The Central Bank of Kenya (CBK) has announced the establishment of the Banking Sector Cybersecurity Operations Centre (BS-SOC).

The BS-SOC is a key component in the implementation of the Computer Misuse and Cybercrime (Critical Information Infrastructure and Cybercrime Management) Regulations, 2024, and a strategic initiative under the Central Bank of Kenya (CBK) Strategic Plan 2024-2027.

The BS-SOC is currently under CBK’s Cyber Fusion Unit, and is equipped to provide critical services such as Cyber Threat Intelligence, Incident Response, Digital Forensics, and Cyber Investigations.

CBK said it takes note of the prevailing regulatory compliance pressures and has commenced the process of aligning and harmonising the Commercial Banks Cybersecurity Guidelines 2017 and the Payment Service Providers Cybersecurity Guidelines 2019 with the provisions of the Computer Misuse and Cybercrimes (Critical Information Infrastructure and Cybersecurity) Regulations 2024.

Meanwhile, all regulated institutions must continue to comply with both sets of the requirements simultaneously and are mandated to report cybersecurity incidents to the BS-SOC within stipulated timelines under the CMCA Regulations.

Stakeholder Co-operation

The successful implementation of this initiative requires the full collaboration and cooperation of all stakeholders. This partnership is imperative to enhance the resilience of the banking sector against the significant and persistent challenges posed by sophisticated cyber threat actors.

Contact Details Provided for Queries and Clarity

In the event of any query or clarification, please contact: The Head, Cyber Fusion Unit, Central Bank of Kenya, P. O. Box 60000-00200, Nairobi, or via telephone on: +254 710 445926, or via e-mail to BS-SOC@centralbank.go.ke.

Central Bank of Kenya, CBK Governor
Photo/CBK