REGULATORY FRAMEWORK ON CYBERSECURITY IN NIGERIA

Abstract

The evolving digital age has raised worldwide concern for cybersecurity and Nigeria is no exception. The need for cybersecurity arose with the advent of the internet in Nigeria with different sectors of the economy rapidly embracing digitalization. The consequential result of this progress is the increased vulnerability to cyber threats. However, there were no clear steps in the area of cybersecurity, policies or regulatory framework until 2003. This was not until a murder incident at a Nigerian embassy in 2003, which was connected to an Internet crime. A 72-year-old Czech,who was a victim of an email scam purportedly by a Nigerian, shot the late Nigerian diplomat Michael Lekara Wayid at the Nigerian Embassy in Prague. This incident exposed the critical need for a cybersecurity framework to ensure the safety of citizens, businesses and foreigners who interact in the cyberspace. The journey toward the developing of a robust legal framework for cybersecurity in Nigeria, reflects a gradual recognition of the need to address the risks posed by cyber threats and crimes. This paper attempts to provide an overview on the regulatory framework on cybersecurity in Nigeria1. This includes both legal and institutional frameworks. This also examines an evolution of cybersecurity policies in Nigeria using the doctrinal approach, to highlight key milestones and legislative development, while providing further recommendations for a safer cyberspace.