The Nigerian Communications Commission (NCC) is developing a national cybersecurity framework to protect digital infrastructure and boost online safety for millions of telecom consumers. The framework, which will take effect in 2026, is designed to tackle security risks posed by emerging technologies while strengthening Nigeria’s fast-growing digital economy.
The Commission disclosed this during its second stakeholder engagement on the framework held in Abuja. According to the NCC, the initiative builds on earlier consultations with industry players and aims to set minimum standards for cybersecurity resilience in the telecom sector.
At the meeting, the Commission’s Executive Commissioner for Technical Services said the increasing digitalisation of services, rapid data exchange, and growing sophistication of cyber threats make it urgent to establish a “robust, adaptive, and inclusive cybersecurity framework.” He warned that cyber risks have expanded beyond traditional issues of confidentiality, integrity, and availability of data to now include threats to human safety.
The telecom industry, he explained, faces heightened risk because of its role as the backbone of Nigeria’s digital economy. Cyberattacks targeting the sector have grown more coordinated, often striking at control systems and data integrity, and threatening critical operational technology. He noted that these attacks could severely disrupt national development, economic transformation, and social interaction.
The NCC stated that the ongoing consultations are designed to refine the framework, validate its principles, and align stakeholders on effective implementation strategies. It emphasised that safeguarding Nigeria’s digital ecosystem requires shared responsibility and stronger collaboration between government and private sector actors.
During the forum, consultants from CyberNover presented the draft framework to participants, while the NCC’s Head of Cybersecurity and Internet Governance confirmed that the project is supported by the World Bank. The final version is expected by the third quarter of 2025, ahead of its rollout in early 2026. He urged stakeholders to remain actively engaged as the Commission works to enhance Nigeria’s cybersecurity readiness.
The Abuja meeting also reviewed technical contributions from the first round of discussions and provided a platform for industry players and government agencies to harmonise strategies for improving sector resilience.
The cybersecurity initiative for Nigeria’s telecom industry was first announced in June, with the NCC explaining that it would outline minimum expectations for operators in areas such as incident reporting, risk management, information sharing, and cooperation with regulators. The framework will also be guided by national laws including the Cybercrime Prevention Act of 2015 and the Nigerian Data Protection Act of 2023, which mandate stronger cybersecurity safeguards for critical sectors.
