Authors : Joseph Nylander

Volume/Issue : Volume 10 - 2025, Issue 9 - September

Google Scholar : https://tinyurl.com/49j98drk

Scribd : https://tinyurl.com/5y3y2jeu

DOI : https://doi.org/10.38124/ijisrt/25sep124

Note : A published paper may take 4-5 working days from the publication date to appear in PlumX Metrics, Semantic Scholar, and ResearchGate.

Note : Google Scholar may take 30 to 40 days to display the article.

Abstract : In an era of rapid digital transformation, the Republic of Sierra Leone stands at a critical juncture. The enactment of the Cybersecurity and Crime Act of 2021 and the establishment of the National Cybersecurity Coordination Centre (NCCC) have laid a foundational legislative and institutional groundwork. However, the transition from legal frameworks to tangible, resilient cybersecurity capabilities presents a formidable challenge. This article provides a comprehensive analysis of Sierra Leone's current cybersecurity landscape, identifying key vulnerabilities, institutional capacities, and strategic imperatives. By drawing on established international governance frameworks such as the NIST Cybersecurity Framework, ISO/IEC 27001, and the Cybersecurity Capacity Maturity Model for Nations (CMM), this article proposes a multi-layered, adaptive, and context- specific cybersecurity governance framework for Sierra Leone. The proposed framework emphasizes a whole-of-society approach, integrating public-private partnerships, fostering a vibrant cybersecurity workforce, and promoting a deeply ingrained culture of cyber awareness. It is argued that for Sierra Leone to fully harness the dividends of its digital future, it must move decisively from "Act" to "Action," architecting a governance model that is not merely compliant, but truly resilient.

References :

1. Government of Sierra Leone. (2021). The Cybersecurity and Crime Act, 2021.
2. Government of Sierra Leone. (2021). National Cybersecurity Policy and Strategy for Sierra Leone 2021-2025.
3. Government of Sierra Leone. (2021). National Digital Development Policy.
4. International Telecommunication Union. (2018). Guide to Developing a National Cybersecurity Strategy.
5. National Institute of Standards and Technology. (2018). Framework for Improving Critical Infrastructure Cybersecurity.
6. International Organization for Standardization. (2022). ISO/IEC 27001:2022 Information security, cybersecurity and privacy protection — Information security management systems — Requirements.
7. Global Cyber Security Capacity Centre, University of Oxford.⁴⁶ Cybersecurity Capacity Maturity Model for Nations (CMM).
8. The World Bank. (2023). Sierra Leone Digital Transformation Project.
9. African Union. (2014). African Union Convention on Cyber Security and Personal Data Protection (Malabo Convention).