Factors Affecting Cyber Security In National Government Ministries In Kenya

Abstract

The main justification of e-government systems is to offer public services conveniently and continuously over open and distributed networks. Security reliability of information connected over distributed networks offering convenience to stakeholders is vital not only in the private sector but also in the public sector. The main aim of the study was to establish what factors affect cyber security in public service in Kenya, specifically National Government Ministries in Kenya. This study employed a descriptive research design. The target respondents for this study comprised of Information Communication Technology (ICT) Officers in the Ministries and Internal Auditors involved in review of Information Systems. The study collected primary data as the preferred source of research data with the help of structured questionnaires. This study concludes that factors affecting cyber security in the National Government Ministries in Kenya are principally divided in to external motivations for cyber attacks and internal organizational system vulnerabilities. The key external motivations for cyber attacks are i) systems sabotage and exploitation of systems’ weakness, ii) business rivalry systems exploitation for illegal competitive strategy insights, and iii) systems attacks due to ideological differences. The internal organizational factors affecting cyber security were identified as i) lack of management support in implementation and adherence of cyber security strategy and standards, and ii) employees’ systems exploitation for personal gains. Lack of management support in implementation of cyber security is a major contributor to poor cyber security in the Public Service. The sustained efforts for adoption of e-government across ministries service delivery should also propagate for sustainable cyber security mechanisms in the strategies’ development and adoption. The management need to comprehend the impact of cyber attacks on Ministries service delivery. Cyber security issues need to championed even to the political class, so as to positively influence funds apportionment and drive for adherence to the cyber security strategy. There is also need to address the ethical aspect of employees working in the ministries’ information systems in view of their involvement in systems sabotage and exploitation of the systems for financial gains.