Pakistan is gearing up to fortify its digital borders! The government is taking a significant step towards enhancing national security by establishing the country’s first-ever Cybersecurity Authority.
A groundbreaking move: The initial draft of the National Cyber Security Act is ready, marking a pivotal moment in Pakistan’s digital defense strategy. This act will establish a central authority to oversee and enforce cybersecurity practices, ensuring a coordinated approach across all sectors.
According to the Federal Minister’s statement, this authority is a cornerstone of the National Cyber Security Policy (NCSP-2021), which aims to protect Pakistan’s digital assets and its citizens’ online privacy. The policy is part of the Digital Economy Enhancement Program (DEEP), a comprehensive initiative to strengthen trust in digital governance.
Protecting Critical Infrastructure: The government has already identified the data and systems of NADRA, FBR, and the telecom sector as Critical Information Infrastructure (CII). This classification ensures heightened security measures for these vital systems. Additionally, guidelines for identifying and safeguarding other CIIs have been issued, with the Immigration & Passports systems next in line for this designation.
Temporary Arrangements: While the Cybersecurity Authority is in the works, a CERT Council, established under the CERT Rules 2023, is filling the gap. This council, comprising members from various ministries, telecom operators, academia, and civil society, is tasked with enhancing cyber incident response and public-private cooperation.
But here’s a twist: Will this new authority centralize too much power, potentially creating a single point of failure? Or is it a necessary step to streamline cybersecurity efforts? The debate is open, and your insights are welcome!