LIST OF ABBRIVIATIONS .............................................................................................. 4
EXECUTIVE SUMMARY ................................................................................................. 5
1.
INTRODUCTION ..................................................................................................... 7
2.
NATIONAL CYBER SECURITY STRATEGY ............................................................... 8
2.1 VISION ......................................................................................................................................................... 9
2.2 MISSION ...................................................................................................................................................... 9
2.3 STRATEGIC GOALS ..................................................................................................................................... 9
3. STRATEGIC PLAN .................................................................................................... 10
3.1 KEY ELEMENTS FOR A SUCCESSFUL STRATEGY ......................................................... 10
4. IMPLEMENTATION MEASURES ............................................................................... 11
4.1 REQUIREMENTS FOR CYBER INFRASTRUCTURE PROTECTION ................................ 11
4.3 GENERAL DIRECTION AND GOALS ............................................................................ 11
4.4 GUIDING FRAMEWORK .................................................................................................. 12
5.
SPECIFIC OBJECIVES AND ACTIONS ..................................................................... 12
5.1 STRATEGIES AND PROGRAMMES .................................................................................. 12
6. DIMENSION 1: ESTABLISHING NATIONAL RISK ASSESSMENT ................................ 14
6.1 STRATEGY 1: UNDERSTANDING RISK ................................................................... 14
6.2 PROGRAMME 1: NATIONAL THREAT ASSESSMENT................................................... 15
7. DIMENSION 2: BUILDING CYBER SECURITY CAPABILITIES .................................... 17
7.1 STRATEGY 2: CONTROLLING RISK ........................................................................ 17
7.2 PROGRAMME 2: PREVENTIVE CAPABILITY PROGRAM................................................. 17
7.2 PROGRAMME 3: PROTECTIVE CAPABILITY PROGRAM................................................. 18
7.3 PROGRAMME 4: RESPONSE CAPABILITY PROGRAM.................................................... 21
7.4 PROGRAMME 5: ENHANCEMENT OF LAW ENFORCEMENT CAPABILITY .................... 23
7.5 PROGRAMME 6: GOVERNMENT CYBER SECURITY EMHANCEMENT PROGRAM ........ 25
7.5.5 ACTIONS ................................................................................................................................................ 25
7.6 CRISIS MANAGEMENT ........................................................................................... 27
7.6.1 PROGRAMME 7: BUSINESS CONTINUITY / RESILIENCY PROGRAM ......................... 27
7.7 PROGRAMME 8: REMEDIATION PROGRAM ................................................................ 30
8. DIMENSION 3: INSTITUTIONAL GOVERNANCE FRAMEWORK .................................. 30
8.1 STRATEGY 3: ORGANIZATION AND MOBILIZATION FOR CYBER SECURITY ........... 30
8.2 PROGRAMME 9: ESTABLISHING NATIONWIDE MONITORING POINTS ....................... 31
9. DIMENSION 4: NATIONAL & INTERNATIONAL COOPERATION ................................. 31
9.1 PROGRAMME 10: ESTABLISHING PUBLIC AND PRIVATE
PARTNERSHIP/COOPERATION ....................................................................................... 31
9.1.2
ACTIONS .......................................................................................................................................... 31
Page 2 of
112
GAMBIA NATIONAL CYBER SECURITY STRATEGY AND ACTION PLAN 2020-2024