Development of a National Critical Information Infrastructure Protection Plan (CIIPP)
As part of Sierra Leone’s commitment to strengthening its national cybersecurity resilience, the SLDTP is currently supporting the development of a Critical Information Infrastructure Protection Plan (CIIPP). This foundational cybersecurity activity is being spearheaded by the National Cybersecurity Coordination Centre (NCCC) with technical support from a consortium led by Ernst & Young and Subah Infosolutions.
The CIIPP will provide a national framework for identifying and protecting the country’s most critical information infrastructure (CII) assets—those digital systems and networks essential to national security, economic stability, and public health and safety.
What the Activity Will Deliver
The assignment includes:
- CIIPP Framework: A national plan defining critical infrastructure sectors and protection mechanisms.
- Legal/Policy Recommendations: Review and proposals to strengthen the legal framework for cybersecurity.
- ectoral Engagements: Extensive consultations with four key sectors (e.g., finance, energy, telecom, and health).
- Awareness & Capacity Building: Training sessions to build institutional capacity and stakeholder understanding.
- CII Asset Mapping: Identification and classification of key infrastructure for protection.
Why This Matters
In the face of growing cyber threats, protecting national infrastructure is critical for service continuity, economic development, and citizen trust. This activity will help:
- Prevent and mitigate cyberattacks
- Improve coordination across public and private sector stakeholders
- Establish protocols for incident response and recovery
Next Steps & Progress Update
Since the inception meeting in June 2025:
- Initial sectoral consultations have commenced.
- The stakeholder engagement roadmap is finalized.
- Preparations are underway for in-depth workshops with the selected sectors.
Final deliverables are expected in October 2025.