From the US to Bangladesh: Key lessons for building a strong national cybersecurity strategy

A strong and efficient national cybersecurity strategy is more important than ever as nations depend more and more on technology and the internet. This trend also applies to Bangladesh as it seeks to defend its citizens, digital assets, and critical infrastructure from cyber threats.

On March 2, 2023, the United States published its most recent national cybersecurity strategy. This strategy illustrates the nation's priorities and approaches to safeguarding its digital ecosystem, and it provides useful insight and lessons that developing nations like Bangladesh can learn from and adapt.

First, one of the most important lessons drawn from the US strategy is the significance of a comprehensive approach to cybersecurity. The strategy emphasised the necessity of cooperation between several sectors - including those of government, private organisations, academia, as well as international partners. In order to combat the constantly changing nature of cyber threats and make sure that everyone in society has a thorough grasp of cybersecurity risks, a collaborative approach is essential.

Bangladesh can take inspiration from this approach and seek to encourage better stakeholder cooperation in its own cybersecurity strategy. For example, the government should cooperate more closely with private organisations to build cooperative efforts for cyber threat identification and response. Additionally, it might collaborate with

academic institutions to create a talent pipeline for cybersecurity specialists and form alliances with international organisations to exchange best practices and get more understanding of current trends in cybersecurity around the world.

Secondly, the US National Cybersecurity Strategy highlights the significance of effective governance and leadership in cybersecurity. The strategy called for a "whole-of-government" approach to cybersecurity, with distinct lines of duty and accountability for cybersecurity activities.

Similarly to this, Bangladesh needs to ensure its governance system is both transparent and functional in order to regulate its cybersecurity strategy. This could entail strengthening the agency tasked with developing and implementing cybersecurity policies and regulations as well as coordinating cybersecurity practices across various government agencies.

Thirdly, the US National Cybersecurity Strategy highlights the importance of cybersecurity education and awareness. The strategy recognises that companies and individuals are frequently the very first line of defence against cyber threats and that it is crucial to give them the resources and information they need to identify possible attacks and respond accordingly.

In Bangladesh, more funding is required for cybersecurity education and awareness campaigns. This might entail creating cybersecurity training courses for government officials, employees in the private sector, and the general population. The government might also collaborate with academic institutions to include cybersecurity education in the curriculum, thereby fostering a culture of awareness and understanding of cybersecurity issues from an early age.

Last but not the least, the lack of a specific emphasis on protecting the nation's critical infrastructure is yet another important area of improvement in the Bangladesh National Cybersecurity Strategy. In recognition of the catastrophic effects that a cyberattack on these critical infrastructures may have on public safety and the economy, the US National Cybersecurity Strategy lists the protection of critical infrastructure as a top priority.

Bangladesh must develop an in-depth plan to safeguard its key infrastructure, such as its power grids, water supply systems, and transport networks. This could entail the creation of policies governing the use of internet-connected hardware in critical infrastructure as well as the formulation of guidelines for the security and functioning of these systems.

In conclusion, Bangladesh may benefit greatly from the United States National Cybersecurity Strategy as it seeks to improve its own cybersecurity framework. Important takeaways include the necessity for a collaborative and holistic approach to cybersecurity, robust leadership and governance frameworks, funding for cybersecurity awareness and education, and a targeted effort to secure critical infrastructure.

It is crucial that the government of Bangladesh takes these lessons to heart and strives to incorporate them into its own cybersecurity strategy as it continues to navigate the quickly changing cyber threat landscape. By doing so, Bangladesh can better defend its citizens and digital assets from the ever-present threat of cyberattacks.

The author is the Managing Director of AM Square Limited, Director of Beatnik Technology Limited and Standard Essential Company Limited. Views are personal. The author can be contacted at abir@amsquaregroup.com.