The Parliament of Kenya has approved the National Cybersecurity Agency Order, 2026, paving the way for the establishment of the National Cybersecurity Agency (NCSA).
The Ministry of Interior and National Administration welcomed the parliamentary approval, citing that the NCSA, as an autonomous body, will coordinate Kenya’s cybersecurity efforts.
In a press release dated June 22, the Ministry clarified that approval of the NCSA order will strengthen and protect Kenya’s digital infrastructure.
“The Ministry welcomes the parliamentary approval of the National Cybersecurity Agency Order, 2026, a key step in the establishment of a national agency to regulate and coordinate cybersecurity and strengthen the protection of Kenya’s digital infrastructure,” part of the press release read.
Parliament on NCSA Approval
Following the approval of the NCSA order, President William Ruto is set to establish the National Cybersecurity Agency (NCSA).
Pursuant to the State Corporations Act, Cap. 446 under Legal Notice No. 89 dated May 25, the agency is established as per the presidential order.
NCSA will be responsible for expanding the digital ecosystem and safeguarding critical information infrastructure that supports national security, public service delivery, and the economic activities of Kenyans.
In addition, Parliament’s approval allows the NCSA to address ransomware attacks, identity theft, large-scale data breaches, and misinformation campaigns in Kenya.
Further approval grants the NCSA the authority to protect the critical information infrastructure that supports public service delivery and online commerce.
Also Read: 10 Finance Bill and Budget Proposals That Have Earned Praise from Kenyans
NCSA Functions in Maintaining Cybersecurity
According to the 2026 Order, the Agency, whose offices will be located in Nairobi, has been granted by Parliament the power to establish specialized satellite units across the country.
NCSA is responsible for formulating and overseeing national cybersecurity strategies for both the public and private sectors.
Further, the Agency will ensure the protection of infrastructure by auditing and certifying the resilience of designated critical information infrastructure.
Management of the day-to-day operations of the National Cybersecurity Operations Center and supporting sectoral centers will be the responsibility of the NCSA, according to the approved order.
Additionally, the NCSA will establish cybersecurity centers to promote local innovation, research, and professional certification programs to address the national skills gap.
According to President Ruto, the establishment of the cybersecurity centers will bridge the gap through specialized professional certification programs and technical training curricula.
As technical advisors, the NCSA will conduct vulnerability assessments of digital networks and issue technical advisories to stakeholders.
Through the parliament’s approval, the NCSA is empowered to formulate and enforce technical guidelines to mitigate the impact of unauthorized network intrusions and large-scale disruptions.
Also Read: LIVE: Kenyan Activist Arrested in CBD During Budget Reading at Parliament
NCSA Management Composition
The board of directors will manage the National Cybersecurity Agency, with the chair being a non-executive chairperson appointed by the president.
Additionally, the Board shall have representatives from the Internal Security, which is the overseeing ministry, the National Treasury, ICT and the Digital Economy, the Office of the Attorney-General, the Kenya Defense Forces (KDF), the National Police Service, and the National Intelligence Service (NIS), as well as representatives from the Office of the Director of Public Prosecutions.
An additional two members representing the private and academic sectors will be appointed to the board.be
To maintain the NCSA’s administrative and financial autonomy, the agency will appoint a Director-General through a recruitment process.
To qualify as the NCSA Director-General, one must be a Kenyan citizen with at least a master’s degree and ten years of senior management experience in fields such as cybersecurity, law, or economics.
Additionally, a Corporation Secretary, responsible for maintaining records of the Board’s deliberations and ensuring legal compliance, will be appointed to support the leadership role of the Director-General.
Parliamentary appropriations, service fees, and approved grants or donations will be used to support the Agency’s financial performance.
Follow our WhatsApp Channel and X Account for real-time news updates.
