NC4 : BSides Nairobi Conference 2022

and I would like to welcome Jimmy Matiko from nc4 and we're going to say what nc4 stands for um I'll let you see it so that you can see the weight of what I'm talking about I'm even scared of information now my name is Jimmy uh with me there's a lady and a man I think they should be introduce themselves my name is Joseph Gamo and I'm from Mexico good afternoon my name is thank you [Music] now dancing for briefly before I start running the slides in some quality emergency organization nc4 mandatory responsibilities the Secretariat which runs community and do you remember very well this is National computer and cyber crimes Coordination Committee Poca and then we should look at the community capacity building the programs cyber security career paths within the Secretariat career opportunities and then our conclusion now just a brief introduction due to the increased use and Adoption of Technology by government industry business and individual has resulted in increased digitization and socio-economic growth consequently they need to ensure safe secure and open access to these icts in the face of rapidly growing cyber threats security cyber environment is an individual and Collective concern involting all stakeholders in government private sector simple Society Academia and international partners similarly the ability to effectively secure the cyber space and the first one threat environment requires a capable Workforce with requisite cyber security skills or expertise knowledge and robust research and development ecosystem among others foreign the government of Kenya through legal and Regulatory Frameworks thanks for is from the act of cbm's year of 2018 that is computer missions and cyber claims act this act the governor all the penalties relating to cyber issues and then we have the cyber security strategy in relation to all matters of our cyberspace in Kenya and then we just put in place initiatives and structures to promote cyber security capacity building in Kenya now nc4 the government of Kenya enacted the computer misuse and cyber Crimes Act of 2010 on 30th May 2018. the app provides for fences relating to computer systems to a number of training and effective detection remission prevention response investigation and prosecution of computer and cyber claims the result about the agency comes in effectively discharge all these spinners when it comes to prosecution somebody said this year their start again the president former president had launched the digital forensics lab or the forensics lab because it encompasses so many investigative arms in that lab and then you have a section 4 the cmca 2018 establishes nc4 and its Secretariat which has operationalized which was operationalized on 15th September 2021 the mc4 is a multi-agency entity for advising and coordinating cyber security matters in the Republic of Kenya Republic of Kenya it is also a focal point of contact in all national cyber security opportunities and engagements in Kenya those are some of the mandates offensive now the Secretariat which is used to run the mc4 or to be to discharge some of the responsibilities being assigned section 7 of cmca 2018 establishes the Secretariat which comprehends the director public officers second letter and specialist staff responsible for the implementation of nc4 decisions a very clear are we hurting someone the difference between nc4 committee and uh nc4 Secretariat are we somewhere good I'll assume silence means I don't want to imagine but that's a question where you think you're lost the Secretariat is the responsible for advising on and coordinating government of Kenya cyber security matters that is in terms of strategies policies standards and regulations development and management of the national public key infrastructure framework conducting National laborator analysis and cyber security risk assessments these are opportunity areas within mcnc4 security Target and from your background you can always fit in one of the responsibilities there coordinating self-incident response and management I think you'll be getting the keywords at coordinating development advising and we will get the difference from what Madame told you promoting cyber security capability and capacity in getting approved training and awareness programs engaging and collaborating with the relevance stakeholders at the national Regional and international on cyber security matters now capacity building programs you have the growing great environment has placed Dynamic demand for qualified cyber Security Professionals both National nationally and globally the demand for cyber security experts in Kelly's doing steadily in the due to the increased uptake of technology in both the public and private sector the government the government the Kenyan government is building cyber security capability to protect Human Services through developing local cyber security skills and knowledge we have an example like in club I think the the program they'll talk more about it we have minister of ICT of cyber Security Experts and then supporting research and development on cyber security Foster local bt2 immigration and organizing awareness training workshops uh civil security career paths we have separate intelligence mandates of the Secretariat Simple Plan investigation and enforcement engineering digital forensics incidence of incident response penetration testing secure design engineering risk assessment and compliance audit simple security training and awareness these are some of the career paths people can pursue in this agency called nc4 career opportunities cyber security governance structure in clinical information infrastructures the other assists since so that is a safe analysts establishment or service operation centers in critical sectors security operational centers establishment of a security center of excellence establishment of cyber security innovation research and development focused effective and development cyber security solutions for our country depending on the theater environment and employment opportunities for cyber security practitioners at nc4 Secretariat that is if you hold some of those career paths in conclusion cyber security is a shared responsibility that requires all stakeholders to operating cooperating training as well as raising sharing information reporting of cyber incidents and that is a the website foreign we also part of solutions that are not it's not an issue of only problems you can only if you have a solution to a problem within our country because your patrons I hope you're not touch it we need that security so as we thought you can also be part of the solution exercising safariating in order to promote our national cyber security posture now National computer and cyber crimes Coordination Committee so these are our contacts if you have a mission if you have a solution if you have a you need to talk to nc4 Secretariat can always email the director and C4 Secretariat is headed by a director and that is the email then there is a lot of content about nc4 and nc4 security on that website and that is the Samsung website where it has a link for reporting all matters relating to our cyberspace so basically mc4 is all about a security check of our cyberspace which is the fifth domain and nc4 is responsible for advising National Security Council on issues pertaining to say back under our cyber security I welcome clarifications questions