal Services Telephone: 3632900 Email: rkeikotlhaile@gov.bw and cmasiga@gov.bw KE A LEBOGA