The Ministry of Interior and National Administration (MINA) is calling on institutions, organizations, and individuals to submit their comments on the Computer Misuse and Cyber Crimes (Critical Information Infrastructure and Cybercrime Management) (Draft) Regulations, 2023, and Regulatory Impact Statement.
This announcement follows the successful drafting of a new set of regulations to operationalize the Computer Misuse and Cybercrimes Act by the Taskforce on the Development of Regulations that was appointed by the Interior Cabinet Secretary Kithure Kindiki in May 2023.
According to a communique from the Interior Ministry, the move is in line with the constitutional imperative of ensuring wide consultations and public participation.
“Comments and submissions can be hand delivered or sent via registered courier/post to the Ministry of Interior and National Administration physical/postal address within working hours, or sent to the email address ([email protected]), ” the communique says.
The Interior Ministry said that the physical public engagement meetings which will run from August 29 – September 19, 2023, will be conducted in 8 regions across the country and encouraged all stakeholders and members of the public to attend the sessions.
The draft regulations will provide a framework to monitor, detect, and respond to cybersecurity threats in cyberspace belonging to Kenya and provide a framework for the establishment and management of Cybersecurity Operations Centres.
It also seeks to provide for the protection, preservation, and management of Critical Information Infrastructure, provide for audit and inspection of National Critical Information Infrastructure, and provide for recovery plans in the event of a disaster, breach, or loss of national critical information infrastructure or any part of it.
Other objectives of the regulations include the provision of a framework for capacity building on prevention, detection, and mitigation of computer and cybercrimes and matters connected thereto, promotion coordination, collaboration, cooperation, and shared responsibility amongst stakeholders in the cybersecurity sector including critical infrastructure protection and provide for mechanisms for cybercrime management among others.
