The National Information Technology Agency (NITA), the regulatory body for Ghana’s ICT industry, has recently been awarded three prestigious ISO certifications for its excellence in IT service management, business continuity, and information security. This significant accomplishment was celebrated at a cocktail event in Accra, marking the conclusion of the inaugural National ICT Week, which spanned from August 26 to August 30. The ISO certifications awarded to NITA include ISO 20000:2018 for IT Service Management, ISO 22301:2019 for Business Continuity, and a groundbreaking ISO 27001:2022 for Information Security. Notably, the latter certification is the first of its kind to be presented to a public sector institution in Ghana. Achieving these certifications required extensive evaluations by the certification bodies, which confirmed that NITA had the necessary frameworks, support systems, policies, and sustainable practices in place.
In the realm of IT service management, NITA’s commitment is evident as it strives to ensure optimal delivery of IT services both internally and externally. This dedication not only fosters confidence among clients and the public but also enhances the ability of corporate clients, including various public institutions, to provide reliable and excellent services to their own clients. Notably, NITA operates the largest and most advanced data center in West Africa, managed by the private sector partner Smart Infraco. This Tier 3 data center is equipped with substantial capabilities that enable it to provide affordable, high-quality IT services to all public institutions and interested private businesses. The robust nature of this facility stands as a testament to NITA’s dedication to maintaining top-tier service standards.
NITA’s achievement in Business Continuity certification indicates the agency’s preparedness to maintain operations amidst any disruptions, whether internal or external. To qualify for ISO 22301:2019, organizations must have contingency plans and backup systems that allow them to remain operational during crises. For example, in March 2024, a nationwide internet disruption occurred due to several undersea fiber cuts, yet NITA quickly reconnected all state institutions within 24 hours thanks to its redundant subsea cables. This quick response highlighted NITA’s superior resilience compared to other telecommunications companies that faced prolonged outages due to insufficient backup systems. Moreover, NITA’s Tier 3 data center is designed with reliability in mind, with multiple pathways for power and cooling, ensuring an estimated annual uptime of 99.982%.
The importance of information security is underscored by NITA’s acquisition of the ISO 27001:2022 certification, which ensures that sensitive information remains confidential and secure. NITA’s data center hosts a locally managed cloud environment that protects data integrity while offering services at competitive prices. Additionally, to bolster these security measures, NITA has partnered with Smart Infraco and Trend Micro, which allows them to implement comprehensive antivirus and cybersecurity measures across all devices used by government institutions. This proactive approach reduces the potential for cyberattacks and promotes a safer working environment for public sector employees utilizing NITA’s services.
Richard Okyere-Fosu, the Director-General of NITA, conveyed that attaining these ISO certifications was a challenging yet essential milestone for the agency. As the ICT regulator and a custodian of government data, establishing trust with public sector institutions is paramount. Okyere-Fosu proclaimed that while receiving these certifications serves as a significant achievement, NITA remains committed to upholding and enhancing its standards. With these ISO credentials, NITA is uniquely positioned to deliver reliable, affordable, and secure IT services that can mitigate the need for public entities to resort to external providers that may not guarantee the same level of service.
Looking ahead, NITA plans to introduce the Common National Digital Architecture (CNDA). This initiative will mandate compliance with specific frameworks for any entity seeking to offer ICT or digital services to the government, emphasizing a strategic, uniform approach to digital service provision. Since dedicating itself to its regulatory role in 2021, NITA has been actively formulating various ICT regulations and guidelines that are expected to roll out by March 2025. Okyere-Fosu expressed confidence in the transformative measures and frameworks NITA has instituted, asserting that the agency is in a much stronger position than it was previously, signaling a positive trajectory for the agency’s future in managing Ghana’s ICT landscape effectively.
