National Computer and Cybercrimes Coordination Committee
Mandate, functions, structure, and operational governance of Kenya's national cybercrime coordination framework.
General About
The National Computer and Cybercrimes Coordination Committee (NC4), established under the Computer Misuse and Cybercrimes Act No. 5 of 2018.
Membership
01. Principal Secretary, Ministry of Interior & National Administration (Chairperson)
02. Principal Secretary, Ministry of Information, Communications and The Digital Economy (MIC-DE)
03. The Attorney-General (AG)
04. The Chief of the Kenya Defence Forces (CDF)
05. The Inspector-General of National Police Service (IG NPS)
06. The Director-General of the National Intelligence Service (DG NIS)
07. The Director-General of the Communication Authority of Kenya (DG CA)
08. The Director of Public Prosecutions (DPP)
09. The Governor of the Central Bank of Kenya (Gov CBK)
10. The Director of the NC4 Secretariat
11. The Office of The Data Protection Commissioner (ODPC)
Co-Opted Members
01. Kenya Revenue Authority (KRA)
02. Financial Reporting Centre (FRC)
03. National Cohesion and Integration Commission (NCIC)
04. ICT Authority (ICTA)
05. Assets Recovery Agency (ARA)
Vision & Mission
Vision
Safe and trusted cyberspace for the people of Kenya.
Mission
To build a secure and resilient cyberspace through a coordinated approach while maximizing on the benefits of a digital economy.
NC4 Mandate
The National Computer and Cybercrimes Coordination Committee (NC4) is a multi-agency entity established by the Computer Misuse and Cybercrimes Act No. 5 of 2018 (CMCA) to coordinate national cybersecurity matters to enable timely and effective detection, prohibition, prevention, response, investigation and prosecution of computer misuse and cybercrimes; and facilitate international co-operation in dealing with computer and cybercrime matters in Kenya.
NC4 Functions
01. Advise the National Security Council on computer and cybercrimes
02. Advise the Government on security-related aspects touching on Critical Information Infrastructure (CII) and New & Emerging Technologies (Blockchain, 5G, AI, IoT)
03. Approval of the identification and designation of critical information infrastructure
04. Formulation of codes of cybersecurity practice and standards of performance for owners of critical information infrastructure and sectors
05. Review of compliance reports submitted by owners of critical information infrastructure
06. Evaluation of audit reports submitted by the Secretariat on designated critical information infrastructure
07. Approval of the development and management of the National Public Key Infrastructure Frameworks
08. Consideration and approval of non-financial and financial records submitted by the Director
09. Consideration of reports on emerging technologies and their impacts on security for informed decision-making
10. Coordination of cybersecurity research undertaken by the Secretariat and consideration of the research for informed decision-making
11. Coordinate national security organs in matters relating to computer and cybercrimes
12. Receive and act on reports relating to computer and cybercrimes
13. Develop a framework to facilitate the availability, integrity, and confidentiality of CIIs
14. Coordinate the collection and analysis of cyber threats, and response to cyber incidents
15. Cooperate with computer incident response teams locally and internationally in response to threats of computer and cybercrime and incidents
16. Establish codes of cybersecurity practice and standards of performance for implementation by owners of CIIs
17. Develop and manage a National Public Key Infrastructure (NPKI) framework
18. Develop a framework for training and awareness on matters computer and cybercrime
19. Perform any other function conferred on it by CMCA, 2018 or any other written law
NC4 Structure
NC4 is a multi-agency committee established under CMCA, 2018 and composed of principal government security, legal, regulatory, intelligence, financial, and data protection institutions, supported by co-opted agencies as required.
NC4 Secretariat
The Secretariat serves as the operational hub implementing NC4 decisions.
Secretariat Divisions
01. Critical Information Infrastructure Protection (CIIP)
02. National Computer and Incident Response Team (NCIRT)
03. National Public Key Infrastructure (NPKI)
04. Info/Cybersecurity
05. Capacity Building and Training
06. Coordination and Liaison