NAIROBI, Kenya — The European Union and the Government of Kenya have launched a Sh454 million (€3 million) cybersecurity programme aimed at strengthening the country’s national cyber resilience as digital services expand across government and the economy.
The 36-month initiative, dubbed Strengthening the Resilience of the Cybersecurity Ecosystem of Kenya (KCR), was unveiled during a high-level meeting in Nairobi on Monday, alongside the inaugural sitting of its Steering Committee.
The project seeks to enhance Kenya’s ability to secure public digital infrastructure, protect citizens’ data, and build trust in e-government platforms, digital payments, and online services.
“Cybersecurity underpins trust in the digital economy and the delivery of public services,” said European Union Ambassador to Kenya Henriette Geiger.
“With Kenya’s rapid expansion of e-government services, digital payments and online platforms, strong cyber resilience is vital to protect critical information infrastructure, maintain service continuity and safeguard citizens’ rights,” she added.
The KCR programme is aligned with Kenya’s National Cybersecurity Strategy and the Digital Master Plan, according to the Ministry of Information, Communications, and the Digital Economy (MICDE).
Principal Secretary John Tanui said the project was designed to translate national policy into operational capacity.
“The KCR Project is fully aligned with existing national frameworks and is designed to operationalise the Government’s long-term digital ambitions,” Tanui said.
He noted that the initiative was developed through extensive consultations with Kenyan institutions to ensure it responds to actual operational gaps and institutional needs.
Stephen Isaboke, Principal Secretary for Broadcasting and Telecommunications, said cybersecurity must be treated as a national governance issue rather than a purely technical concern.
“Cyber resilience is not just a tech problem — it is a national priority,” Isaboke said.
“It is a prerequisite for economic growth and a guardian of our democratic values. We have the plan, the partners and the will.”
The project will be implemented by Expertise France, the French public agency for international technical cooperation, in partnership with the Estonian Centre for International Development (ESTDEV). Kenyan authorities will co-lead implementation to ensure national ownership and sustainability.
According to project documents, KCR is structured around three core pillars. The first focuses on strengthening Kenya’s legal, regulatory, and institutional frameworks for cybersecurity.
The second aims to enhance national and sector-specific capacity to prevent, detect, and respond to cyber incidents. The third pillar targets public awareness, inclusion, and trust, with a specific focus on women, youth, and users of public digital services.
The Steering Committee, co-chaired by the EU and MICDE, validated the project’s work plan and will provide strategic oversight throughout the implementation period.
The initiative aligns with the EU’s Global Gateway Strategy, the Team Europe Initiative on Human-Centred Digitalisation, and the EU–AU Digital Compact, reinforcing cooperation between Kenya and the EU in digital governance and cyber security.
The launch event brought together senior officials from MICDE, the National Computer and Cybercrime Coordination Committee (NC4), the Communications Authority of Kenya and its National KE-CIRT/CC, the Ministry of Interior and National Administration, the National Treasury, development partners, and EU member state representatives.
The European Union said the project reflects its long-term commitment to supporting Kenya’s digital transformation in a secure, inclusive, and sustainable manner, positioning cyber resilience as a key pillar for economic stability, public trust, and national security.
