The Cyber Security Authority (CSA) of Ghana is calling for the continued vigilance, collaboration and coordinated incident response capabilities across all sectors of the economy to reduce cybercrime in the country
Data from the National Computer Emergency Response Team shows that as of September 2025, Ghana has recorded 3286 confirmed incidents of cybercrime and cyber incidents, resulting in a loss of GH¢19.3 million. In the first half of the year, the CSA said the country recorded no fewer than 20 instances of attacks on the infrastructure of institutions across the various sectors, including website defacement, impersonation and malicious redirection.
It also noted at least 35 instances of exposure of sensitive data from several institutions on the dark web. The government sector was the most impacted, accounting for 43% of the discoveries, followed by the banking and finance and the health sector with 19% and 16% respectively
To this end, the Acting Director General of the CSA, Divine Selase Agbeti, says it is extremely important to adopt structured and approved frameworks that protect critical information infrastructure and promote information security to effectively mitigate these risks and adequately protect ourselves and organisations.
He disclosed this at a webinar organised by professional services firm Deloitte on “Demystifying Conformance to Clause 4.4of ISO 27001”.
He commended Deloitte for a laudable initiative in organising this webinar in observance of the National Cyber Security Awareness Month.
According to him, this is an example of how the pursuit of a resilient cybersecurity ecosystem rest on the fundamental principles of collaboration.
“In recent years, Ghana has made notable strides in strengthening its cyberspace through the enactment of the Cyber Security Act 2020, Act 38, establishing the Cyber Security Authority. We have institutionalised a robust government framework to protect our digital infrastructure, promote public trust and support innovation in the digital economy”, he added.
A Consulting Partner at Deloitte, Serwa Atiase Dzogbenuku, said her outfit will continue to lead the way in the cybersecurity space by providing advisory services that ensure digital infrastructure is protected.
She noted that the ISO 27001 standard will serve as a blueprint for establishing and maintaining an effective information security management system, while Clause 4.4 ISO 27001 Standard serves as a very backbone of the framework, requiring organisations to establish, implement, maintain and continually improve their information security management systems.