By 
The Nigerian Communications Commission (NCC) has directed telecommunications operators and other communications service providers to report any cyberattack within four hours of detection as part of new measures to strengthen the security of Nigeria’s telecom infrastructure.
The requirement, which will take effect in February 2027, is designed to improve the protection of critical communications networks and safeguard the data of millions of subscribers across the country. Operators have been given one year to upgrade monitoring systems and establish rapid-response reporting structures to comply with the directive.
New Rules for Faster Incident Reporting
The order forms part of the Cyber Resilience Framework for the Nigerian Communications Sector (CRF-NCS), released by the NCC in February 2026.
Under the framework, telecom operators are required to promptly notify the regulator once a cyber threat is detected and provide continuous updates until the issue is fully resolved.
According to the guidelines, telecommunications companies must alert the regulator within four hours of detecting a cyber incident and continue to submit updates at four-hour intervals until the threat has been contained. Operators are also required to submit a confirmation report within 24 hours through a dedicated reporting portal.
Regulators say the faster reporting timeline is intended to prevent minor cybersecurity breaches from escalating into major disruptions or widespread data leaks that could threaten the country’s growing digital economy.
Mandatory 24/7 Security Monitoring
To meet the new reporting requirements, the NCC has also mandated telecom operators to establish dedicated Security Operations Centres (SOCs).
These centres will monitor network activity around the clock, enabling companies to quickly identify suspicious activity, malware, or hacking attempts.
Beyond threat detection, the SOCs will also coordinate rapid internal responses to cybersecurity incidents.
The regulator said the centres are expected to detect and report malicious activity promptly while ensuring effective internal coordination when responding to cyber threats.
Industry Collaboration and Threat Intelligence
The framework also promotes stronger collaboration across the telecommunications sector.
Each operator will be required to appoint a cybersecurity lead responsible for working directly with the commission’s Computer Security Incident Response Team (CSIRT).
This arrangement is intended to improve threat intelligence sharing across networks, enabling operators to quickly warn others if a new cyber threat emerges.
According to the NCC, such collaboration will allow companies to take preventive measures when similar threats are detected elsewhere in the communications ecosystem.
Protecting Critical Digital Infrastructure
Telecommunications networks have become central to Nigeria’s digital economy, supporting services ranging from mobile banking and e-commerce to government platforms and everyday internet connectivity.
A major cyberattack on telecom infrastructure could disrupt communications nationwide and affect key digital services.
As part of broader regulatory efforts, the NCC has already tightened cybersecurity requirements within the industry. Under the revised Internet Code of Practice introduced in 2026, operators are required to notify customers within 48 hours if their personal data has been compromised.
Strengthening Sector Cybersecurity
The commission said the Cyber Resilience Framework is part of a broader strategy to improve the security of Nigeria’s communications infrastructure and create a coordinated response to cyber threats across the sector.
With the February 2027 compliance deadline approaching, telecom operators are expected to invest in stronger monitoring systems and enhanced cybersecurity capabilities to meet the new regulatory requirements.
Comments