The country’s first-ever Financial Industry Cybersecurity Council was officially launched last week by the Bank of Namibia and the financial industry. 

The council’s purpose is to provide a productive forum for the banking and non-banking financial sector to foster conversations and develop tactical strategies to combat cyber fraud within the industry. 

The council’s objectives include examining problems such as data leaks, Secure Sockets Layer (SSL) security and phishing as well as helping ensure issues around cybersecurity within the financial industry receive the necessary priority from all players. 

It will further improve the maturity levels of cybersecurity within institutions and the financial sector as a whole by enabling leaders in information security to share knowledge within and across firms.  The council is also entrusted with ensuring efficiency in cyber-risk management, as institutions can leverage one another. 

As such, the council will convene meetings of experts for a structured dialogue on cutting-edge issues and devise appropriate strategies to mitigate sector-wide threats and vulnerabilities. ‘’The Covid-19 pandemic’s emergence sparked the acceptance of the 4th Industrial Revolution as seen in the rising use of digital payments that have become even more pervasive in Namibia’s financial sector,’’ said the Bank of Namibia’s deputy governor Leonie Dunn, officiating the launch of the council. “Cyberspace, like the internet, is an integral aspect of our lives always, from the sources and flow of information to how money moves inside our financial system. As connectivity has risen, there is a larger risk of information leaks, security breaches, hacks and other cyber security threats,” she said. 

The deputy governor emphasised that cooperation, collaboration and coordination will increase cybersecurity stretches and secure the security of individual institutions, despite the fact the evolving nature of cybersecurity may be perceived as a danger by some.  “While this is a sector-based intervention, we welcome developments at a national level that are geared towards building resilience and capabilities in cybersecurity. This includes the development of a national cybersecurity response plan by the Ministry of Information and Communication Technology (MICT). The draft Cybercrime Bill and draft Data Protection Bill are among the pieces of cybercrime-related legislation the Namibian government is currently working to complete,” said Dunn. 

She added that once this legislative framework is complete, the sector-based intervention will be aligned with the national laws.  In outlining the origins of the cybersecurity framework, director of banking supervision Romeo Nel said the central bank created rules in 2018, called the determination of information security to address the absence of adequate and fit-for-the-future cybersecurity in the banking sector. 

A circular to complement the determination on information security was also rolled out. 

“These efforts, however, were only directed at the banking industry, and Bank of Namibia quickly realised that to effectively tackle cybercrime, the entire financial sector needed to adopt a collaborative and consultative methodology,” said Nel.  In light of the aforementioned, Nel went on to say the information-sharing platform will indeed enhance the financial sector’s cyber maturity, which should ideally result in a future-focused plan for the industry to tackle cybercrime.  Moreover, a working group of cybersecurity specialists will support the council as it sets its agenda or strategy.  The council comprises heads of institutions and deputy governors, whilst the working groups consist of cyber and information security specialists from financial sector regulatory bodies, critical financial market infrastructure (FMI), financial sector associations, commercial banks and non-banking financial entities.