Cybersecurity Readiness of Ministries, Departments, and Agencies in Nigeria: A Quantitative Assessment Using CRMM Framework

Aimola Amos Ayodele

Abstract

The increasing sophistication of cyber threats poses a significant risk to government digital infrastructure. This study critically assesses the cybersecurity readiness of Ministries, Departments, and Agencies (MDAs) in Nigeria using the Cybersecurity Resilience Maturity Measurement (CRMM) framework. Data from 20 ICT-dependent MDAs were analyzed through a computational model and Python programming. The findings revealed that only four MDAs exhibited very high readiness, six had high readiness, another six showed low-to-medium readiness, and four MDAs demonstrated very low cybersecurity preparedness. The research underscores critical gaps in cybersecurity infrastructure and recommends strengthening cyber policies, training personnel, and enforcing national cyber laws to build resilience against growing cyber threats.

keywords:

Cybersecurity, Critical Infrastructure, MDAs, Nigeria, Readiness Assessment,

References:

Global
Cybersecurity
Index
Report
(2020)
e-Governance
Academy
Foundation.
International Telecommunication Union. https://www.itu.int.
Graham K. (2021) Cybersecurity Readiness: What is it and how do you evaluate your Security
Performance Management. Bitsight Security Rating Blog Cybersecurity News & Tips.
Kott,
Alexander,
Cliff,
Wang
Erbacher,
Robert
F.
(2015).
Cyber
Defense
and
Situational Awareness. Springer International Publishing, Switzerland.
Linkov, I., Anklam, E., Collier, Z. A., DiMase, D., Renn, O. (2014). Risk based
standards:
integrating
top-down
and
bottom-up
approaches.
Environment
System Decisions 34 (1): 134–137.
Lucas A. (2017, 20 September). How prepared is Nigeria for cyber-attacks? The Nation
Newspaper.
Marvin Waschke (2017). Personal Cybersecurity: How to Avoid and Recover from
Cybercrime. Bellingham, Washington, USA.
Mbanaso,
U.
M.
(2018).
Principles
of
Security
Lecture
Note.
Nasarawa
State
University, Keffi, Nasarawa State.
Mbanaso, U., Kulugh, V., Musa, H., Aimufua, G., & Dandaura, E. (2022). Quantitative
Assessment of Critical Infrastructures Degree of Dependency on Information
and
Communications
Technology.
International
Journal
of
Critical
Infrastructures, 15 (3).
NIST. (2018). Framework for improving critical infrastructure cybersecurity. 1 (1): Draft.
https://doi.org/10.1109/JPROC.2011.2165269
Petit, F., Bassett, G., Buehring, W. A., & Whitfield, R. G. (2013). Resilience Measurement Index:
An Indicator of Critical Infrastructure Resilience. Journal of Critical Infrastructure (IJCIS)
7 (3): 200-219.
Rehak, D., Senovsky, P., Hromada, M., & Lovecek, T. (2019). Complex approach to
assessing resilience of critical infrastructure elements. International Journal of
Critical
Infrastructure
Protection,
25,
125–138.
https://doi.org/10.1016/j.ijcip.
2019.03.003

DOWNLOAD PDF

CALL FOR PAPERS

VOL. 11 ISSUE 6

JUNE 2025 EDITION

Research Articles written in English are invited from interested scholars and researchers in the academic community and other establishment for publication in the following areas:

Management Sciences
Social Sciences
Education
Engineering
Humanities
Sciences

An Author who wishes to submit a manuscript should note that the manuscript has not been submitted elsewhere nor is it for consideration in another journal. The article should be the original work of the author. International Institute of Academic Research and Development (IIARD) welcomes and acknowledges high-quality theoretical and empirical original research papers from researchers, academicians, professional, practitioners, and students from all over the world.

LATEST UPDATES

DOI (DIGITAL OBJECT IDENTIFIER) ISSUANCE

We are pleased to inform you that IIARD is now a registered member of Crossref. Henceforth, we will be issuing DOI to every published article.

JOURNAL HARD COPIES ARE READY FOR DISPATCH

All Journal hard copies are ready for dispatch. Corresponding authors are advice to submit their mailing addresses to editor@iiardjournals.org