By 
The Central Bank of Kenya (CBK) has launched the Banking Sector Cybersecurity Operations Centre (BS-SOC), a dedicated hub to strengthen cyber resilience across Kenya’s financial system amid a sharp rise in cyberattacks targeting banks and financial institutions.
The BS-SOC, established under CBK’s Cyber Fusion Unit, will provide round-the-clock monitoring, threat intelligence, digital forensics, and incident response services for all CBK-regulated banks and financial institutions. Its core objective is to enhance sector-wide capacity to detect, prevent, and mitigate cybercrime.
The launch aligns with CBK’s 2024–2027 strategic plan and supports the enforcement of the Computer Misuse and Cybercrime Regulations, 2024, which prescribe industry-wide standards for managing and reporting cybersecurity incidents.
Strengthening Regulatory Oversight
In tandem with the new centre, CBK is revising its 2017 Cybersecurity Guidelines for banks and 2019 rules for payment service providers to reflect evolving threats. Pending the issuance of updated directives, financial institutions must continue to comply with both existing and new requirements, including mandatory reporting of all cyber incidents to the BS-SOC within stipulated timelines.
CBK underscored that the success of the initiative hinges on collective responsibility:
“The successful implementation of this initiative requires the full collaboration and cooperation of all stakeholders,” the regulator stated.
Rising Cyber Threats in Kenya
The urgency of the initiative is underscored by data from the Communications Authority of Kenya, which recorded more than 2.5 billion cyber threat incidents in Q1 2025 alone. CBK’s own figures revealed that cybercriminals siphoned off KES 1.59 billion ($12 million) from bank customers in 2024—the highest annual loss on record.
This surge highlights the paradox of Kenya’s rapidly expanding digital banking ecosystem: while financial inclusion is rising, vulnerabilities in cyber defences expose both banks and their customers to escalating risks.
A Critical Step for Digital Trust
By serving as an intelligence-sharing and coordination hub, the BS-SOC is expected to improve sector readiness, speed up responses to cyber incidents, and help safeguard public trust in the financial system. Analysts note that the move is a crucial step in narrowing Kenya’s cybersecurity gaps, ensuring that the growth of digital banking is matched by stronger protections for consumers.
With the BS-SOC now operational, CBK has reaffirmed its commitment to fortifying financial stability, protecting customer data, and enhancing confidence in digital financial services—all essential pillars for sustaining Kenya’s economic growth in an increasingly digital era.
Comments