The Kenya Bureau of Standards (KEBS) has called for strengthening of security systems across the public and private sectors to secure the country against cyber-attacks.
KEBS Board Chairman Dr Chris Wamalwa said the country was facing a growing scale and complexity of cyber threats targeting critical national infrastructure, corporates and financial institutions.
This, he said has put state and corporate entities under constant pressure to defend their digital assets, employee data, customer records, financial information and trade secrets calling for collaborative efforts to scale up investments in security infrastructure.
“Threat intelligence sharing, regional cooperation, and adoption of cutting-edge tools such as AI-powered security monitoring and next-generation firewalls must become our norm, not our ambition,” he said.
Speaking in Kisumu during the 5th Annual Security Management Conference, Wamalwa said KEBS was on the forefront in securing Kenya’s digital economy and cyber space through standardization, metrology, and conformity assessment.
He singled out ISO/IEC 27001, the global benchmark for Information Security Management Systems (ISMS), as a critical tool in building digital trust.
“Certification does more than protect data; it builds confidence among your stakeholders, suppliers, customers and investors that your operations are grounded in trust and best practices,” he said.
Wamalwa rooted for investments in Artificial Intelligence (AI) to take the war against cyber threats a notch higher.
“Artificial Intelligence offers enormous potential, improved efficiency, predictive analytics, better customer service — but it also presents complex risks,” he said.
Dr. Wamalwa warned that Kenya must prepare not only for the benefits of AI but also for the ethical dilemmas and cybersecurity threats that accompany it.
KEBS Managing Director Eng. Esther Ngari said the agency has rolled out measures to step up cybersecurity in the country.
In a speech read on her behalf at the conference by KEBS Western Regional Manager Caroline Outa, the MD said the agency will continue to provide a regulatory framework that complements digitization, and that consciously provides safety around Information Security Management.
KEBS, she said, has adopted a holistic strategy that integrates global best practices and internal vigilance to give impetus to cybersecurity measures.
“We have been certified to Information Security Management System (ISMS) based on ISO/IEC 27001:2022 integrated with Business Continuity (BCMS) based on ISO 22301 as a commitment to ensuring that the organization and its employees remain proactive,” she said.
KEBS, she said, has cultivated a culture of daily cyber hygiene among its employees, encouraging them to use strong passwords and password managers, enable multifactor authentication, recognize and report phishing attempts, and install system updates regularly.
“Security starts with the individual,” she said. “By promoting a culture of cybersecurity awareness, we have been able to achieve our vision of being a global leader in standards-based solutions for trade and sustainable development,” she said.
Outa added that KEBS was actively involved in the development of standards for safe and ethical use of AI, ensuring the technology supports inclusive growth, consumer protection, and national sustainability goals.
“AI-driven innovation has the potential to revolutionise Kenya’s industries by automating processes, enhancing service delivery, and improving decision-making,” she said. “Our role in setting standards will ensure these technologies are implemented responsibly and contribute to economic growth.”
By Chris Mahandara
