Ghana has launched the Cyber and Information Security Directive (CISD) 2026, a transformative framework designed to build a safer and more resilient digital financial sector.
It is intended to address the complex cybersecurity risks, including ransomware attacks and systemic data breaches, that accompany the rapid advancements in mobile money, cloud computing, and artificial intelligence, which have significantly expanded financial inclusion.
Key features include governance frameworks for artificial intelligence, stricter cloud computing security protocols, proportional regulatory requirements based on institutional size and risk, and mandatory board-level accountability for cybersecurity.
Speaking at the launch, the Governor of the Bank of Ghana, Johnson Asiama, said the revised directive moves beyond basic compliance to promote active and collective cyber resilience across the sector.
He announced the expansion of the Financial Industry Security Operations Centre (FICSOC) to cover all financial institutions, including fintechs and microfinance entities, creating a unified national defence system.
The Governor emphasised that sustaining such infrastructure would require a shared responsibility model across the industry, ensuring continuous investment in advanced technologies and skilled personnel.
Meanwhile, the Chief of Staff, Julius Debrah, underscored the critical importance of cybersecurity as a pillar of economic stability, stating that Ghana’s financial sector must embed cyber resilience at the core of its operations to safeguard public trust and national development.
He noted that as the financial sector becomes increasingly technology-driven, cyber risks now pose significant threats to businesses, investments, and everyday economic activity, adding that cybersecurity can no longer be treated as a narrow technical issue but as a strategic priority requiring collaboration among regulators, financial institutions, and industry leaders.
He therefore applauded the Bank of Ghana for establishing a robust regulatory framework and operational structures to enhance preparedness, detect threats, and respond effectively, describing the initiative as a major step toward building a secure and trusted digital financial ecosystem.
The Minister for Communication, Digital Technology and Innovations, Samuel Nartey George (MP), reaffirmed the government’s commitment to positioning the Ministry as an enabler of Ghana’s digital economy, rather than merely a regulatory or procurement institution.
He highlighted the evolving role of technology in banking, noting that financial institutions now increasingly see technology not just as an enabler but as the core of their business models.
The Minister commended the Governor of the Bank of Ghana for its leadership in cybersecurity coordination, describing it as one of the most effective sectoral Computer Emergency Response Teams (CERTs) in the country.
He stressed the importance of onboarding all financial technology firms into the cybersecurity framework and announced that all licensed entities under the central bank would soon be designated as Critical Information Infrastructure to strengthen compliance enforcement.
The Minister Nartey George further reiterated the government’s policy on data sovereignty, emphasising that sensitive financial data must be stored within Ghana to ensure business continuity and national security, particularly in an era of rising global cyber threats. He called for stronger collaboration across institutions, noting that collective defence mechanisms remain the most effective way to address evolving cyber risks.
Click to read more:
Source:
opemsuo.com